RemoteLeaf Logo
Log in Sign up

Staff Software Engineer

3 hours, 14 minutes ago
India
Lead
Software Engineer
Software Development
Active Directory HIPAA JWT SAML Secrets Management
Apply Now
Kaseya

Kaseya

Kaseya provides integrated IT management and security solutions for MSPs and SMBs, enabling centralized IT operations, remote management, cybersecurity, and automation.

IT Services
1K-5K
Founded 2000
$567M raised
View All Jobs 88

Description

  • Define the long-term architecture and technical roadmap for the IAM platform.
  • Lead identity, authentication, authorization, and access governance initiatives across multiple products and engineering teams.
  • Establish standards, reference architectures, and best practices for identity and access management across the organization.
  • Drive platform adoption and migration strategies for existing products and services.
  • Design, implement, and operate core IAM platform services.
  • Build integrations between identity providers, API gateways, authorization systems, secrets management platforms, and SaaS products.
  • Develop services for user lifecycle management, machine identity management, delegated administration, access reviews, and compliance reporting.
  • Implement secure token exchange, service-to-service authentication, and federated identity workflows.
  • Build APIs, automation, and self-service capabilities for onboarding, provisioning, and access governance.
  • Troubleshoot and resolve complex scalability, reliability, and security issues across the platform.
  • Design authorization models supporting RBAC, ABAC, delegated administration, and multi-tenant environments.
  • Define controls for least privilege, separation of duties, credential management, and privilege escalation prevention.
  • Ensure complete auditability of access grants, modifications, reviews, and revocations.
  • Partner with security and compliance teams to meet regulatory and customer requirements.

Requirements

  • 12+ years of software engineering experience with significant experience building distributed systems, platform services, or security infrastructure.
  • Deep expertise in Identity and Access Management (IAM), authentication, authorization, federation, and access governance.
  • Strong hands-on experience with OAuth 2.0, OpenID Connect (OIDC), SAML, JWTs, MFA, enterprise SSO, and delegated authorization patterns.
  • Demonstrated experience implementing, operating, extending, or integrating enterprise IAM platforms such as Zitadel, Keycloak, Authentik, ForgeRock, Ping Identity, Okta, Auth0, or equivalent solutions.
  • Experience building identity platforms by leveraging and extending open-source technologies rather than developing IAM systems entirely from scratch.
  • Strong understanding of multi-tenant SaaS architectures, tenant isolation, delegated administration, and B2B/B2B2B identity models.
  • Experience designing and implementing RBAC, ABAC, policy-based authorization, entitlement management, and access governance solutions.
  • Experience building and operating secure API platforms, service-to-service authentication, and machine identity systems.
  • Strong software engineering skills with modern backend technologies, cloud-native architectures, and infrastructure automation.
  • Experience designing highly available, scalable, and secure distributed systems.
  • Proven track record of leading large cross-functional technical initiatives while remaining deeply hands-on in architecture, implementation, and operational ownership.
  • Direct experience implementing or operating Zitadel or similar in a production environment (preferred).
  • Experience integrating IAM platforms with enterprise identity providers including Microsoft Entra ID, Okta, Google Workspace, Ping Identity, and Active Directory (preferred).
  • Experience with policy engines and policy-as-code frameworks such as Open Policy Agent (OPA), Cedar, or similar technologies (preferred).
  • Experience with machine identity lifecycle management, secrets management, certificate management, and workload identities (preferred).
  • Experience designing audit, compliance, governance, and entitlement review systems (preferred).
  • Familiarity with compliance frameworks such as SOC 2, ISO 27001, HIPAA, PCI-DSS, NIST, or FedRAMP (preferred).

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Bellese Technologies

Engineer II, FHIR

Bellese Technologies 51-250 Internet Software & Services

Bellese is hiring an Engineer II, FHIR to support CMS’s Hospital Quality Reporting program by modernizing healthcare reporting systems and building FHIR-based solutions for public health outcomes.

United States Full-time Mid Level QA Engineer Software Engineer
$109k-$125k
Agile Angular AWS CI/CD Databricks Go HTML Java Jenkins PostgreSQL Python REST API SQL Terraform TypeScript
12 minutes ago
DroneDeploy

Lead Software Engineer, 3D Computer Vision (USA)

DroneDeploy 251-1K Professional Services

DroneDeploy is hiring a remote Lead Software Engineer, 3D Computer Vision to lead its production photogrammetry pipeline, drive core 3D reconstruction work, and grow into a people leadership role.

United States Full-time Lead Software Engineer
AWS Azure C++ CI/CD Docker GCP GitHub Actions Jenkins Kubernetes PyTorch TensorFlow
1 hour, 54 minutes ago
Block

Senior Software Engineer, Product Platform

Block 10K-50K Capital Markets

Block’s Product Platform Engineering team is hiring a Senior Software Engineer to build and unify the internal platforms and operational systems that help engineers across the company ship, run, and improve products.

United States Full-time Senior Software Engineer
$185k-$327k
CI/CD Go Java Kafka Kubernetes Ruby
2 hours, 43 minutes ago
Abnormal AI

Software Engineer 2

Abnormal AI Internet Software & Services

Abnormal AI is hiring a Software Engineer II for its AI GTM Platform team to build internal products and platforms that help field teams deliver customer-facing solutions quickly in a cybersecurity environment.

Singapore Full-time Mid Level Software Engineer
Angular AWS Azure Docker GCP Go Kubernetes Microservices Python React TypeScript Vue.js
3 hours, 3 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers