• We're embarking on an engineering transformation with the key focus on CIAM & ID&V across Full Stack Engineering.

• You have knowledge that spans both development and operations, including coding, infrastructure management, system admin/engineering and DevOps Toolchains. 

• Together we will build tomorrow’s bank today, using world-leading engineering, technology, and innovation. 

Do work that matters:

We're building tomorrow’s bank today, which means we need creative and diverse engineers to help us redefine what customers expect from a bank. Envisioning new technologies that are still waiting to be invented and reimagining products that support our customers and help build Australia’s future economy.

In the CIAM & ID&V team, we engineer the identity experiences that customers trust every time they access the bank, experiences powered by modern technologies like .NET, React, Next.js, GraphQL, and cloud-native architectures. Our platforms use industry-leading identity standards such as OAuth2 and OIDC, along with sophisticated biometric verification capabilities that help protect customers with minimal friction. Every improvement we deliver strengthens the safety, privacy, and confidence of millions of Australians. We build technology with purpose, secure, intuitive, high-performance services that make banking simpler and safer for everyone.

We operate at the centre of CBA’s digital ecosystem, shaping how identity works at massive scale. Together, we design and evolve distributed platforms, integrate risk-based authentication into critical journeys, and elevate full-stack engineering excellence across CIAM and ID&V. Our team brings deep technical insight and product leadership to complex challenges, delivering solutions that influence long-term strategy across the Group. Joining us as a Principal Engineer means becoming a key leader in a team that thrives on complexity, drives modern engineering practices, and builds identity foundations that will power CBA’s digital future.

See yourself in our team:  

You will be joining the Identity & Verification crew within the wider Customer Identity & Access Management (CIAM) division, reporting directly to the Crew Tech Lead for Identity & Verification. This team underpins secure access for the entire Group, powering identity experiences across CBA, CommBank mobile and web, CommBiz, CommSec, X15 Ventures, and Bankwest. We are a highly skilled and deeply collaborative group of engineers, architects, and identity specialists who design and operate mission-critical identity capabilities for millions of customers. Our work ensures that every sign in, verification, and authentication journey is seamless, safe, and trusted.

This is where security engineering meets modern software development to create cutting edge identity solutions at national scale. The team drives strategic thinking and technical direction across CIAM and ID&V, solving some of the most complex challenges in digital banking, from advanced verification flows and adaptive authentication to distributed identity architectures and cloud native engineering.

We operate at the frontier of innovation, constantly evolving our platforms to stay ahead of emerging threats and customer expectations. Joining this team means contributing to technology that protects the Group, empowers product teams across all brands, and shapes the future of secure digital experiences across the entire CommBank ecosystem.

  

We’re interested in hearing from people who: 

• Architect end-to-end CIAM and Identity Verification solutions where modern software engineering meets advanced security—defining target-state patterns, solution designs, and architecture that safeguard millions of customers.

• Design and build full-stack identity capabilities using React, Next.js, .NET, REST/GraphQL APIs, and microservices—integrating frictionless front-end experiences with high-performance backend identity services.

• Engineer scalable data-driven identity platforms across Oracle, MySQL, PostgreSQL, MS SQL Server, and NoSQL stores like MongoDB, Redis, and Elasticsearch to power real-time decisioning and verification workflows.

• Create cloud-native ID&V workflows including orchestration engines, biometric liveness checks, OCR/NFC document validation, scorecards, and AI-assisted fraud detection—all deployed on event-driven and serverless architectures.

• Leverage industry-leading identity technologies such as PingFederate, PingDirectory, PingAuthorize, FIDO, OAuth2/OIDC, SAML, and Daon IdentityX to enable secure authentication, authorization, and verification flows.

• Drive full-cycle engineering and DevSecOps excellence, automating pipelines, embedding observability, enforcing secure-by-design patterns, and ensuring platforms are reliable, scalable, and continuously improving.

• Lead technical strategy and influence at scale, guiding architects, squads, and senior executives to align on modern identity patterns, architectural direction, and uplifted security capabilities.

• Translate complex business, cyber, and regulatory needs into elegant, production-ready architecture, delivering identity solutions that elevate customer experience while strengthening fraud prevention and security controls.

Tech skills 

We don't expect you to know everything, but experience in several of the following will set you up for success:

• Identity, Authentication & Security: OAuth2, OIDC, SAML, FIDO2/WebAuthn, FIDO UAF, biometric verification (face/voice), liveness detection, document authenticity, CIAM architectures, multi-tenancy, risk-based authentication, Daon, IDVerse, GreenID, Equifax, Home Affairs/DVS.

• Full Stack Engineering: React.js, Next.js, C#, .NET / .NET Core, REST & GraphQL APIs, modern front-end patterns, high-scale backend services.

• Cloud & Platform: AWS Lambda, ECS/EKS, API Gateway, DynamoDB, Aurora, S3, CloudWatch, serverless and container-native architectures.

• Containers & Orchestration: Docker, Kubernetes, microservices design, scalable deployment patterns.

• DevOps & SRE: GitHub Actions, TeamCity, Terraform, CloudFormation, Prometheus, Grafana, Splunk, ObServe, automated CI/CD pipelines, observability and reliability engineering.

• Data & Integrations: PostgreSQL, Oracle, Kafka, SNS/SQS, event-driven architectures, API gateways, distributed systems integration.

• AI & Engineering Tools: GitHub Copilot, Cline, Figma AI, Roode, familiarity with LLMs and machine learning concepts for intelligent workflows.

• Bonus: Experience with BioCatch, Agentic AI Security, or emerging behavioural security technologies.

Advertising End Date: 12/02/2026