Staff Software Engineer — Identity & Access Management

5 hours, 55 minutes ago
Full-time
Lead
Software Development
Xsolla

Xsolla

Xsolla is an international payment solution provider for online games, offering tools to launch, monetize, and scale games worldwide with local payment methods and fraud prevention.

Internet Software & Services
251-1K
Founded 2005

Description

  • Own the technical strategy and architecture for the IAM platform, including authentication, authorization, and session management at scale.
  • Design and evolve OAuth 2.0 and OIDC flows, token lifecycle, and security primitives to meet product and compliance needs.
  • Drive decisions on protocol design, data modeling, and platform reliability across engineering and security stakeholders.
  • Identify systemic risks and performance bottlenecks and lead efforts to resolve them before they become incidents.
  • Define engineering standards and review critical code and designs.
  • Create leverage for the team through documentation, tooling, and mentorship.
  • Collaborate with product, security, and infrastructure teams to align roadmap priorities and technical plans.
  • Serve as the escalation point for complex production issues in the IAM domain.

Requirements

  • Deep understanding of OAuth 2.0, OIDC, and related auth flows, including authorization code + PKCE, client credentials, device flow, token introspection, and refresh strategies.
  • Solid grasp of cookie security, CSRF, XSS, token storage, TLS, and secure session management.
  • Experience designing or operating production-grade IAM or authentication systems.
  • Strong Go (Golang) engineering skills, including idiomatic code, concurrency patterns, and performance profiling.
  • Experience with distributed systems and their trade-offs, including consistency, availability, and failure modes.
  • Experience with PostgreSQL schema design, query optimization, and migrations at scale.
  • Experience deploying, operating, and debugging services in Kubernetes.
  • Experience with Kafka or NATS and event-driven patterns, consumer groups, and at-least-once delivery.
  • Proven ability to lead multi-quarter technical initiatives across teams and influence architecture beyond your immediate team.
  • Strong written and verbal communication skills, including writing RFCs and design docs that are read and acted on.
  • Hands-on experience with the Ory ecosystem (Hydra, Kratos, Keto) in production or via API integration, preferred.
  • Experience with CockroachDB or other distributed SQL databases, preferred.
  • Familiarity with IAM-related compliance requirements such as SOC 2, ISO 27001, GDPR data minimization, and audit logging, preferred.
  • Contributions to open-source security or identity projects, preferred.
  • Experience building or integrating with SCIM, SAML, or enterprise SSO such as LDAP or Active Directory, preferred.
  • Background in platform or infrastructure engineering, preferred.
  • Hands-on experience with modern AI tools such as Claude, Copilot, or Cursor for code generation and review, preferred.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Principal AI Security Specialist - Federal

Zscaler 1K-5K Internet Software & Services

Zscaler is hiring a Principal AI Security Specialist to lead field-facing enterprise AI security engagements, helping Fortune 500 customers adopt GenAI securely across complex sales cycles.

Cybersecurity Generative AI LLM
5 hours, 25 minutes ago

Lead Technologist

Whiteshield 51-250 Internet Software & Services

Whiteshield is seeking a senior software engineer to build AI-enabled digital solutions for internal teams and clients in a fast-moving sovereign intelligence environment.

Ansible AWS Azure C# Docker Elasticsearch GCP Git Machine Learning MongoDB .NET Next.js PostgreSQL Python React Scikit-learn SQL Server Terraform
5 hours, 40 minutes ago

Senior Staff Engineer, HR Platform

OKX 1K-5K Diversified Financial Services

OKX is hiring a Senior Staff Engineer to lead architecture and modernization of internal platform systems that support enterprise efficiency and the company’s global growth.

Elasticsearch Java Kafka MySQL Redis Spring Spring Boot
5 hours, 40 minutes ago

Salesforce & GTM Applications Technical Lead

Seeq 51-250 Chemicals

Seeq is seeking an SFDC & GTM Applications Technical Lead to own Salesforce CPQ and related revenue systems, guiding end-to-end solutions across quoting, integrations, automation, and operational improvements for the go-to-market organization.

ERP Salesforce Salesforce Apex
5 hours, 55 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers