Senior Software Engineer, Identity & Access

StackAI

$120K — $160K *
New York, NY 10025In-Person
Enterprise Technology
Less than 5 years of experience
Today
Be an Early Applicant
Job Overview by Ladders

Qualifications

  • 4+ years of experience in building backend systems, focused on identity, authentication, or authorization
  • Deep knowledge of OIDC, OAuth2, SAML, token exchange, and multi-tenant RBAC
  • Experience in developing or managing enterprise SSO and identity systems
  • Proficiency in Python and modern backend frameworks like FastAPI
  • Commitment to clean, well-architected access controls and optimizing administrator experiences.

Responsibilities

  • Deliver enterprise sign-on via SSO for customer onboarding
  • Build role-based access control with fine-grained enforcement
  • Implement SCIM provisioning and directory synchronization
  • Develop token exchange and on-behalf-of flows for agents and services
  • Create robust access governance through entitlements and session management.

Benefits

  • Opportunity to work on foundational technology for enterprise adoption
  • Engage with a lean, high-impact team
  • Fast-paced environment with immediate impact on the product
  • Potential for growth and development in the identity domain
  • Inclusion of diverse technologies and systems in daily work.
Full Job Description
The role

Every large enterprise that adopts Stack AI needs to control precisely who can do what, on whose behalf, across their whole organization. We're hiring a Senior Software Engineer, Identity & Access to build the access layer that makes that possible: the authentication, authorization, and access control that let our largest and most regulated customers adopt Stack AI with confidence.

This is foundational work for enterprise adoption. Strong identity is what lets a large organization roll Stack AI out across many teams, and lets their administrators manage all of it cleanly. You'll own that layer across the platform, from sign-on to fine-grained permissions.

What you'll do
  • Own enterprise sign-on. Deliver SSO across OIDC and SAML so customers onboard with their own identity provider.
  • Own authorization and RBAC. Build role-based access control with fine-grained, query-time enforcement across the product.
  • Own provisioning and lifecycle. Deliver SCIM provisioning and directory sync so user and group management stays in step with the customer's directory.
  • Own delegated and machine identity. Build token exchange, on-behalf-of flows, service accounts, and domain-wide delegation so agents and services act with scoped authority.
  • Own access governance. Build the entitlements, session and token management, and controls that keep access clean and auditable at scale.
What we're looking for
  • 4+ years building backend systems, with significant time spent on identity, authentication, or authorization.
  • Real depth in OIDC, OAuth2, SAML, token exchange, and multi-tenant RBAC.
  • You've built or owned enterprise SSO and identity systems, with a strong grasp of identity-provider architecture and enterprise auth patterns.
  • Strong in Python and modern backend frameworks (FastAPI or similar).
  • You care about clean, well-architected access control and the experience of the administrators who manage it.

Identity is broad. If you're strong on most of this and excited to grow into the rest, we'd like to hear from you, even if you don't check every box.

Bonus points
  • SCIM and directory sync at scale.
  • Authorization frameworks and policy engines (OPA, Cedar, or Zanzibar-style systems).
  • Entitlements, usage-based metering, or billing systems.
  • Multi-tenant SaaS at scale.
  • Startup or growth-stage experience.
Why Stack AI

You'll join a lean, high-impact team and own the access layer that lets the largest enterprises adopt Stack AI. Your work ships fast and is felt across the whole product.
* Ladders Estimates

Similar Jobs

Ad banner background

Get Ready For Your
Next Interview

More Jobs at StackAI

More Enterprise Technology Jobs

Find similar Senior Software Engineer, Identity & Access jobs:

NationwideNew York, NY