about 4 hours ago
Responsibilities
- Drive the architecture and delivery of a new permission service from design to production.
- Define BambooHR's authentication and authorization standards.
- Design the API contract for the permission service.
- Drive token strategy including issuance, rotation, and revocation.
- Partner with product and platform teams to translate access control requirements.
- Lead architectural reviews for features with AuthN/AuthZ implications.
- Collaborate with Security and Compliance to meet audit and security requirements.
- Mentor engineers and ensure implementation quality matches architectural intent.
Requirements
- 10+ years of software engineering experience, with at least 3 years at Staff or Principal level.
- Deep expertise in identity and access management, including authentication protocols and authorization models.
- Experience designing and building AuthN/AuthZ systems at scale.
- Strong instincts for policy-as-code and permission modeling.
- Experience with OpenAPI specifications and microservice architectures.
- Strong backend engineering fundamentals, particularly in PHP.
- Proven ability to drive architectural decisions and build consensus across teams.
- Excellent communication skills for technical specifications and presentations.
Benefits
- Comprehensive health, life, and disability insurance.
- Generous leave policies including 4 weeks of vacation and parental leave.
- 401k plans with up to 6% company match.
- $2000 Paid-Paid Vacation bonus.
- EAP through Headspace.
- Recognized great company culture.