CIAM Software Engineer
Role summary
IDEXX is seeking a Software Engineer, CIAM to lead the development and maintenance of their Auth0-based Customer Identity and Access Management platform. This role requires hands-on engineering expertise in designing, building, and integrating secure, scalable identity solutions. Responsibilities include configuring Auth0, developing APIs, customizing authentication workflows, and collaborating with cross-functional teams. The ideal candidate will have strong experience with CIAM platforms (Auth0 preferred), Node.js, TypeScript/JavaScript, cloud infrastructure (AWS), and DevOps practices. This hybrid role is based near Westbrook, Maine, with 8 days on-site per month, and is open to candidates in Massachusetts and NH.
The Software Engineer, CIAM plays a critical role in delivering secure, scalable, and resilient customer identity experiences across IDEXX’s customer-facing platforms. This role provides hands-on engineering leadership and technical ownership of the Auth0-based Customer Identity and Access Management (CIAM) platform.
This individual will work closely with a Product Manager (roadmap alignment, prioritization, business value), Business Systems Analyst (translate strategy into clear, execution-ready requirements and aligned workflows), Delivery Lead (planning, sprint execution, impediment removal), Security Architecture (standards, risk mitigation, compliance), and Engineering teams (design, integration, troubleshooting, deployment). The role acts as a technical authority for Auth0, helping define standards, integration patterns, and operational practices that enable product teams to adopt CIAM capabilities with confidence.
This position blends deep software engineering expertise with a platform mindset—balancing feature delivery (e.g., federation, SSO, onboarding flows) with long-term platform stability, security, and operability.
IDEXX is standardizing all customer-facing applications onto a unified CIAM platform powered by Auth0. Today, a growing number of applications authenticate through Auth0, with continued expansion underway.
Your Location: We are looking for driving distance to our Westbrook, Maine HQ with only 8 days on-site required per month. We are also open to regionally based candidates in Massachusetts and NH that can come in but maybe less frequently.
In this role you will…
Design, build, and maintain integrations between Auth0 and customer-facing service providers
Configure and manage Auth0 tenants, including connections, rules, actions, and authentication flows
Develop and maintain APIs that power authentication and identity data exchange across platforms
Implement and customize login, registration, and federation workflows to support diverse application needs
Service Provider Onboarding & Integration : onboarding of new applications into the Auth0 platform, partnering with engineering teams across IDEXX to integrate their applications into CIAM
Defining and enforcing integration patterns, ensuring consistency and scalability. Supporting migration of applications from legacy identity platforms into Auth0
Day-to-Day Responsibilities include…
Respond to ongoing requests, questions, and integration needs from multiple product and engineering teams
Review, validate, and approve configuration changes submitted by service provider teams through a shared repository
Manage the flow of changes across environments (dev → staging → production), ensuring proper sequencing and release timing
Coordinate with engineers across teams to align on sprint timelines, release schedules, and deployment dependencies
Support and troubleshoot authentication issues across multiple live applications
Perform ongoing maintenance and updates for existing service providers as requirements evolve
Balance competing priorities across multiple service providers needing updates at the same time
Help manage a growing pipeline of onboarding and maintenance work as adoption of Auth0 accelerates
Ensure that changes for one service provider do not negatively impact others sharing the same platform
Collaborate with BSAs and Product to stay aligned on deadlines, requirements, and rollout plans
Platform Operations & Governance
Own and maintain the shared Auth0 configuration repository
Ensure quality and integrity of all incoming changes through code review and validation
Establish and enforce best practices for CIAM configuration, deployment, and release management
Monitor platform health, performance, and reliability across service providers
Contribute to CI/CD pipelines and DevOps practices supporting CIAM
Cross-Functional Collaboration
Work closely with Product Managers (feature prioritization, roadmap alignment), BSAs (requirements, coordination, stakeholder communication), Security Architecture (compliance, security validation, standards), Engineering teams (integration, troubleshooting, deployment)
Communicate effectively across technical and non-technical stakeholders
Provide guidance and support to engineering teams adopting Auth0
What you will need to Succeed…
Experience with Customer Identity and Access Management platforms (Auth0 strongly preferred)
Familiarity with OAuth 2.0, OIDC, and SAML authentication flows
Experience supporting customer-facing platforms in regulated, high-availability, or security-sensitive environments
Programming & APIs : Strong experience with Node.js and TypeScript / JavaScript
Experience building and maintaining APIs (authentication, identity services, etc.)
Experience customizing authentication workflows (rules, actions, hooks, etc.)
Cloud & Infrastructure (Preferably AWS)
API Gateway
IAM
RDS / DynamoDB
Infrastructure as Code (SAM, CloudFormation, CDK)
Data & DevOps : Experience with user data management and identity data flows. Familiarity with DevOps practices and CI/CD pipelines. Experience with GitHub or similar version control systems
Strong communication and collaboration skills across engineering teams
Ability to manage competing priorities across multiple stakeholders
Comfortable operating in a highly cross-functional, matrixed environment
Ability to balance hands-on technical work with coordination and planning responsibilities
Adaptability in a rapidly growing platform with increasing demand
It would be a plus if you had…
Experience working with multiple CIAM or identity platforms (e.g., Auth0, Cognito, Okta, etc.)
Experience supporting large-scale identity systems (100K+ users)
Experience in distributed, multi-team environments with shared platforms
Familiarity with cloud-native architectures and microservices
Why IDEXX?
We’re proud of the work we do, because our work matters. An innovation leader in every industry we serve, we follow our Purpose and Guiding Principles to help pet owners worldwide keep their companion animals healthy and happy, to ensure safe drinking water for billions, and to help farmers protect livestock and poultry from diseases. We have customers in over 175 countries and a global workforce of over 10,000 talented people.
So, what does that mean for you? We enrich the livelihoods of our employees with a positive and respectful work culture that embraces challenges and encourages learning and discovery. At IDEXX, you will be supported by competitive compensation, incentives, and benefits while enjoying purposeful work that drives improvement.
Let’s pursue what matters together.
IDEXX values a diverse workforce and workplace and strongly encourages women, people of color, LGBTQ+ individuals, people with disabilities, members of ethnic minorities, foreign-born residents, and veterans to apply.
IDEXX is an equal opportunity employer. Applicants will not be discriminated against because of race, color, creed, sex, sexual orientation, gender identity or expression, age, religion, national origin, citizenship status, disability, ancestry, marital status, veteran status, medical condition, or any protected category prohibited by local, state, or federal laws.
