In the European Client Identity team, we are building and operating Vanguard’s authentication and MFA platform used by hundreds of thousands of clients across the UK and Europe. This is a hands‑on senior full‑stack role with a strong frontend focus. You will take ownership of the MFA web application – an Angular 21 + NestJS app that is the entry point for all UK Personal Investor clients. You will work in a highly regulated environment where security, reliability and operational discipline matter. You don’t need to be an identity expert on day one – but you do need Angular expertise, solid back‑end fundamentals, cloud experience and a responsible, methodical engineering mindset.
Responsibilities
- Help the team take ownership of an Angular front end, including onboarding and up‑skilling other team members on the codebase
- Build and evolve frontend experiences for login, MFA and client authentication using Angular
- Build and evolve back‑end services that support authentication and identity flows
- Design and implement REST APIs using NestJS / TypeScript
- Integrate with identity and MFA platforms (e.g. Transmit Security, Auth0)
- Deploy and operate services on AWS, using Infrastructure as Code
- Database migrations and updates
- Manage vendor‑specific software services running in AWS
- Run and maintain services in production, including writing automated tests and contributing to improving test coverage and quality
- Participate in CI/CD pipelines, deployments and operational procedures
- Work closely with product and security stakeholders to translate requirements into technical solutions
- Continuously improve engineering standards, tooling and reliability
- Provide on‑call rota participation (up to 2 weeks/month) and regular out‑of‑hours deployments (1‑3 per week, ~30‑90 minutes)
Qualifications
- Proficiency in Angular (v14+; ownership of Angular 21 codebase)
- Experience with TypeScript across front end and back end
- Solid Node.js back‑end experience with NestJS or Express for REST API development
- Understanding of authentication protocols: OAuth2.0, JWT, MFA flows
- Hands‑on experience with AWS (ECS, Lambda, CloudFront, S3, Secrets Manager)
- Familiarity with Infrastructure as Code (CloudFormation or Terraform)
- Experience with containerised workloads (Docker)
- Strong Git practices and CI/CD experience (GitHub Actions or similar)
- Nice to have: experience with identity, authentication or MFA systems
- Familiarity with Kong API Gateway or similar
- Exposure to Aurora PostgreSQL or DynamoDB
- Knowledge of microservices architectures
- Exposure to security concepts (IAM, encryption, networking)
- Experience with observability tooling (OpenTelemetry, Honeycomb, Grafana)
- Experience in regulated or enterprise environments
#J-18808-Ljbffr…
