CrawlJobs Logo

Staff Software Engineer, Authentication and Security

onebrief.com Logo

Onebrief

Location Icon

Location:

Category Icon
Category:
IT - Software Development

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

200000.00 - 230000.00 USD / Year
Save Job
Save Icon
Apply Position

Job Description:

We’re hiring a Staff Software Engineer to design, build, and operate the authentication and identity systems that power our platform. This is a hands-on engineering role with a focus on reliability, scalability, and secure user experience. Our authentication stack is built on modern technologies including Keycloak, OIDC/SAML/LDAP integrations, and cloud-native infrastructure. We value strong problem-solving skills, sound engineering judgment, and a deep understanding of distributed systems and security principles. You’ll work on high-impact systems including (but not limited to) identity provider integrations, access control frameworks, token management, and policy enforcement infrastructure. Expect to tackle challenges in federated identity, Attribute-Based Access Control (ABAC), multi-tenant authorization, session management, and fault-tolerant authentication flows. You’ll play a key role in shaping our authentication architecture and defining the long-term strategy for identity and access management across the platform.

Job Responsibility:

  • Design, build, and maintain authentication and identity services that power mission-critical platform access and authorization
  • Integrate and extend Keycloak to support complex identity provider (IdP) integrations, single sign-on (SSO), and federated authentication
  • Implement and evolve Attribute-Based Access Control (ABAC) frameworks to enable fine-grained, policy-driven authorization across systems
  • Work across the stack — from APIs and access tokens to infrastructure automation, deployment, and observability of authentication workflows
  • Diagnose and resolve reliability, latency, and scalability issues in production authentication and authorization flows
  • Collaborate on architecture and long-term strategy for secure, resilient, and high-availability identity systems
  • Implement and refine monitoring, auditing, and alerting for authentication and access events to ensure security visibility and compliance
  • Balance security, user experience, and delivery velocity, ensuring pragmatic decisions that maintain both product agility and engineering quality

Requirements:

  • 8+ years of experience as a Software Engineer
  • Recent experience driving technical impact across teams and time horizons
  • A record of leading multi-quarter initiatives and evolving system architecture
  • Strong architectural judgment with a tight link to product and business outcomes
  • Thoughtful, high-context communication thats driven by a desire for clarity, not control
  • A pattern of multiplying others: through systems, standards, and mentorship
  • The ability to move fast with judgment while knowing when to ship, and when to reshape
What we offer:
  • Remote work, flex time, and unlimited PTO
  • Health, dental, vision, and life insurance
  • 401k
  • Parental leave
  • Company summit trips, at least once a year
  • $1,000/year budget for home office improvements
  • Offers Equity

Additional Information:

Job Posted:
February 21, 2026

Employment Type:
Fulltime
Work Type:
Remote work
Icon
Onebrief - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Staff Software Engineer, Authentication and Security

Software Engineer (Hebrew Speaker) - Axis Security

Designs, develops, troubleshoots and debugs software programs for software enhan...
Location
Location
Israel , Tel Aviv
Salary
Salary:
Not provided
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's in Computer Science, Information Systems, or equivalent (with army training)
  • Minimum of 3 years of experience as a Software Engineer
  • Familiarity with security aspects (encryption, authentication mechanisms, networking protocols research)
  • English Advanced, Hebrew Native
  • Experience designing and developing software systems design tools and languages
  • Excellent analytical and problem solving skills
  • Experience in overall architecture of software systems for products and solutions
  • Designing and integrating software systems running on multiple platform types into overall architecture
  • Evaluating and selecting forms and processes for software systems testing and methodology, including writing and execution of test plans, debugging, and testing scripts and tools
  • History of innovation with multiple patents or deployed solutions in the field of software design
Job Responsibility
Job Responsibility
  • Develops organization-wide architectures and methodologies for software systems design and development across multiple platforms and organizations within the Global Business Unit
  • Identifies and evaluates new technologies, innovations, and outsourced development partner relationships for alignment with technology roadmap and business value
  • creates plans for integration and update into architecture
  • Reviews and evaluates designs and project activities for compliance with development guidelines and standards
  • provides tangible feedback to improve product quality and mitigate failure risk
  • Leverages recognized domain expertise, business acumen, and experience to influence decisions of executive business leadership, outsourced development partners, and industry standards groups
  • Provides guidance and mentoring to less- experienced staff members to set an example of software systems design and development innovation and excellence
What we offer
What we offer
  • Health & Wellbeing
  • Personal & Professional Development
  • Diversity, Inclusion & Belonging
  • Fulltime
Read More
Arrow Right

Senior Staff Software Engineer, Cloud Proxy

We are seeking a Senior Staff Engineer in Temporal's Cloud Global Services team ...
Location
Location
United States
Salary
Salary:
230000.00 - 290000.00 USD / Year
temporal.io Logo
Temporal
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven experience architecting and delivering high-availability, security-critical networking or proxy systems
  • Deep understanding of authentication/authorization patterns (OIDC-OpenID Connect on top of OAuth), mTLS, JWT-JASON Web Token, custom identity integrations)
  • Expertise in data encryption at rest and in transit, including envelope encryption and key management
  • Strong proficiency in Go or a comparable systems programming language
  • Familiarity with distributed systems, RPC frameworks (gRPC), and cloud networking patterns
  • Track record of leading complex, multi-team technical initiatives to successful delivery
  • Ability to navigate ambiguity, define vision, and create alignment
  • Experience influencing technical direction across organizational boundaries
Job Responsibility
Job Responsibility
  • Define and drive the architecture for a unified, pluggable proxy framework
  • Establish technical standards for authentication, authorization, encryption, and observability across proxy implementations
  • Evaluate and integrate existing customer-built, S2S, and Cloud Auth proxies into a single supported solution
  • Translate high-level business and security requirements into technical designs
  • Ensure proxy meets Tier 0 workload reliability, security, and performance standards
  • Partner with Product, Security, and Customer Success to align roadmap with customer needs
  • Work closely with Infra Foundations, Security, OSS Server, and CGS teams
  • Engage directly with strategic customers to understand and incorporate their requirements
  • Mentor other engineers on distributed systems architecture, networking, and security
  • Drive the open-source development model, ensuring code quality, documentation, and extensibility
What we offer
What we offer
  • Unlimited PTO, 12 Holidays + 2 Floating Holidays
  • 100% Premiums Coverage for Medical, Dental, and Vision
  • AD&D, LT & ST Disability, and Life Insurance (Standard & Supplemental Available)
  • Empower 401K Plan
  • Additional Perks for Learning & Development, Lifestyle Spending, In-Home Office Setup, Professional Memberships, WFH Meals, Internet Stipend and more
  • $3,600 / Year Work from Home Meals
  • $1,500 / Year Career Development & Learning
  • $1,200 / Year Lifestyle Spending Account
  • $1,000 / Year In-Home Office Setup (In addition to Temporal issued equipment)
  • $500 / Year Professional Memberships
  • Fulltime
Read More
Arrow Right
New

Senior Product Security Engineer

LMArena is seeking a Senior Product Security Engineer to lead the strategy, desi...
Location
Location
United States , Bay Area
Salary
Salary:
Not provided
arena.ai Logo
Arena Intelligence, Inc.
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years of experience in software engineering or security engineering, including staff-level scope in securing large-scale, user-facing platforms
  • Proven track record designing and implementing systems to detect, mitigate, and prevent adversarial behavior (bots, Sybil attacks, automated abuse)
  • Strong experience with threat modeling, secure architecture design, and risk assessment
  • Hands-on experience building security features into production systems at scale (millions of DAU / billions of requests)
  • Proficiency in backend development (Node.js, TypeScript, Python, or Go) and willingness to work across the stack when needed
  • Strong knowledge of distributed systems security, identity, and authentication mechanisms
  • Excellent communication skills, able to build alignment across engineering, product, and leadership teams
Job Responsibility
Job Responsibility
  • Own the product security vision for LMArena, ensuring security and trust are core to every stage of our product lifecycle
  • Design and implement platform-wide security features, including Sybil resistance, bot detection, reputation systems, and anti-abuse primitives
  • Lead threat modeling and security architecture reviews for new and existing product features
  • Collaborate with infrastructure and product engineering to design secure APIs, data flows, and identity systems that scale
  • Improve developer velocity by creating secure-by-default frameworks and tooling for internal teams
  • Partner with incident response to quickly assess, contain, and remediate security events, and lead deep postmortems to improve defenses
  • Stay ahead of the curve by monitoring emerging attack techniques and applying cutting-edge security research to our platform
  • Mentor engineers across the company on secure coding practices, architecture trade-offs, and operational security
What we offer
What we offer
  • Comprehensive health and wellness benefits, including medical, dental, vision, and additional support programs
  • The opportunity to work on cutting-edge AI with a small, mission-driven team
  • A culture that values transparency, trust, and community impact
  • Competitive compensation and equity aligned to the markets where our team members are based
  • Fulltime
Read More
Arrow Right
New

Staff Security Engineer, IAM

We are looking for a Staff Security Engineer (L6) with deep expertise in Identit...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
deliveroo.co.uk Logo
DELIVER
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7+ years of experience in software or security engineering, with significant hands-on technical depth
  • Strong experience in at least one modern programming language (Go, Java, Scala, Python, or similar)
  • Proven experience designing and operating IAM systems in a cloud-first environment
  • Deep understanding of authentication and authorisation protocols: SAML, OAuth2 / OIDC, SCIM, MFA and modern identity assurance methods
  • Experience with identity providers and directories such as Okta, Azure AD, Google Cloud Identity, or Active Directory
  • Hands-on experience with identity governance platforms (e.g., ConductorOne, SailPoint IdentityNow), including lifecycle management, access reviews, and ABAC models
  • Strong understanding of cloud IAM (AWS IAM, GCP IAM, Azure RBAC)
  • Experience building secure integrations and automation using REST APIs and event-driven architectures
  • Experience leading significant cross-team security initiatives
  • Strong knowledge of RBAC, ABAC, PAM, and Zero Trust architecture principles
Job Responsibility
Job Responsibility
  • Own and evolve Deliveroo’s IAM architecture across identity providers (e.g., Okta, Azure AD, Google Cloud Identity), identity governance (e.g., ConductorOne, SailPoint IdentityNow), and cloud IAM (AWS/GCP)
  • Design scalable solutions for authentication, authorisation, provisioning, deprovisioning, RBAC/ABAC, JIT access, and privileged access management
  • Drive improvements to access governance processes including certifications, SoD controls, and policy enforcement
  • Lead implementations and technical integrations between domains, ensuring engineering core principles are adhered to
  • Develop ‘Paved Roads’ for stakeholders enforcing IAM best good practices to teams
  • Developing bespoke integrations between IAM platforms and internal systems to ensure seamless lifecycle management and access governance
  • Building middleware solutions to address edge cases (e.g. automated group creation where authoritative HR data does not exist)
  • Designing and implementing self-service RBAC capabilities that enable business teams to manage roles within defined guardrails
  • Creating automation layers that enhance ROI from commercial tooling by reducing manual effort and embedding controls into engineering workflows
  • Extending off-the-shelf platforms with APIs, event-driven services, and workflow orchestration to meet Deliveroo’s scale and complexity
What we offer
What we offer
  • 25 days annual leave plus bank holidays, increasing with length of time spent working at Deliveroo
  • One day of paid leave per year to volunteer with a registered charity
  • Funded single cover healthcare on our core plan, with the option to add family members at own cost
  • On-site gym (HQ), discounted external gym membership
  • Access to wellbeing apps such as LesMills+, Strava, Headspace, Yogaia via GymPass
  • Discounted dental insurance and a range of other flexible benefits, such as critical illness cover, partner life cover, travel insurance, health assessments
  • Life assurance
  • Maternity, paternity and maternity and shared parental leave, eligible from day one of employment
  • Excellent kit to enable working from home and a parent-friendly working culture
  • Access to free mortgage advice
Read More
Arrow Right
New

Staff Software Engineer, Identity Platform

You'll own Gamma's identity and authentication infrastructure as we scale beyond...
Location
Location
United States , San Francisco
Salary
Salary:
230000.00 - 310000.00 USD / Year
gamma.app Logo
Gamma
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years of software engineering experience with at least 3 years focused on identity, authentication, or security systems
  • Deep expertise with OAuth 2.0, OpenID Connect, SAML, and modern authentication protocols
  • Hands-on experience acting as an OAuth provider and implementing authorization servers
  • Proven track record executing large-scale identity migrations (millions of users) with zero downtime
  • Strong understanding of identity providers (Cognito, Auth0, WorkOS, Okta) and their tradeoffs
  • Expert knowledge of authentication security best practices: password hashing, token management, credential storage, session security
Job Responsibility
Job Responsibility
  • Own Gamma's end-to-end authentication and authorization systems, ensuring security, reliability, and excellent user experience
  • Lead the technical strategy and execution for migrating 100M+ users from AWS Cognito to a modern identity platform
  • Design and implement OAuth 2.0 and OpenID Connect flows that enable Gamma to act as an identity provider for third-party integrations
  • Build and maintain SSO integrations (SAML, OIDC) for enterprise customers
  • Partner with security and compliance teams to ensure identity systems meet SOC 2, GDPR, and regulatory requirements
  • Collaborate with product and engineering teams to implement authentication features like MFA, passkeys, and session management
What we offer
What we offer
  • competitive equity
  • Fulltime
Read More
Arrow Right
New

Staff Software engineer - Authentication and Security Observability

The Login Services team sits within Core Security Engineering and owns Uber’s au...
Location
Location
United States , Sunnyvale
Salary
Salary:
232000.00 - 258000.00 USD / Year
uber.com Logo
Uber
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Computer Science, Engineering, or a related technical field (or equivalent practical experience)
  • 8+ years of industry experience building large-scale backend platforms, with deep experience in distributed systems and production infrastructure
  • Strong programming experience in multiple languages (e.g., Go, Java, Python, Node.js/TypeScript), with a track record of shipping reliable systems
  • Demonstrated expertise designing and operating scalable distributed services, including reliability engineering and operational excellence (observability, incident response, SLAs)
  • Strong background in security engineering, preferably in identity/authentication and building or operating security-critical pipelines at scale
  • Proven ability to own complex systems end-to-end—from architecture and implementation to rollout, monitoring, and long-term maintainability—in large-scale environments
Job Responsibility
Job Responsibility
  • Lead architecture and execution of core authentication capabilities for human and non-human identities, delivering secure, resilient, and frictionless login experiences at Uber scale
  • Own and evolve Uber’s tier-zero authentication and SSO infrastructure, maintaining high availability, security, and performance for core login flows and enabling secure, policy-driven access to internal and third-party applications
  • Build and evolve platform services (APIs, workflows, policy enforcement) with strong engineering fundamentals: reliability, performance, observability, and safe rollout/rollback
  • Develop the Security Knowledge Platform, building the data/graph foundations and risk signals to categorize identity + asset risk and power multiple security and product use cases
  • Build the next generation of automation and intelligence—agentify IAM operations to reduce toil/cost and develop the Security Knowledge Platform to power identity + asset risk insights across Security Engineering
  • Partner cross-functionally and raise the bar—align stakeholders across Security/IT/Ops/Product, mentor engineers through design reviews and incident learning, and set technical direction for the team
What we offer
What we offer
  • Eligible to participate in Uber's bonus program
  • May be offered an equity award & other types of comp
  • All full-time employees are eligible to participate in a 401(k) plan
  • Eligible for various benefits
  • Fulltime
Read More
Arrow Right

Staff Software Engineer I - Internal Access Management

We are seeking a Staff Software Engineer to lead the technical vision, architect...
Location
Location
Salary
Salary:
225100.00 - 264500.00 CAD / Year
confluent.io Logo
Confluent
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of engineering experience
  • 4+ years in security, IAM, or distributed systems
  • Deep expertise in Kubernetes, workload identity, cloud IAM (AWS, GCP, Azure), and zero-trust architectures
  • Strong understanding of authentication technologies: IAM, OAuth2, OIDC, policy engines, and modern zero-trust principles
  • Proven track record leading multi-team technical initiatives at a Staff or Senior Staff level
  • Strong knowledge of distributed systems, cloud infrastructure, container orchestration, and service mesh
  • Excellent communication and stakeholder-influence skills across engineering and security domains
Job Responsibility
Job Responsibility
  • Define and drive the long-term architecture and roadmap for Internal Access Management across Kubernetes and multi-cloud environments
  • Architect and implement least privilege, just-in-time access, and zero-trust models across Confluent services
  • Build and evolve scalable access-authorization workflows and lifecycle management systems using technologies such as SPIFFE/SPIRE, OPA, cloud IAM policies, workload identity, and internal enforcement engines
  • Strengthen security boundaries through threat modeling, defense-in-depth practices, and comprehensive access-auditing capabilities
  • Partner with cross-functional teams—including Platform, Kafka, Observability, Developer Productivity, Release Engineering, and SRE—to drive adoption of secure identity and access patterns
  • Mentor senior engineers, elevate engineering standards, and influence architectural decisions across the organization
  • Communicate complex technical decisions clearly and align stakeholders across engineering and security
What we offer
What we offer
  • Remote-First Work
  • Robust Insurance Benefits
  • Flexible Time Away
  • The Best Teammates
  • Experience Ambassadors
  • Open and Honest Culture
  • Well-Being and Growth
  • Offers Equity
  • Fulltime
Read More
Arrow Right
New

Systems Software Security QA Engineer

Systems Software Security QA Engineer. This role has been designed as ‘Hybrid’ w...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's or Master's degree in Computer Science, Information Systems, or equivalent
  • Typically 5+ years experience
  • Proven expertise in developing comprehensive test strategies based on architecture and software design
  • Experience in the qualification of secure software systems, security products and features (eg. SSL, SSH, IPSEC) on Linux or similar UNIX systems
  • Expertise in design and development of automation frameworks
  • Strong knowledge of security basic concepts (authentication, access control, auditing, ciphers, cryptography, key management, etc) and security technologies
  • Extensive experience with multiple software quality assurance tools and processes
  • Software testing methodology, including writing and execution of test plans, debugging, and testing scripts and tools
  • Good understanding of secure testing concepts, familiarity with system-level programming, OS internals, Security Protocols (eg. SSL, SSH, IPSEC)
  • Basic programming (C) and scripting skills on Linux platforms
Job Responsibility
Job Responsibility
  • Designs quality assurance and test processes for portions and subsystems of end-user applications, systems software, running on hardware, local, networked, and Internet- based platforms
  • Analyzes design and determines test scripts, coding, automation, and integration activities required based on general objectives and knowledge of overall architecture of product or solution
  • Writes and executes complete testing plans, protocols, and documentation for assigned portion of application
  • identifies and debugs, and creates solutions for issues with code and integration into software and firmware architecture
  • Leads a project team of other software quality assurance engineers and internal and outsourced development partners to develop reliable and cost- effective testing and quality assurance solutions for assigned applications portion or subsystem
  • Collaborates and communicates with management, internal, and outsourced development partners regarding test status, project progress, and issue resolution
  • Represents the software quality assurance team for all phases of larger and more-complex development projects
  • Provides guidance and mentoring to less- experienced staff members.
What we offer
What we offer
  • Health & Wellbeing
  • Personal & Professional Development
  • Unconditional Inclusion
Read More
Arrow Right
Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Germany Jobs Ireland Jobs Poland Jobs
Company
Blog About Us Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
CrawlJobs Group
ITFlashcards AllDevBlogs
© 2026 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy