Staff Software Engineer, Cloud Identity
T
Temporal TechnologiesSoftware Development
Location: United States - Remote OpportunityFull-TimeStaff
Salary212,000 - 286,000 USD per year
Apply NowOpens the employer's application page
Job Details
- Required Skills
- GoDistributed Systems
Requirements
- Deep hands-on experience building and operating production identity systems (OAuth 2.0/2.1, OIDC, SAML, JWT/JOSE, JWKS rotation, SCIM).
- Exposure to workload identity (SPIFFE/SPIRE, WIF, mTLS, or short-lived federated credentials).
- Strong grasp of authorization at scale (RBAC, ABAC, ReBAC/Zanzibar) and policy engines (OPA, Cedar, OpenFGA).
- Track record operating latency-sensitive distributed systems in production.
- Experience with on-call ownership and operational excellence.
- Proficiency in Go.
- Strong communication skills with the ability to align stakeholders across teams.
Responsibilities
- Design and build Temporal Cloud's identity platform end-to-end (authentication, authorization, workload identity federation).
- Scale the auth hot path: in-memory auth bundles, JWKS caching, and revocation strategies.
- Integrate with enterprise IdPs like Okta, Entra ID, and Google Workspace.
- Own SCIM 2.0 provisioning and threat-model identity flows.
- Partner with Security, Product, and platform teams to ship secure-by-default patterns.
- Define IAM lifecycle and audit strategies.
- Mentor engineers and maintain architecture documentation.
- Engage directly with customers to understand requirements.
View Full Description & ApplyYou'll be redirected to the employer's site
