Staff Software Engineer

2 weeks, 6 days ago
Lead
Software Development
Kaseya

Kaseya

Kaseya provides integrated IT management and security solutions for MSPs and SMBs, enabling centralized IT operations, remote management, cybersecurity, and automation.

IT Services
1K-5K
Founded 2000
$567M raised

Description

  • Define the long-term architecture and technical roadmap for the IAM platform.
  • Lead identity, authentication, authorization, and access governance initiatives across multiple products and engineering teams.
  • Establish standards, reference architectures, and best practices for identity and access management across the organization.
  • Drive platform adoption and migration strategies for existing products and services.
  • Design, implement, and operate core IAM platform services.
  • Build integrations between identity providers, API gateways, authorization systems, secrets management platforms, and SaaS products.
  • Develop services for user lifecycle management, machine identity management, delegated administration, access reviews, and compliance reporting.
  • Implement secure token exchange, service-to-service authentication, and federated identity workflows.
  • Build APIs, automation, and self-service capabilities for onboarding, provisioning, and access governance.
  • Troubleshoot and resolve complex scalability, reliability, and security issues across the platform.

Requirements

  • 8+ years of software engineering experience with significant experience building distributed systems, platform services, or security infrastructure.
  • Deep expertise in Identity and Access Management (IAM), authentication, authorization, federation, and access governance.
  • Strong hands-on experience with OAuth 2.0, OpenID Connect (OIDC), SAML, JWTs, MFA, enterprise SSO, and delegated authorization patterns.
  • Experience implementing, operating, extending, or integrating enterprise IAM platforms such as Zitadel, Keycloak, Authentik, ForgeRock, Ping Identity, Okta, Auth0, or equivalent solutions.
  • Experience building identity platforms by leveraging and extending open-source technologies rather than developing IAM systems entirely from scratch.
  • Strong understanding of multi-tenant SaaS architectures, tenant isolation, delegated administration, and B2B/B2B2B identity models.
  • Experience designing and implementing RBAC, ABAC, policy-based authorization, entitlement management, and access governance solutions.
  • Experience building and operating secure API platforms, service-to-service authentication, and machine identity systems.
  • Strong software engineering skills with modern backend technologies, cloud-native architectures, and infrastructure automation.
  • Experience designing highly available, scalable, and secure distributed systems.
  • Proven track record of leading large cross-functional technical initiatives while remaining deeply hands-on in architecture, implementation, and operational ownership.
  • Direct experience implementing or operating Zitadel or similar in a production environment, preferred.
  • Experience integrating IAM platforms with enterprise identity providers including Microsoft Entra ID, Okta, Google Workspace, Ping Identity, and Active Directory, preferred.
  • Experience with policy engines and policy-as-code frameworks such as Open Policy Agent (OPA), Cedar, or similar technologies, preferred.
  • Experience with machine identity lifecycle management, secrets management, certificate management, and workload identities, preferred.
  • Experience designing audit, compliance, governance, and entitlement review systems, preferred.
  • Familiarity with compliance frameworks such as SOC 2, ISO 27001, HIPAA, PCIDSS, NIST, or FedRAMP, preferred.
  • Experience migrating multiple products or business units to a centralized identity platform, preferred.
  • Experience supporting AI agents, autonomous systems, or workload identities in enterprise environments, preferred.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Intern, Forward Deployed Engineering

Workato 251-1K IT Services

Workato is hiring a Forward Deployed Engineering intern to support AI-driven automation initiatives by helping build intelligent agents and enterprise workflow integrations on its Agentic AI platform.

JavaScript JSON LLM Python REST API Salesforce
14 hours, 41 minutes ago

Software Engineer 3

Black Duck Inn 1K-5K Internet Software & Services

Black Duck Software is seeking a License Developer to evolve legacy licensing systems and build reliable, production-ready services for secure 24/7 customer use.

CI/CD DevSecOps Java Kubernetes Linux REST API Ruby on Rails
14 hours, 41 minutes ago

Statistical Programmer Sr

eClinical Solutions 251-1K Professional Services

Experienced Statistical Programmer role at a clinical research organization focused on delivering compliant statistical programming outputs for multiple clinical studies and regulatory submissions.

Git GitHub GitLab R SAP Shell Scripting
14 hours, 41 minutes ago

Data Conversion Software Engineer

Career TEAM 251-1K Professional Services

Career Team is hiring a Data Conversion Software Engineer to build data transformation and integration software for government-funded workforce development programs across the United States.

Agile Angular CI/CD Docker Express.js JavaScript JSON MongoDB NestJS Next.js Node.js React Scrum TypeScript XML
14 hours, 56 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers