Software Security Engineer II, Identity Engineering
Hashicorp
Full-time
Remote
This Position
As a member of our Internal Identity Security Team, you’ll be responsible for creating the tooling and automation that manages our internal identity and access management and governs our cloud environments and internal services. You will work closely with teams across the company to provide foundational tooling to scale safe access across the enterprise, including other teams within security, Infrastructure engineering, Platform engineering, as well as Governance, Risk and Compliance (GRC).
In this role, you can expect to:
Develop software and deploy infrastructure to manage internal identity and access governance.
Develop centralized policies for managing access internally.
Scale identity to all internal systems
Reduce auditing needs through automation and time-based access controls.
Create self-service workflows for common application types within our identity provider.
Work across all organizations collaborating on efforts to secure our infrastructure, products, and the enterprise.
Mentor teammates and other engineers across the company
Take a large task / project and drive it through all lifecycle phases.
Take on Oncall rotation for production support issues.
You may be a good fit for our team if you have experience in some of these areas:
You have 3+ years of work experience in software development.
You have programming experience in Go to build scalable security tools.
You have experience in developing and deploying cloud native applications in production.
You have demonstrated technical experience across related security disciplines e.g. identity governance and administration, appsec, network security, infrastructure security, etc.
You have the ability to prioritize and track multiple projects in parallel.
You have previous experience working in collaborative security teams
You have experience implementing and scaling security programs in a startup environment.
You have indirect experience in security, being that person who consistently recognizes and fixes security-related issues or problems with the systems, services, or applications you manage.
You love to build and push the industry to do better.
You are able to work effectively in a team environment, and collaborate with others across multiple time zones.
Preferred (but not required)
Experience in SAML, SCIM, SSO, OIDC
You have experience operationalizing security tooling and infrastructure.
About the tools that you would be working with
Greenfield work on Passport Auth proxy
Iterate on our existing Passport product, built in Go over AWS infrastructure.
Deployment Automation: AWS
Storage: AWS (DynamoDB)
Identity: Okta
Monitoring and Alerting: Sentry, PagerDuty, Incident.io.
Doormat / Passport
Doormat where Cloud and Application access requests are submitted
Passport is where membership and JIT access for a given request is managed
As a member of our Internal Identity Security Team, you’ll be responsible for creating the tooling and automation that manages our internal identity and access management and governs our cloud environments and internal services. You will work closely with teams across the company to provide foundational tooling to scale safe access across the enterprise, including other teams within security, Infrastructure engineering, Platform engineering, as well as Governance, Risk and Compliance (GRC).
In this role, you can expect to:
Develop software and deploy infrastructure to manage internal identity and access governance.
Develop centralized policies for managing access internally.
Scale identity to all internal systems
Reduce auditing needs through automation and time-based access controls.
Create self-service workflows for common application types within our identity provider.
Work across all organizations collaborating on efforts to secure our infrastructure, products, and the enterprise.
Mentor teammates and other engineers across the company
Take a large task / project and drive it through all lifecycle phases.
Take on Oncall rotation for production support issues.
You may be a good fit for our team if you have experience in some of these areas:
You have 3+ years of work experience in software development.
You have programming experience in Go to build scalable security tools.
You have experience in developing and deploying cloud native applications in production.
You have demonstrated technical experience across related security disciplines e.g. identity governance and administration, appsec, network security, infrastructure security, etc.
You have the ability to prioritize and track multiple projects in parallel.
You have previous experience working in collaborative security teams
You have experience implementing and scaling security programs in a startup environment.
You have indirect experience in security, being that person who consistently recognizes and fixes security-related issues or problems with the systems, services, or applications you manage.
You love to build and push the industry to do better.
You are able to work effectively in a team environment, and collaborate with others across multiple time zones.
Preferred (but not required)
Experience in SAML, SCIM, SSO, OIDC
You have experience operationalizing security tooling and infrastructure.
About the tools that you would be working with
Greenfield work on Passport Auth proxy
Iterate on our existing Passport product, built in Go over AWS infrastructure.
Deployment Automation: AWS
Storage: AWS (DynamoDB)
Identity: Okta
Monitoring and Alerting: Sentry, PagerDuty, Incident.io.
Doormat / Passport
Doormat where Cloud and Application access requests are submitted
Passport is where membership and JIT access for a given request is managed