Docker, IncRemote
Senior Software Engineer, IAM
United States of America
Full Time
4 hours ago
$161,000 - $261,000 USD
H1B Sponsor Likely
Key skills
GoKafkagRPCAWSDockerIAMPostgreSQLPostgresAuth0JWTSAMLSSOCommunication
About this role
Docker, Inc is a leading company in developer tooling, trusted by millions of users. They are seeking a Senior Software Engineer to join their IAM team, responsible for developing and maintaining systems that govern user identity and access management.
Responsibilities:
- Design, build, and operate Go services powering authentication, authorization, token handling, and identity lifecycle across Docker
- Extend OIDC, SSO, SAML, and SCIM integrations, and evolve our authorization model (including ReBAC) as permissions scale across products and tenants
- Improve observability, performance, and security posture of identity services on the hot path of every authenticated request, and strengthen audit logging
- Design for multi-region operation, graceful degradation, and safe rollout of changes to critical auth flows
- Lead projects end-to-end, contribute to technical design and long-term direction of the IAM platform, and mentor teammates in identity and security domains
- Partner with Product, Security, and engineering teams that depend on IAM primitives to ensure our APIs are clear, safe, and easy to adopt
- Take part in the paid on-call rotation for the team; respond to incidents, debug production issues, and drive continuous improvement of system reliability
Requirements:
- 6+ years of backend software engineering experience building and operating production services
- Bachelor's degree in Computer Science, Engineering, or a related field, or equivalent practical experience
- Strong proficiency in Go, including building and operating services in production
- Solid working knowledge of PostgreSQL - schema design, query performance, migrations, and operating Postgres under real load
- Experience with gRPC and event-driven systems using Kafka (or comparable)
- Experience operating on AWS
- Strong understanding of core identity and security concepts: OAuth2, OIDC, SAML, JWT, token lifecycle, and session management
- Experience with authorization models, including RBAC and ReBAC-style approaches
- Track record of designing and operating distributed systems where reliability, security, and correctness are first-class concerns
- Willingness and ability to participate in an on-call rotation for services on the critical request path
- Excellent written and verbal communication skills in a remote, async-first environment
- Production experience with SCIM provisioning and enterprise SSO integrations
- Hands-on experience with Auth0 or similar identity platforms
- Experience building or operating multi-region services and understanding the tradeoffs involved
- Exposure to compliance frameworks relevant to identity (SOC 2, ISO 27001, GDPR)
- Experience with audit logging at scale, or with building identity primitives for machine / workload identities