Senior Software Engineer, Identity

This is a fully remote position, open to applicants in Europe.

📋 Description

• Create and develop fundamental authentication and authorization infrastructure.

• Implement and advance our identity protocols - OAuth 2.0, OIDC, SAML/SSO, session management, and JWT - enabling secure access for hundreds of thousands of developers and their projects.

• Take ownership of the reliability, accuracy, and security posture of identity services across our distributed platform, spanning from the API gateway to backend services and the login UI.

• Identify architectural enhancements and guide them from the initial design phase through to production, maintaining a security-first perspective at every stage.

• Construct the identity layer for AI and agentic workflows.

• Design and execute agent attribution - establishing verifiable and auditable identities for AI agents acting on behalf of users and organizations at a platform scale.

• Collaborate with platform and product teams to define the identity primitives that support Sanity's AI Content Operating System, including authorization models for agentic contexts.

• Work collaboratively across the stack to enhance engineering quality.

• Manage end-to-end processes across backend services (Node.js/TypeScript), PostgreSQL, and frontend authentication flows - taking ownership of features from design to delivery.

• Engage in code reviews, architectural discussions, and incident response; contribute to on-call duties for identity services.

• Work closely with security, platform, and product teams to address cross-cutting concerns and help establish the technical direction for the Identity domain.

⛳️ Requirements

• Strong practical experience with TypeScript/Node.js and PostgreSQL in production backend environments.

• In-depth knowledge of identity and authentication standards: OAuth 2.0, OIDC, SAML, JWT, and session management.

• Proven track record in designing and managing distributed systems at scale - you comprehend the failure modes and trade-offs, not just the ideal scenarios.

• A security-first mindset - you analyze threat models, trust boundaries, and adhere to least-privilege principles by default.

• Self-motivated and independent; comfortable taking ownership of problems from start to finish and collaborating effectively within a remote, distributed team.

• Familiarity with Go, Lua, or Google Cloud Platform is an advantage.

🏝️ Benefits

• A highly-skilled, inspiring, and supportive team.

• A positive, flexible, and trust-based work environment that promotes long-term professional and personal growth.

• A global, multicultural team of colleagues and customers.

• Comprehensive health plans and benefits.

• A healthy work-life balance that accommodates individual and family needs.

• Competitive stock options program and location-based salary.