B

Developer full stack for Frontent React + Native Mobile

BNP Paribas · Chennai, Tamil Nadu, India

~₹15L (est.)2–8 yrs experienceRemotefull_timePosted 2w ago
Apply now →

Job description

**Job Title:** Developer full stack for Frontent React + Native Mobile **Department** : ETO Strategic Protection Platform (IT Tribe Business Platforms) **About Business Line/Function** BNP Paribas Cardif is a world leader in bancassurance partnerships, providing its customers with products and services that let them realise their goals while protecting themselves from unforeseen events. BNP Paribas Cardif is committed to having a positive impact on society and to making insurance more accessible. A subsidiary of BNP Paribas, the insurer has a unique business model anchored in partnerships. It creates solutions for more than 500 partner distributors in a variety of sectors – including banks and financial institutions, automotive sector companies, retailers and telecommunications companies – as well as for financial advisors and brokers who market the products to their customers. With a presence in 30 countries and strong positions in Europe, Asia and Latin America, BNP Paribas Cardif is a global specialist in personal insurance, the world leader in creditor insurance and a major contributor to financing for the real economy. With 9,000 employees worldwide, BNP Paribas Cardif had gross written premiums of €40.5 billion in 2025. Within BNPP Cardif, the mission of ETO (Efficiency, Technology & Operations) Directorate is to deliver our value proposition by steering and transforming our operational setups and information systems to support the company’s development and serve our clients and partners safely, sustainably, and efficiently. The Protection business line is currently confronting strong industrial challenges that limit Cardif’s ability to operate with a competitive cost‑to‑serve and to sustain activity growth at marginal cost. This overall situation stems from a highly fragmented, locally‑focused industrial set‑up with heterogeneous processes, operations, and IT systems. The creation of a new Global COO Protection department aims to address these issues by deploying the new Protection platform (IT BizPlatform) and its Target Operating Model on a global scale. The IT BizPlatform team will be responsible for the rollout and maintenance of the technology platform. The establishment of a new Global Protection Operations team is intended to define and implement the Target Operating Model linked to the new Protection platform. In this context, Front End applications are developed for our partners to provide full client experience front of the API provided by the protection platform according there requirements. Main applications have frontend in React.js, exposed on Internet, and a backend component (BFF), based on Spring Framework. **Position Purpose** Main developer full-stack, responsible for the Cardif FrontEnd Applications development and maintenance. **Responsibilities** Direct Responsibilities The candidate will work in an extended team mode with colleagues in France, and his major responsibilities will be to: - Implement changes and evolutive maintenance of the applications hosted in dMZR as Code. - Using developer’s best practices (Craft, Solid, etc.) and continuous improvement - Making sure development security is aligned with security guidelines (code vulnerabilities, …) - Assist subsidiaries during partner onboarding phase - Review CI/CD alignment according to ongoing activities. - Maintain existing CI/CD inside of the Devops Foundation **Technical & Behavioral Competencies** - Next.js Fontend / BFF (apps/backend) - TypeScript + React - Next.js (App Router) — Server Components, API routes, dynamic [lang] i18n segments - NextAuth.js - TailwindCSS + shadcn/ui - JWT / OIDC security — signature/iss/aud/exp verification, JWKS, jose - Stateless session design — httpOnly cookies, no server-side store - Caching strategy — unstable\\_cache, react.cache, module-scoped token caching - OAuth2 client-credentials integration (calling upstream APIs) - Input validation / security hygiene - Mock API Servers (apps/cidp-apigee, apps/bank-api) - For testing - Node.js + Express + TypeScript - OpenAPI (OAS) — reading/maintaining specs in docs/OAS/ - Prism (Stoplight) — OAS-driven mocking - oidc-provider — OAuth2 authorization server mocking - jose — JWT validation middleware - swagger-ui-express - Cross-Cutting / Tooling - pnpm workspaces (monorepo management) - Git - CI/CD : IBM Cloud - Digital By Cardif - Local HTTPS dev — mkcert, Caddy reverse proxy, portal.local:3443 - Local Docker / docker-compose — Keycloak realm setup - Keycloak (OIDC realm config) and IBM App ID - i18n — pl / en / uk / ru - Testing — JUnit/Compose UI tests (Android), XCTest (iOS), backend unit/integration/E2E journey tests - (optional) Android SDK + Host App (apps/android) - For testing - Kotlin (idiomatic: data/sealed classes, extension functions) - Jetpack Compose (Material 3, state via ViewModel + StateFlow) - Coroutines + Flow for async - Android WebView hardening — @JavascriptInterface bridges, domain allowlists, scheme blocking (file://, intent://) - Gradle (Kotlin DSL), multi-module builds - Hilt (dependency injection) - Retrofit (HTTP) - OIDC / PKCE auth (AppAuth / Custom Tabs) - minSdk 24, compileSdk 34+ 5 (optional) iOS SDK + Host App (apps/iOS) - For testing - Swift (Swift 5+, async/await, Sendable) - SwiftUI + UIKit (WKWebView) - WKWebView security — WKScriptMessageHandler, host allowlists, WKWebsiteDataStore - XcodeGen — edit project.yml, never raw pbxproj - xcodebuild / Xcode simulator workflow - iOS 16+ deployment target **Specific Qualifications** Minimum 5 years of experience. **Technical Skills** **Skills Referential (Required knowledge, skills and abilities)** **Behavioral Skills** - Ability to collaborate in an international environment (Europe, Asia, India and LATAM indirectly) **Soft Skills** - A good team player with problem-solving attitude. **Education Level:** Master Degree or equivalent **Location:** Chenn