Build and improve core parts of Temporal Cloud's identity platform including authentication (OAuth 2.0/OIDC, SAML) and authorization (RBAC and policy-based access).
Integrate with enterprise identity providers (Okta, Entra ID, Google Workspace) and support user provisioning (SCIM) while addressing identity threats like token replay.
Write clear architecture and design docs, and contribute to the team's technical direction.
Temporal is an open source programming model that simplifies code and makes applications more reliable. We are a growing team of curious, driven, and collaborative individuals building the reliable foundation for every developer's toolbox.
Define architecture and technical direction for a large-scale IAM platform supporting authentication, authorization, and identity governance.
Lead design and implementation of secure, scalable identity systems including RBAC, ABAC, and multi-tenant architectures.
Partner with Security, Compliance, and Product teams to meet enterprise governance and regulatory requirements.
Jobgether uses AI-powered matching to connect candidates with hiring companies. They process applications and shortlist top candidates for partner companies, focusing on efficient and fair hiring.
Design and build platform services for authentication, authorization, and audit across ClickHouse Cloud.
Implement protocol-level support for SAML, SCIM, OIDC, OAuth2, and MFA/passwordless flows.
Partner with product teams to migrate auth implementations onto the shared platform and own production reliability.
ClickHouse is a leading real-time analytics and data warehousing company, recognized on the 2025 Forbes Cloud 100 list. With over 3,000 customers and rapid growth, including a $400M Series D funding round, the company serves AI innovators and global brands like Meta, Sony, and Tesla.
Design and implement authorization frameworks and just-in-time access controls for cloud resources.
Develop security automation scripts and tools in Python and Go to streamline operations and incident response.
Collaborate with engineering teams to integrate security controls into CI/CD pipelines and infrastructure.
Included Health is a healthcare company delivering integrated virtual care and navigation. It has a remote-first culture and offers comprehensive benefits.
United StatesCanadaUK
Unlimited PTO
18w maternity
12w paternity
Build and maintain core components of the clearing house in Go on GCP, including customer onboarding flows and data ingestion pipelines.
Take ownership of ambiguous problems and drive features from design through production with appropriate testing and observability.
Participate in on-call rotation, contribute to incident response, and become a go-to engineer for core subsystems.
Chainguard is the trusted source for secure open source software, delivering hardened builds for enterprise customers. The company is venture-backed by leading investors and serves Fortune 500 enterprises.
Lead the design and development of scalable backend APIs and services integrating with cloud services, focusing on IBM Cloud.
Collaborate with product, infrastructure, and partner teams to design intuitive and maintainable interfaces.
Influence long-term architecture and technical direction for Sysdig's integrations with IBM Cloud.
Sysdig creates cloud security tools, including the open-source Falco project for threat detection. It is trusted by over 60% of the Fortune 500 and recognized as a Best Place to Work and one of Deloitte's fastest-growing companies for the past 5 years.
Own end-to-end domain within the clearing house: customer onboarding, entitlements, or data validation.
Drive architecture and implementation of backend systems in Go on GCP, ensuring production readiness.
Establish engineering best practices and collaborate with principal engineer on technical planning.
Chainguard secures the open source software supply chain by providing hardened, secure builds of open source software. It is a venture-backed startup with a remote-first culture, trusted by Fortune 500 enterprises.
Design and build resilient, scalable platform services like authentication and rate limiting.
Collaborate with engineers across teams to deliver infrastructure solutions.
Optimize systems for security, performance, and always-on availability.
Constructor is an AI-first ecommerce search and discovery platform that helps shoppers find products and enables brands to drive revenue. The company is fully remote and fosters a culture of growth, offering training budgets and regular team offsites.
Design and evolve IAM foundations for AI Agents, including agent identity and permission guardrails.
Build authentication and authorization systems that are reliable, standards-based, and performant for millions of global users.
Partner with Infrastructure, Security, Compliance, and Product Engineering to solve complex cross-functional risk and governance challenges.
Samsara (NYSE: IOT) is the pioneer of the Connected Operations Cloud, enabling organizations to harness IoT data to improve safety, efficiency, and sustainability. As a recently public company with over 2.3 million connected devices, they foster a culture of growth mindset, inclusion, and long-term impact.
Manage privileged access controls, identity governance, and security across cloud and enterprise environments.
Design and implement automation for identity workflows, access validation, and remediation activities.
Collaborate with Security, Infrastructure, and Engineering teams to strengthen identity security.
Sporty Group is a remote-first company focused on building scalable and secure software systems. They have a distributed team with a culture of sustainability and performance-based bonuses.
Lead the design and evolution of Kaseya’s IAM platform, defining architecture and technical direction across multiple products.
Build and operate core IAM platform services, APIs, and integrations for authentication, authorization, and identity governance.
Partner with Security, Compliance, and Product teams to meet governance and regulatory requirements while mentoring engineers.
Kaseya is the leading provider of AI-powered IT management and cybersecurity software, serving Managed Service Providers (MSPs) and internal IT organizations worldwide. Backed by Insight Partners, Kaseya has experienced sustained double-digit growth, supports customers in over 20 countries, and manages over 15 million endpoints worldwide.
Design and develop scalable IAM solutions, including identity provisioning and access management workflows.
Integrate corporate directories, cloud environments, and third-party applications with the core IAM platform.
Configure Single Sign-On (SSO), Multi-Factor Authentication (MFA), and federated identity protocols.
Nortal is a digital transformation company delivering complex solutions for global enterprises and public sector organizations. They have a close-knit remote team across Latin America and foster a culture of autonomy and open communication.
Design, build, and maintain custom IAM applications, APIs, and automation that support identity lifecycle management and role-based access.
Partner with cybersecurity, infrastructure, and business stakeholders to translate IAM requirements into secure technical designs.
Engineer automated joiner, mover, leaver provisioning processes and ensure system integrations across enterprise platforms like Okta, Salesforce, and ServiceNow.
Shared Services provides identity and access management solutions for enterprise platforms. They operate in the information technology sector with a focus on secure integration patterns and operational reliability.
Lead high-performing engineering teams in building identity security platforms (ITDR and ISPM) for millions of users globally.
Define technical vision, architecture, and engineering standards for scalable, identity-focused cybersecurity products.
Collaborate with product, security, and architecture teams to drive roadmap execution and deliver customer value.
Jobgether is an AI-powered job matching platform that connects candidates with hiring companies efficiently. As a partner company, we manage applications and next steps for this role, operating in a remote-first, high-growth environment focused on cybersecurity.
Collaborate with product managers, designers, and users to build and operate UDS Registry for managing packages in mission environments.
Lead design, implementation, and deployment of features with direct impact on mission outcomes, including ownership of architecture decisions.
Participate in on-call rotation, integrate with defense systems, and contribute to open source projects like CNCF and ASF.
Defense Unicorns delivers mission value by streamlining software delivery so customers can focus on the most important challenges. The team is composed of innovators, software engineers, and veterans with decades of experience delivering technology programs across the federal market.
Design, implement, and maintain PingFederate, PingAccess, and PingDirectory solutions in a regulated financial services environment.
Administer SSO, federation, and authentication services using SAML 2.0, OAuth 2.0, and OpenID Connect.
Collaborate with security, infrastructure, and application teams to integrate enterprise applications into the IAM ecosystem.
Jobgether uses AI-powered matching to connect candidates with job opportunities. The platform processes applications to identify top-fitting candidates and shares them with hiring companies.
Design and build privacy-focused systems that protect users from tracking, data misuse, and emerging online threats.
Enhance backend services and privacy infrastructure using Go, Node.js, Python, or Perl.
Lead complex technical projects from ideation through implementation, ensuring scalability and reliability.
Our partner is a privacy-first engineering organization focused on building and maintaining systems that protect users from tracking, profiling, and emerging online threats. They operate in a fully remote, globally distributed environment with a values-driven culture centered on trust, privacy, and transparency.
Design, implement, and manage privileged access controls including Privileged Identity Management (PIM) and just-in-time (JIT) access.
Lead access review and certification processes, ensuring remediation actions are completed and access remains aligned with least-privilege principles.
Manage the lifecycle of service accounts, machine identities, secrets, API keys, and credentials, including rotation, monitoring, and decommissioning.
This position is listed on behalf of a partner company, who manages all applications and next steps. The partner is looking for an Identity & PAM Security Engineer based in Netherlands. The role sits at the core of enterprise security, focusing on how identities are governed, accessed, and protected across critical systems and infrastructure.
Provide frontline technical expertise to help developers deploy and scale Temporal in cloud-native environments.
Troubleshoot complex infrastructure issues, optimize performance, and develop automation solutions.
Collaborate with engineering and product teams to influence platform improvements and enhance developer experience.
Temporal provides an open source programming model that simplifies code and makes applications more reliable. The company is a growing team driven by values of curiosity, collaboration, and humility, focused on improving developer experience.