Principal Engineer, Engineering Core Services

Jeppesen ForeFlight Careers•Austin, TX

7d•Hybrid

About The Position

We are hiring a Principal Engineer to set the technical direction across our Engineering Core Services at Jeppesen ForeFlight. Core Services is the set of shared platform capabilities that every Jeppesen ForeFlight product organization depends on, including customer identity (CIAM), commerce, and a growing set of other shared services. Across Jeppesen ForeFlight, customer identity, commerce, customer operations, and entitlement grew up as independent services inside independent products. In a unified multi- product platform, that work is tightly coupled: the same customer record drives authentication, billing, entitlement decisions, and support across product lines. The Principal Engineer owns the long-term architecture that gets us there, drives the consolidation work to make it real, and holds the vision steady across a fragmented present. We are hiring someone who has architected in this paradigm at a multi-product company before. This is an Individual Contributor role. You will own the architecture across the Core Services portfolio, set the technical bar for senior engineers in the org, and influence engineers across the broader engineering organization through architectural reviews and RFCs. The role is preferred as Hybrid working in Austin TX, Houston TX or Denver CO, we will consider virtual for the right candidate.

Requirements

12+ years of engineering experience, with at least 7 as primary architect for a portfolio of shared services spanning multiple product organizations or business lines (e.g., identity, commerce, customer operations)
Track record in the coupled customer-foundation paradigm at a multi-product company: identity, commerce, entitlement, and customer operations sharing customer and account models, architected as one platform rather than independent services
Deep production experience architecting and operating a CIAM platform at scale, with expert command of OAuth 2.0, OIDC, SAML 2.0, API security, and federation. Auth0 preferred; other major platforms (Okta CI, Entra ID, Ping, ForgeRock) also relevant
Beyond identity, deep production experience in at least one other shared platform domain: commerce / billing, customer operations / CRM, or enterprise data integration
Strong systems-integration judgment across heterogeneous environments and multiple business models: APIs, eventing, data modeling, and representing contracts, entitlements, and catalogs cleanly across consumer subscriptions, enterprise contracts, per-seat and per- asset licensing, and reseller flows
Cloud-native architecture experience (AWS, Kubernetes/EKS, service mesh, Terraform, observability, secrets management) combined with operating experience in legacy enterprise environments (ERP, SOAP/XML APIs, longstanding catalogs), or strong evidence you can become productive across both
Cross-functional leadership, comfortable as a peer with senior product, finance, security, legal, and customer-facing leaders, including direct engagement with major enterprise customers and partners on architecture
Comfortable with the coordination work of a recently combined company: divergent stacks and processes, in-flight unification, and the political work that comes with it

Nice To Haves

Experience leading a migration from a legacy identity solution to a modern shared platform
Experience post-M&A integrating engineering platforms across two or more legacy stacks
Hands-on experience with one or more commerce and subscription platforms (Stripe Billing, Recurly, Zuora, or similar) in addition to homegrown commerce systems
Experience taking a Platform Services organization from a set of disconnected services to a coherent platform with shared standards and adoption across product teams
Experience supporting subscription and billing platforms through audit-readiness, financial-controls maturity, and revenue-recognition requirements
Experience in aviation, regulated industries, or other domains with mission-critical customers and complex contract structures
Privacy and regulatory experience: GDPR, SOC 2, aviation-relevant frameworks, and financial-controls frameworks relevant to subscription and billing platforms
Background in security engineering or DevSecOps, with strong instincts for threat modeling of authentication systems
Experience contributing to or evaluating identity standards (IETF, OpenID Foundation, etc.)

Responsibilities

Own architecture, 2-3 year roadmap, and decision authority across the Engineering Core Services portfolio, including the platform-versus-product boundary
Own the CIAM platform architecture and the consolidation onto a modern shared identity foundation across product lines, including authentication, authorization, federation, and account lifecycle
Lead the long-term subscription and billing platform strategy: build, buy, or hybrid evaluation, and migration of legacy capabilities onto modern shared platforms
Drive simplification and standardization of contract, entitlement, and catalog models across product lines
Define the integration patterns and platform standards product engineering teams use to consume our services
Mentor senior engineers, influence the broader engineering organization, and represent Engineering Core Services in forums with senior product, security, finance, and customer- facing leadership
Engage directly with stakeholders on architecture questions that cross product boundaries
Set the privacy, security, and regulatory posture for shared platform services, with particular ownership of identity compliance