Staff Software Engineer - Identity & Access Management PlatformJob SummaryWe're hiring a Staff Software Engineer to help build and scale Kaseya's Identity and Access Management (IAM) platform. This role focuses on developing authentication, authorization, and identity governance services that support a growing portfolio of SaaS products. You will work closely with Engineering, Security, and Product teams to deliver secure, reliable, and scalable identity capabilities while contributing to the long-term evolution of the platform.
Roles & Responsibilities- Design, build, and maintain IAM platform services and APIs
- Develop integrations between identity providers, authorization systems, and SaaS products
- Implement authentication, authorization, and user lifecycle management capabilities
- Build services supporting access governance, delegated administration, and compliance requirements
- Design secure service-to-service authentication and machine identity workflows
- Improve platform scalability, reliability, observability, and operational performance
- Participate in architecture reviews and technical design discussions
- Mentor engineers and contribute to engineering standards and best practices
Required Qualifications- 8+ years of software engineering experience building distributed systems or platform services
- Experience implementing authentication and authorization solutions in production environments
- Experience with OAuth 2.0, OpenID Connect (OIDC), SAML, JWTs, MFA, or enterprise SSO
- Experience integrating IAM platforms such as Keycloak, Authentik, Zitadel, Okta, Auth0, or similar technologies
- Experience building cloud-native services for SaaS applications or platform environments
Preferred Qualifications- Experience with multi-tenant SaaS architectures and tenant isolation models
- Experience with RBAC, ABAC, delegated administration, or access governance solutions
- Experience integrating enterprise identity providers such as Microsoft Entra ID, Okta, Google Workspace, or Active Directory
- Experience with policy engines such as Open Policy Agent (OPA) or Cedar
- Experience with machine identity management, secrets management, or certificate management
- Experience supporting compliance or audit requirements within enterprise environments
- Experience using AI-assisted development tools (e.g., GitHub Copilot, ChatGPT) in development workflows
