
Staff Software Engineer – Identity & Access Management
Posted Jun 30

Posted Jun 30
This is a fully remote position, open to applicants in Serbia.
• Take charge of the technical strategy and architecture for our IAM platform, encompassing authentication, authorization, and session management on a large scale.
• Design and enhance our OAuth 2.0 / OIDC flows, manage the token lifecycle, and implement security measures to satisfy both product and compliance needs.
• Lead decisions regarding protocol design, data modeling, and platform reliability while fostering collaboration among engineering and security teams.
• Recognize systemic risks and performance challenges; spearhead initiatives to address them before they escalate into incidents.
• Establish engineering standards, evaluate critical code and designs, and empower the team through comprehensive documentation, tooling, and mentorship.
• Work alongside product, security, and infrastructure teams to synchronize roadmaps and convert business requirements into clearly defined technical plans.
• Act as the primary escalation point for complex production issues within the IAM domain.
• Profound understanding of OAuth 2.0, OIDC, and associated authorization flows: authorization code + PKCE, client credentials, device flow, token introspection, and refresh strategies.
• Strong knowledge of cookie security, CSRF, XSS, token storage, TLS, and secure session management practices.
• Experience in designing or managing production-quality IAM or authentication systems.
• Proficient in Go (Golang) engineering: writing idiomatic code, understanding concurrency patterns, and conducting performance profiling.
• Familiarity with distributed systems and their inherent trade-offs (consistency, availability, and failure modes).
• PostgreSQL expertise: schema design, query optimization, and large-scale migrations.
• Experience with Kubernetes: deploying, operating, and troubleshooting services within a Kubernetes environment.
• Knowledge of Kafka or NATS: event-driven architectures, consumer groups, and at-least-once delivery mechanisms.
• Proficient in Git and contemporary CI/CD methodologies.
• Demonstrated capability to lead technical initiatives spanning multiple quarters across various teams.
• Proven history of influencing architectural decisions and standards beyond your immediate team.
• Ability to craft RFCs and design documents that engage readers effectively.
• Health insurance
• Paid time off
• Flexible work arrangements
• Professional development opportunities
eSimplicity
Inspiration Commerce Group
Synchrony
Get handpicked remote jobs straight to your inbox weekly.