Software Engineer
Netflix - 1d ago
Senior Software Engineer
Reddit - 4d ago
Staff Security Engineer, IAM
AI Summary ✨
Requirements:
- 7+ years of experience in software or security engineering, with significant hands-on technical depth.
- Strong experience in at least one modern programming language (Go, Java, Scala, Python, or similar).
- Proven experience designing and operating IAM systems in a cloud-first environment.
- Deep understanding of authentication and authorization protocols:
- SAML
- OAuth2 / OIDC
- SCIM
- MFA and modern identity assurance methods
- Experience with identity providers and directories such as Okta, Azure AD, Google Cloud Identity, or Active Directory.
- Hands-on experience with identity governance platforms (e.g., ConductorOne, SailPoint IdentityNow), including lifecycle management, access reviews, and ABAC models.
- Strong understanding of cloud IAM (AWS IAM, GCP IAM, Azure RBAC).
- Experience building secure integrations and automation using REST APIs and event-driven architectures.
- Experience leading significant cross-team security initiatives.
- Strong knowledge of RBAC, ABAC, PAM, and Zero Trust architecture principles.
- Experience working in high-growth, cloud-native environments.
- Strong architectural thinking and ability to design resilient, scalable systems.
- Excellent communication skills with the ability to influence cross-functional stakeholders and drive adoption of secure design patterns.
Nice to have:
- Experience implementing or integrating Just-in-Time (JIT) access or Privileged Access Management tooling.
- Experience embedding IAM controls into developer workflows (Terraform, CI/CD, GitOps).
- Experience in regulated environments (SOX, GDPR, PCI).
- Containerization and orchestration experience (Docker, Kubernetes).
What you'll be doing:
- Own and evolve Deliveroo’s IAM architecture across identity providers (e.g., Okta, Azure AD, Google Cloud Identity), identity governance (e.g., ConductorOne, SailPoint IdentityNow), and cloud IAM (AWS/GCP).
- Design scalable solutions for authentication, authorization, provisioning, deprovisioning, RBAC/ABAC, JIT access, and privileged access management.
- Drive improvements to access governance processes including certifications, SoD controls, and policy enforcement.
- Lead implementations and technical integrations between domains, ensuring engineering core principles are adhered to.
- Develop ‘Paved Roads’ for stakeholders enforcing IAM best good practices to teams.
Perks and Benefits:
- Benefits differ by country, but include healthcare, well-being, parental leave, pensions, and generous annual leave allowances.
- Opportunity to be part of a rapidly growing industry and shape IAM and security engineering at scale within a global technology company.
- Commitment to diversity, equity, and inclusion in all aspects of the hiring process.
