Senior Software Engineer, IAM

About The Position

Requirements

• 6+ years of backend software engineering experience building and operating production services
• Bachelor’s degree in Computer Science, Engineering, or a related field, or equivalent practical experience
• Strong proficiency in Go, including building and operating services in production
• Solid working knowledge of PostgreSQL - schema design, query performance, migrations, and operating Postgres under real load
• Experience with gRPC and event-driven systems using Kafka (or comparable)
• Experience operating on AWS
• Strong understanding of core identity and security concepts: OAuth2, OIDC, SAML, JWT, token lifecycle, and session management
• Experience with authorization models, including RBAC and ReBAC-style approaches
• Track record of designing and operating distributed systems where reliability, security, and correctness are first-class concerns
• Willingness and ability to participate in an on-call rotation for services on the critical request path
• Excellent written and verbal communication skills in a remote, async-first environment

Nice To Haves

• Production experience with SCIM provisioning and enterprise SSO integrations
• Hands-on experience with Auth0 or similar identity platforms
• Experience building or operating multi-region services and understanding the tradeoffs involved
• Exposure to compliance frameworks relevant to identity (SOC 2, ISO 27001, GDPR)
• Experience with audit logging at scale, or with building identity primitives for machine / workload identities

Responsibilities

• Design, build, and operate Go services powering authentication, authorization, token handling, and identity lifecycle across Docker
• Extend OIDC, SSO, SAML, and SCIM integrations, and evolve our authorization model (including ReBAC) as permissions scale across products and tenants
• Improve observability, performance, and security posture of identity services on the hot path of every authenticated request, and strengthen audit logging
• Design for multi-region operation, graceful degradation, and safe rollout of changes to critical auth flows
• Lead projects end-to-end, contribute to technical design and long-term direction of the IAM platform, and mentor teammates in identity and security domains
• Partner with Product, Security, and engineering teams that depend on IAM primitives to ensure our APIs are clear, safe, and easy to adopt
• Take part in the paid on-call rotation for the team; respond to incidents, debug production issues, and drive continuous improvement of system reliability

Benefits

• Designated quarterly Whaleness Days plus end of year Whaleness break
• Home office setup
• 16 weeks of paid Parental leave
• Technology stipend equivalent to $100 net/month
• PTO plan that encourages you to take time to do the things you enjoy
• Training stipend for conferences, courses and classes
• Equity
• Docker Swag
• Medical benefits, retirement and holidays vary by country