This position is listed on behalf of a partner company, who manages all applications and next steps. Our partner is looking for a Senior Staff Software Engineer- IAM based in India.
We are seeking a Senior Staff Software Engineer specializing in Identity and Access Management to lead the evolution of secure, scalable identity platforms.
This role combines deep technical expertise, architectural leadership, and hands-on engineering to build foundational security capabilities.
You will define IAM strategies, design distributed systems, and deliver solutions that enable secure access across multiple products and platforms.
The position offers the opportunity to influence enterprise-grade authentication, authorization, and governance frameworks at significant scale.
You will collaborate with engineering, security, and compliance teams to establish best practices and drive platform adoption.
The ideal candidate is a highly experienced engineer passionate about security, cloud-native architectures, and building reliable identity solutions.
This position is listed on behalf of a partner company, who manages all applications and next steps. Our partner is looking for a Senior Staff Software Engineer- IAM based in India.
We are seeking a Senior Staff Software Engineer specializing in Identity and Access Management to lead the evolution of secure, scalable identity platforms.
This role combines deep technical expertise, architectural leadership, and hands-on engineering to build foundational security capabilities.
You will define IAM strategies, design distributed systems, and deliver solutions that enable secure access across multiple products and platforms.
The position offers the opportunity to influence enterprise-grade authentication, authorization, and governance frameworks at significant scale.
You will collaborate with engineering, security, and compliance teams to establish best practices and drive platform adoption.
The ideal candidate is a highly experienced engineer passionate about security, cloud-native architectures, and building reliable identity solutions.
Accountabilities:
- Define the long-term architecture, technical roadmap, and evolution strategy for identity and access management platforms.
- Lead initiatives across authentication, authorization, identity federation, access governance, and security infrastructure.
- Establish IAM standards, reference architectures, and engineering best practices across multiple product and engineering teams.
- Design, develop, and operate core IAM services supporting user lifecycle management, machine identities, delegated administration, and compliance reporting.
- Build integrations between identity providers, API gateways, authorization systems, secrets management platforms, and enterprise applications.
- Implement secure authentication and authorization workflows, including token exchange, service-to-service authentication, and federated identity patterns.
- Develop APIs, automation capabilities, and self-service solutions for provisioning, onboarding, and access management.
- Design authorization models using RBAC, ABAC, policy-based access controls, and entitlement management strategies.
- Ensure secure access governance through auditability, least privilege controls, separation of duties, and privilege management.
- Troubleshoot complex scalability, reliability, and security challenges across distributed systems.
- Partner with security and compliance teams to support regulatory requirements and enterprise security standards.
- Drive adoption and migration strategies for identity capabilities across existing products and services.
- Lead cross-functional technical initiatives while remaining deeply involved in architecture, implementation, and operational ownership.
- 12+ years of software engineering experience, with significant experience developing distributed systems, platform services, or security-focused infrastructure.
- Deep expertise in Identity and Access Management (IAM), including authentication, authorization, federation, and access governance.
- Strong hands-on experience with OAuth 2.0, OpenID Connect (OIDC), SAML, JWTs, MFA, enterprise SSO, and delegated authorization models.
- Proven experience implementing, operating, extending, or integrating enterprise IAM platforms such as Keycloak, Zitadel, Authentik, ForgeRock, Ping Identity, Okta, Auth0, or similar technologies.
- Experience building identity platforms by extending and integrating existing open-source IAM solutions.
- Strong understanding of multi-tenant SaaS architectures, tenant isolation, delegated administration, and B2B identity models.
- Experience designing and implementing RBAC, ABAC, policy-based authorization, entitlement management, and access governance solutions.
- Experience building secure API platforms, service-to-service authentication systems, and machine identity solutions.
- Strong software engineering background with modern backend technologies, cloud-native architectures, and infrastructure automation.
- Experience designing highly available, scalable, and secure distributed systems.
- Proven ability to lead large technical initiatives across multiple teams while maintaining hands-on involvement.
- Strong communication, collaboration, and problem-solving skills.
- Production experience implementing or operating Zitadel or similar IAM platforms.
- Experience integrating identity solutions with Microsoft Entra ID, Okta, Google Workspace, Ping Identity, and Active Directory.
- Familiarity with policy engines and policy-as-code frameworks such as Open Policy Agent (OPA), Cedar, or similar technologies.
- Experience with machine identity lifecycle management, secrets management, certificate management, and workload identity solutions.
- Experience designing audit, compliance, governance, and entitlement review systems.
- Knowledge of compliance frameworks such as SOC 2, ISO 27001, HIPAA, PCI-DSS, NIST, or FedRAMP.
- Opportunity to work on large-scale identity and security platforms with global impact.
- Remote-friendly work environment with flexibility to collaborate across distributed teams.
- Exposure to advanced cloud-native technologies, cybersecurity practices, and enterprise architecture.
- Professional growth opportunities through challenging technical projects and leadership responsibilities.
- Collaborative culture focused on innovation, ownership, and engineering excellence.
- Opportunity to influence platform strategy and build solutions used across multiple products and services.
- Competitive compensation and benefits package.
- Supportive environment focused on continuous learning and career development.
The Senior Staff Software Engineer will own the technical direction and execution of identity and access management initiatives, balancing strategic architecture with hands-on development. This role requires strong leadership in designing secure platforms, improving engineering standards, and delivering scalable solutions across complex environments.
Requirements:
The ideal candidate will bring extensive experience building secure distributed systems and enterprise identity platforms, with strong technical leadership and hands-on engineering capabilities.
Preferred qualifications include: