Senior Staff Software Engineer, Identity Platform

TL;DR

Senior Staff Software Engineer, Identity Platform: Driving the architecture, scalability, and reliability of hirify.global's identity platform, which serves as the foundational layer for all product teams and services with an accent on authentication, authorization, and session management. Focus on designing secure, scalable systems, setting integration standards, and mentoring engineers to improve system design and security practices.

Location: Must be located or willing to relocate to San Francisco, CA (hybrid role requiring 3 days per week in the office)

Salary: $262,800 - $321,200

Company

hirify.global is the world's most powerful community for good, dedicated to helping people help each other.

What you will do

• Define and evolve the end-to-end identity architecture spanning authentication, authorization, session management, and token lifecycle across consumer and enterprise contexts.
• Design repeatable, self-service enterprise identity onboarding (SSO, SCIM provisioning, multi-tenant trust) so that each new partnership does not require bespoke integration.
• Own the consumer identity lifecycle including account continuity, progressive trust, confidence scoring, and anonymous-to-authenticated transitions.
• Set integration standards and publish platform APIs and SDKs that enable product engineering teams to consume identity correctly without absorbing auth complexity.
• Mentor engineers across the Identity team and the broader Platform Tribe; raise the bar on system design, security thinking, and operational rigor.
• Contribute to system reliability through on-call participation, incident response leadership, and postmortem-driven improvements to identity infrastructure.

Requirements

• 8+ years of software engineering experience, with significant time at senior, staff, or principal levels working on platform or infrastructure systems.
• Deep, hands-on expertise with identity protocols and standards: OAuth 2.x, OpenID Connect, SAML 2.0, and SCIM.
• Track record of designing and shipping identity or auth platforms that other engineering teams depend on in production.
• Experience architecting systems using federation standards, session/token management patterns, and well-defined trust boundaries, with an eye toward minimizing the cost of future change.
• Strong security instincts: you threat-model as you design, understand credential risk and account takeover patterns, and build systems where the secure path is the easy path.
• Strong observability and reliability skills: experience with monitoring, alerting, and incident response for mission-critical identity infrastructure.

Nice to have

• Hands-on experience with commercial identity platforms (Descope, Auth0/Okta, Ping, or comparable) in production, including migration between providers.
• Experience spanning both enterprise and consumer identity contexts, such as at fintech, SaaS, payments, or identity-forward companies.
• Familiarity with advanced authorization models: RBAC, ABAC, ReBAC, or policy engines such as OPA/Cedar.
• Experience with compliance and audit requirements relevant to identity systems (SOC 2, PCI DSS, GDPR, CCPA) and data residency considerations.
• Practical experience deploying and operating identity services on cloud infrastructure (AWS, GCP, or Azure) at scale.

Culture & Benefits

• Be part of a mission-driven organization making a positive difference in millions of lives every year.
• Work with a diverse, passionate, and talented team in a fast-paced, forward-thinking atmosphere.
• Enjoy competitive pay and comprehensive healthcare benefits.
• Enjoy financial assistance for things like hybrid work, family planning, along with generous parental leave, flexible time-off policies, and mental health and wellness resources to support your overall well-being.
• Participate in learning, development, and recognition programs to help you thrive and grow.
• Contribute to diversity, equity, and inclusion through ongoing initiatives and employee resource groups.