Technical Team Lead



We are looking for a Technical Team Lead to manage two self-developed applications at one of our clients. In this role, you will be responsible for working with the client, leading the team, to translate business needs into technical stories, to futureproof the design, and to provide 3rd line support and maintenance together with your team. Ideally, you have some familiarity with security and privacy concepts and are able to effectively communicate technical concepts to both technical and non-technical stakeholders.

The applications are:

Privacy Management (PRIMA)

The Privacy Management project, also known as the GDPR project, began in 2017 and went live in 2018. It uses a system called Prima to deliver and save consents given by users, or default consents when no active consent can be found. The project follows the principles of the GDPR law and stores information such as the user’s choice (opt-in/opt-out), the length of time the consent is active, and the type of consent. Additionally, an event mechanism is in place to inform consumers within the company of changes to consents, and a subscription system allows clients to manage which updates they receive. The project must keep consents for at least 5 years and a future project will enable the deletion of expired consents. A business rule engine also allows frontend applications to check if they can request consent from customers. Future plans include splitting the application into smaller microservices for better management.

Rights Management (RIMA)

Rights Management is a tool designed to act as the Policy Evaluation Endpoint (PEP) for all APIs. When an application calls an API, it will first go through a gateway. The gateway will check for the credentials of the call, and if found, it will send a request to the PEP containing the credentials, the API being called, and context information. The PEP will then validate the credentials and check if the calling party has access to the API. If accepted, the gateway will let the call proceed and add a user propagation token (UPT) to the call. The project consists of multiple microservices, one of which is a UI for managing data used by the PEP, another is for syncing OAuth clients to the authentication server. The future of the project is to industrialize it on a companywide level, which may involve refactoring to use a standardized information model.


  • Java knowledge
  • SQL knowledge
  • Debugging knowledge
  • Knowledge of security concepts like OAuth 2.0 and OpenID (extended with some ForgeRock AM)
  • Strong communication and interpersonal skills, including the ability to:
    • Effectively communicate technical concepts to both technical and non-technical stakeholders
    • Work well in a team environment
    • Develop and maintain strong client relationships
  • Ability to work independently and manage time effectively


  • The opportunity to develop your skills and excel in your areas of expertise through continuous learning and training opportunities
  • A great team environment where employees can collaborate and learn from one another
  • Fun and enjoyment along the way, as we believe in maintaining a positive and enjoyable work culture.

If you are a motivated individual with an interest in CIAM and a desire to work with a dynamic team, we encourage you to apply for this exciting opportunity.

Ready to take your career to the next level?

Do you think you have what it takes to join our team?

Fill in the following form and let us know! We will get in contact as soon as possible!

We hope to welcome you to our awesome team soon!

About IS4U

IS4U is the primary Information Security competence center within the Cronos Group. We are experts in Information Security solutions and we understand the challenges our customers face: Improving security, streamlining operations and managing access risk while continuously demonstrating compliance with stringent industry and regulatory requirements.