Plus
Π’ΠΊΠ»ΡŽΡ‡ΠΈΡ‚ΡŒ Plus
Назад
Company hidden
6 часов Π½Π°Π·Π°Π΄

Identity and Access Specialist (Security)

Π€ΠΎΡ€ΠΌΠ°Ρ‚ Ρ€Π°Π±ΠΎΡ‚Ρ‹
onsite
Π’ΠΈΠΏ Ρ€Π°Π±ΠΎΡ‚Ρ‹
fulltime
Π“Ρ€Π΅ΠΉΠ΄
senior
Английский
b2
Π‘Ρ‚Ρ€Π°Π½Π°
Sweden
Вакансия ΠΈΠ· списка Hirify.GlobalВакансия ΠΈΠ· Hirify Global, списка ΠΌΠ΅ΠΆΠ΄ΡƒΠ½Π°Ρ€ΠΎΠ΄Π½Ρ‹Ρ… tech-ΠΊΠΎΠΌΠΏΠ°Π½ΠΈΠΉ
Для мэтча ΠΈ ΠΎΡ‚ΠΊΠ»ΠΈΠΊΠ° Π½ΡƒΠΆΠ΅Π½ Plus

ΠœΡΡ‚Ρ‡ & Π‘ΠΎΠΏΡ€ΠΎΠ²ΠΎΠ΄

Для мэтча с этой вакансиСй Π½ΡƒΠΆΠ΅Π½ Plus

ОписаниС вакансии

ВСкст:
/

TL;DR

Identity and Access Specialist (Security): Designing and building the identity and access management system for an AI-powered software creation platform with an accent on authentication flows, RBAC, and multi-tenancy isolation. Focus on migrating to a composable identity layer, ensuring secure-by-default auth for generated apps, and managing secrets infrastructure at scale.

Location: On-site in Stockholm, Sweden

Company

hirify.global is an AI-powered software creation platform that enables millions of users to rapidly generate and deploy production-ready applications.

What you will do

  • Design and build the identity and access management system for both the platform and user-generated apps.
  • Implement authentication flows including OAuth 2.0, OIDC, magic links, social logins, and MFA.
  • Develop a robust authorization model featuring RBAC, row-level security, and API key management.
  • Own multi-tenancy isolation to ensure secure separation of user apps, data, and credentials.
  • Manage secrets infrastructure for secure storage and rotation of database credentials and service tokens.
  • Migrate identity services from a bundled setup to a fully owned, composable identity layer.

Requirements

  • Deep expertise in IAM: OAuth 2.0, OIDC, SAML, JWT, and token lifecycle management.
  • Experience building and operating auth systems at scale within multi-tenant SaaS or PaaS contexts.
  • Strong security mindset focused on preventing credential leakage, privilege escalation, and token theft.
  • Proficiency with RBAC/ABAC models and row-level security in Postgres.
  • Comfortable using TypeScript across backend services and API layers.
  • Proven experience migrating auth systems in production without breaking user sessions.

Nice to have

  • Experience with secrets management tools such as Vault or AWS Secrets Manager.
  • Background in compliance-relevant auth work (SOC 2, GDPR, HIPAA).
  • Familiarity with Supabase Auth internals (GoTrue) or similar open-source auth servers.
  • Experience designing authentication for AI-generated or low-code applications.
  • Knowledge of managed cloud services (AWS, GCP) and buy-vs-build tradeoffs for identity infrastructure.

Culture & Benefits

  • Opportunity to work with a modern tech stack including Golang, Rust, React, and various cloud providers (GCP, AWS, Cloudflare).
  • High-trust, high-impact role at the intersection of security, product, and platform engineering.
  • Collaborative environment working closely with AI and product teams to implement secure-by-default features.
  • Focus on building scalable, production-grade services that power hundreds of thousands of apps daily.

Π‘ΡƒΠ΄ΡŒΡ‚Π΅ остороТны: Ссли Ρ€Π°Π±ΠΎΡ‚ΠΎΠ΄Π°Ρ‚Π΅Π»ΡŒ просит Π²ΠΎΠΉΡ‚ΠΈ Π² ΠΈΡ… систСму, ΠΈΡΠΏΠΎΠ»ΡŒΠ·ΡƒΡ iCloud/Google, ΠΏΡ€ΠΈΡΠ»Π°Ρ‚ΡŒ ΠΊΠΎΠ΄/ΠΏΠ°Ρ€ΠΎΠ»ΡŒ, Π·Π°ΠΏΡƒΡΡ‚ΠΈΡ‚ΡŒ ΠΊΠΎΠ΄/ПО, Π½Π΅ Π΄Π΅Π»Π°ΠΉΡ‚Π΅ этого - это мошСнники. ΠžΠ±ΡΠ·Π°Ρ‚Π΅Π»ΡŒΠ½ΠΎ ΠΆΠΌΠΈΡ‚Π΅ "ΠŸΠΎΠΆΠ°Π»ΠΎΠ²Π°Ρ‚ΡŒΡΡ" ΠΈΠ»ΠΈ ΠΏΠΈΡˆΠΈΡ‚Π΅ Π² ΠΏΠΎΠ΄Π΄Π΅Ρ€ΠΆΠΊΡƒ. ΠŸΠΎΠ΄Ρ€ΠΎΠ±Π½Π΅Π΅ Π² Π³Π°ΠΉΠ΄Π΅ β†’