Senior Software Engineer, Full Stack - Identity

Camunda is the leader in enterprise agentic automation, orchestrating complex business processes. As a Senior Software Engineer, Full Stack on Camunda’s Identity team, you’ll design and build the identity and access management foundation, integrating with complex customer environments and ensuring secure, reliable IAM capabilities.

Responsibilities:

• Design and deliver core IAM features for Camunda 8 (e.g., multi‑provider SAML and/or OIDC support, SCIM-based user and group management, plugin systems for external IdPs), from initial solution design through implementation, testing, observability, and rollout across Orchestration Cluster and Hub
• Lead medium‑to‑large engineering initiatives (roughly 3+ months), breaking down ambiguous problems, writing clear solution designs and project plans, coordinating with multiple teams, and driving predictable delivery
• Integrate our platform with enterprise identity landscapes, building secure, resilient, and configurable integrations with customers’ existing identity providers and organizational models, with a strong focus on security, compliance, and ease of operation
• Collaborate closely in a remote‑first environment with engineers, product managers, designers, SRE, QA, and support to clarify requirements, make trade‑offs transparent, and reach clear, timely decisions with minimal churn
• Improve reliability and developer experience by maintaining and evolving our CI/build pipelines, strengthening observability for IAM components, and contributing to our on‑call and incident management practices (including L3 support)
• Raise the technical bar on the team by mentoring peers, reviewing designs and code, and sharing practical approaches to building distributed, secure, and integration‑heavy systems

Requirements:

• Ability and/or willingness to use our product
• 7+ years of experience as a product software engineer, building and maintaining production software (ideally B2B or enterprise products) in a full‑stack or backend‑leaning role
• Proven track record leading medium‑to‑large engineering projects (around 6 months in duration) from inception to delivery, writing solution designs and project plans, and driving on‑time outcomes in a highly asynchronous, remote setting
• Hands‑on experience implementing identity and access management solutions — for example, integrating and customizing enterprise identity providers into applications, or building IAM services/components (such as auth services or identity providers like Keycloak, Auth0, Ory, etc.)
• Comfort with ambiguity and strong ownership mindset: you can take loosely defined problems, clarify them with stakeholders, propose pragmatic solutions, and move work forward autonomously without waiting for step‑by‑step guidance
• Excellent communication skills in a remote‑first environment: you tailor your explanations to your audience (engineers, product, design, management), translate business requirements into actionable engineering work, and help drive issues to clear, timely decisions with minimal back‑and‑forth
• Experience with workflow automation or process orchestration software, or similar integration‑heavy enterprise platforms
• Experience with Spring Security and the Spring ecosystem, plus modern Java and JVM tooling
• Background in clustered/distributed, eventually consistent applications, including making and explaining trade‑offs between consistency, availability, and performance
• Experience with federated IAM solutions (e.g., multi‑tenant, multi‑IdP, or cross‑cluster identity scenarios)
• Experience working in fully remote organizations, and/or participating in incident management and L3 support for production systems