.NET Developer(Application Security)

We are CirrusLabs . Our vision is to become the world's most sought-after niche digital transformation company that helps customers realize value through innovation. Our mission is to co-create success with our customers, partners and community. Our goal is to enable employees to dream, grow and make things happen. We are committed to excellence. We are a dependable partner organization that delivers on commitments. We strive to maintain integrity with our employees and customers. Every action we take is driven by value. The core of who we are is through our well-knit teams and employees. You are the core of a values driven organization.

You have an entrepreneurial spirit. You enjoy working as a part of well-knit teams. You value the team over the individual. You welcome diversity at work and within the greater community. You aren't afraid to take risks. You appreciate a growth path with your leadership team that journeys how you can grow inside and outside of the organization. You thrive upon continuing education programs that your company sponsors to strengthen your skills and for you to become a thought leader ahead of the industry curve.

You are excited about creating change because your skills can help the greater good of every customer, industry and community. We are hiring a talented < .NET Developer(Application Security Focus))> to join our team. If you're excited to be part of a winning team, CirrusLabs (http://www.cirruslabs.io) is a great place to grow your career.

Experience: 5 to 7 years

Shift Timings: 2 PM to 11 PM IST

Location: Bangalore/HyderabadRole Overview

We are seeking a C# / .NET Developer with a deep understanding of Application-Level Security. This is not a Security Administrator role; we need a builder who can implement, configure, and troubleshoot sophisticated Authentication and Authorization flows within a cloud-native Azure environment. You will be responsible for ensuring our applications are secure by design by leveraging modern identity protocols and Azure-native security services.

Core Responsibilities

· Implement Identity Flows: Develop and maintain robust Authentication (AuthN) and Authorization (AuthAuth) logic using ASP.NET Core Identity, Microsoft Identity Web, and OpenID Connect (OIDC) / OAuth 2.0.

· Azure Integration: Configure and manage App Registrations in Microsoft Entra ID, including defining API permissions, scopes, and service principals.

· Authorization Architecture: Design and implement fine-grained access control using Role-Based Access Control (RBAC), Claims-based authorization, and Policy-based authorization in .NET.

· Secure Secrets Management: Shift applications away from connection strings toward Azure Managed Identities and Azure Key Vault for secure, passwordless resource access.

· Token Management: Handle JWT validation, token caching, and On-Behalf-Of (OBO) flows for secure service-to-service communication.

Required Technical Skills

· C# / .NET: Expert-level proficiency in ASP.NET Core (6/8+).

· Identity Protocols: Strong grasp of OAuth2, OIDC, and SAML.

· Azure Platform: Hands-on experience with Azure App Service, Azure Functions, and Entra ID (Azure AD).

Experience in any of the NoSQL database

· Security Tools: Proficiency with the Azure Identity Client Library (e.g., Default Azure Credential).

Preferred Project Experience

· Experience migrating an application from Legacy/Form-based Auth to a modern Azure Entra ID SSO implementation.

· Proven track record of implementing Multi-tenant application security.

· Experience configuring Conditional Access policies from a developer's perspective (e.g., handling Claims Challenges in code).