Staff Software Development Engineer

BeyondTrust is a place where you can bring your purpose to life through the work that you do, creating a safer world through our cyber security SaaS portfolio.

Our culture of flexibility, trust, and continual learning means you will be recognized for your growth, and for the impact you make on our success. You will be surrounded by people who challenge, support, and inspire you to be the best version of yourself.

The Role

BeyondTrust is seeking a Staff Software Development Engineer to lead the evolution of authentication and identity services within our cloud platform. This role focuses on building scalable, secure, and extensible authentication solutions that power our SaaS offerings. You will be instrumental in defining authentication strategies, ensuring seamless integration with identity providers, and driving security best practices across our platform.  As a key technical leader, you will collaborate with security, platform, and application teams to design and maintain authentication capabilities that support federated identity, SSO, multi-tenancy, and compliance requirements. This role presents an opportunity to solve complex identity challenges at scale, contributing to the foundation of a modern identity security platform.  Previous experience working on authentication / authorization services teams is highly desired. 

What You’ll Do

• Lead the evolution of authentication services, ensuring security, scalability, and compliance with industry standards.
• Architect and implement authentication capabilities, including OIDC, OAuth 2.0, SAML, MFA, JWT-based authentication, and session management.
• Partner with security teams to define and enforce authentication best practices, aligning with Zero Trust principles.
• Ensure seamless integration with third-party identity providers, directory services, and federated authentication frameworks.
• Enhance authentication observability, monitoring, and logging to proactively identify and mitigate security risks.
• Mentor and coach engineers, promoting best practices in authentication, security, and cloud-native development.
• Drive modernization efforts, balancing custom authentication needs with strategic integrations to improve security and developer experience.
• Contribute to platform-wide initiatives, collaborating with teams across BeyondTrust to align authentication strategies with business goals. 

What You’ll Bring

• Proven track record of leading cross-team projects in authentication, identity management, or security engineering.
• Deep understanding of authentication protocols (OIDC, OAuth 2.0, SAML, JWT, WebAuthn, FIDO2).
• Experience designing and integrating authentication services in a SaaS or cloud-native environment.
• Strong programming skills in C#, TypeScript, Go, Java, or other modern languages, with experience in API development and microservices architecture.
• Familiarity with cloud IAM services (AWS IAM, Azure AD, Google Identity) and directory services (LDAP, SCIM).
• Experience with Infrastructure as Code (Terraform, CloudFormation) and managing authentication infrastructure.
• Knowledge of security best practices, including encryption, secure token management, and authentication flows.
• Strong problem-solving skills and ability to navigate ambiguity while driving technical direction.
• Prior experience leading authentication modernization efforts or implementing third-party identity provider integrations.
• Hands-on experience with multi-tenancy authentication architectures and tenant isolation strategies.
• Familiarity with RBAC, ABAC, and authorization frameworks in enterprise applications.
• Experience working in regulated industries (e.g., FedRAMP, SOC2, ISO27001) where compliance impacts authentication.
• Contributions to open-source authentication libraries or standards (e.g., OAuth working groups, OpenID Foundation). 

Who You Are

• A technical leader who takes ownership of complex authentication challenges and delivers scalable solutions.
• A mentor and collaborator, eager to share knowledge and uplift the engineering team.
• Someone who balances technical excellence with pragmatic decision-making, ensuring security without unnecessary complexity.
• A strong communicator, able to bridge technical and business needs in authentication discussions. 

Better Together

Diversity. Inclusion. They’re more than just words for us. They are the guiding values of how we build our teams, cultivate leaders, and create a culture where people feel connected.

We take care of our employees so they can take care of our customers. Customers who come from all walks of life just like us. We hire incredible people from diverse backgrounds because when we are different together, we are stronger together.

About Us

BeyondTrust is the worldwide leader in intelligent identity and access security, enabling organizations to protect identities, stop threats, and deliver dynamic access. We are leading the charge in innovating identity-first security and are trusted by 20,000 customers, including 75 of the Fortune 100, plus a global ecosystem of partners.

Learn more at www.beyondtrust.com. 

#LI-BS1