As a Principal Software Engineer focused on Identity, you will lead the architecture and implementation of authentication and authorization systems that serve millions of users. You'll define the technical direction for identity infrastructure, ensuring it remains secure, highly available, and capable of scaling within a complex SaaS ecosystem.
Key Responsibilities
- Design and maintain core identity services including SSO, MFA, and token-based authentication using standards like SAML, OAuth 2.0, OpenID Connect, and JWT
- Lead integration efforts with enterprise identity providers such as Azure AD, Okta, Ping, and Google
- Ensure operational resilience, performance, and security of identity platforms in production environments
- Enforce security best practices around secrets management, key rotation, and compliance with SOC 2 and ISO standards
- Collaborate with product, platform, and security teams to align identity solutions with business goals
- Provide technical mentorship to engineers and contribute to architectural reviews and roadmap planning
- Champion automation, observability, and operational excellence across identity services
- Respond to critical incidents and support on-call rotations as needed
Qualifications
- Minimum of 5 years of software engineering experience with a focus on identity, authentication, or security
- Hands-on experience implementing SAML 2.0, OAuth 2.0, OpenID Connect, and related protocols
- Proven track record building and operating identity systems at scale in cloud-based SaaS environments
- Strong backend development skills in languages such as C#, Java, Go, or Node.js
- Familiarity with cloud platforms (AWS, Azure, or GCP) and infrastructure-as-code practices
- Understanding of API design, distributed systems, and modern CI/CD pipelines
- Experience integrating with enterprise identity providers and supporting compliance frameworks like SOC 2 or GDPR
Preferred Experience
- Working knowledge of IAM platforms including Auth0, Okta, Azure AD B2C, or Amazon Cognito
- Exposure to zero-trust security models and modern authorization patterns
- Experience debugging and troubleshooting large-scale distributed systems
- Skill in building frontend applications using React
- Strong communication abilities and cross-team influence
- Customer-centric mindset with a focus on secure, intuitive access experiences
Work Environment
This is a hybrid role based in Raleigh, NC, requiring a balance between remote work and office collaboration. Candidates must reside in the local area. The organization supports a diverse, inclusive culture that values global perspectives and fosters innovation through collaboration.
Compensation & Benefits
The salary range for this position is $153,000 – $189,000. Additional compensation includes a performance-based annual bonus and participation in the Employee Stock Purchase Program with a 27-month lookback. Benefits include comprehensive medical, dental, and vision coverage, 401(k) savings plan, tuition reimbursement, flexible vacation, paid birthday leave, parental leave, and wellness support through an Employee Assistance Program.
