Software Engineer, Identity
About the role
At Scale, our mission is to develop reliable AI systems for the world's most important decisions. Our products provide the high-quality data and full-stack technologies that power the world's leading models, and help enterprises and governments build, deploy, and oversee AI applications that deliver real impact. We work closely with industry leaders like Meta, Ernst & Young, Mayo Clinic, Time Inc., the Government of Qatar, and U.S. government agencies including the Army and Air Force. We are expanding our team to accelerate the development of AI applications.
Responsibilities
- Drive the design, and implementation of our identity infrastructure to ensure secure authentication and authorization across enterprise systems.
- Build software for authentication mechanisms such as Single Sign-On (SSO), Multi-Factor Authentication (MFA), and federated identity solutions (SAML, OAuth, OpenID Connect).
- Build software for authorization mechanisms such as Relation-based access control (ReBAC), Attribute-based access control (ABAC), Role-based access control (RBAC).
- Build software-defined identity governance policies to ensure compliance with security policies, industry regulations (e.g., NIST, SOC2, ISO 27001), and organizational standards.
- Present technical information to teams and stakeholders, providing guidance and insight on identity management and best practices.
Requirements
- 3+ years of full-time engineering experience, post-graduation with specialities in infrastructure and identity systems.
- Infrastructure expertise – IAM controls, Infrastructure as Code (Terraform, Pulumi), microservice deployment best practices.
- Hands-on experience working with OpenFGA, Authzed, Cedar, Topaz, or similar authorization frameworks at scale.
- Strong understanding of Zanzibar-based ReBAC models, relationship tuples, and access control evaluation.
- Strong knowledge of authentication standards such as OAuth 2.0, OIDC, SAML, and JWT, as well as industry standard IdP solutions like EntraID, Okta, etc.
- Extensive experience in software development and a deep understanding of distributed systems and public cloud platforms (AWS preferred).
- Show a track record of independent ownership of successful engineering projects.
- Possess excellent communication and collaboration skills, and the ability to translate complex technical concepts to non-technical stakeholders.
Qualifications
- Nice to haves:
- Experience securing API access and implementing access control mechanisms at the application level.
- Multi-cloud infrastructure experience – AWS, Azure, GCP, and more.
- Proficiency in integrating IAM solutions with applications built using frameworks such as Java, Python, Node.js, or .NET.
Skills
- Experience with OpenFGA, Authzed, Cedar, Topaz, or similar authorization frameworks.
- Knowledge of Zanzibar-based ReBAC models.
- Understanding of authentication standards such as OAuth 2.0, OIDC, SAML, and JWT.
- Experience with multi-cloud infrastructure.
- Proficiency in integrating IAM solutions with applications built using frameworks such as Java, Python, Node.js, or .NET.
Benefits
We offer comprehensive health, dental and vision coverage, retirement benefits, a learning and development stipend, and generous PTO. Additionally, this role may be eligible for additional benefits such as a commuter stipend.
Pay
$216,000 - $270,000 USD
Schedule
Full-time