What Is The Role : 

We are a team of creative technologists who live at the intersection of engineering and storytelling. We craft narratives that connect the what, how, and why of our technology — from major product launches to minor releases, video tutorials to interacting with and influencing analysts. We drive defining the core message, aligning the company, and telling narratives that stick.

You will be the voice of Elastic Observability in the market, a trusted thought partner to product management and field teams, jointly shaping the outbound strategy that drives adoption across observability use cases. You will move between the technical and the creative: understanding how our products work, who uses them, and why it matters, then translating that into positioning, content, and campaigns. Be responsible for the observability narrative at Elastic, from market positioning to product launch and field enablement.

You'll work with a distributed team, including product, sales, marketing and executive leadership.

What You Will Be Doing : 

• Own messaging and positioning : Craft differentiated, compelling narratives for Elastic Observability that resonate with both practitioners and decision makers.
• Drive go-to-market strategy end-to-end : Define and lead GTM for new launches and campaigns from strategy through execution and track metrics.
• Enable the field : Build training and content that empowers sales, solutions engineering, and customer success to tell the Elastic story with confidence.
• Represent Elastic in the community : Attend and present at trade shows, conferences, and industry events. Some travel required.

What You Bring : 

• Direct experience with Observability, DevOps, or cloud-native infrastructure use cases. You understand the problems SREs, platform engineers, and developers face day-to-day.
• Curiosity about the "how" of technology, paired with the storytelling instinct to explain the "why" to any audience.
• A track record of crafting engaging content through blog posts, presentations, demos, videos that makes technical ideas accessible and compelling.
• Strong communication skills, comfortable presenting to audiences of all sizes, from an intimate field briefing to a conference keynote.
• Experience collaborating across a highly cross-functional, globally distributed team.

Bonus Points : 

Background in observability and prior experience as an SRE, platform engineer, solutions engineer, or consultant.

About Life360

Life360’s mission is to keep people close to the ones they love. Our category-leading mobile app,Tile tracking devices, and Pet GPS tracker empower members to protect the people, pets, and things they care about most with a range of services, including location sharing, safe driver reports, and crash detection with emergency dispatch. Life360 serves approximately 95.8 million monthly active users (MAU), as of December 31, 2025, across more than 180 countries.

Life360 delivers peace of mind and enhances everyday family life with seamless coordination for all the moments that matter, big and small. By continuing to innovate and deliver for our customers, we have become a household name and the must-have mobile-based membership for families (and those friends who are basically family).

Life360 has more than 500 (and growing!) remote-first employees. For more information, please visit life360.com.

Life360 is a Remote First company, which means a remote work environment will be the primary experience for all employees. All positions, unless otherwise specified, can be performed remotely (within the US and Canada) regardless of any specified location above. 

We are AI Native

We are building an AI native company where AI is an integral part of how we build and operate. AI tool usage during interviews varies by role. You may be asked to demonstrate proficiency with AI tools, discuss how you leverage AI, or complete interview exercises without AI assistance. Your Recruiter will provide clear guidance as you move through the interview process.

Undisclosed use of AI not previously discussed with or approved by your Recruiter may impact your candidacy.

About The Team

The AI Lab is a small, founder-led team operating like a zero-to-one startup inside Life360, building the company’s next chapter. Our mission is to transform Life360 from the app you open to find your family into an intelligent operating system families rely on daily. We design and build an AI-powered layer on top of our family graph, leveraging our core location technologies and global 100 million-user base to proactively surface what matters across location, schedules, and everyday life.

About the Job

Your role is owning how Life360's deterministic backend (location data, the family graph, behavioral signals, user insights) pairs with the probabilistic world of LLMs. You decide how those two sides talk to each other, and you make sure the seams don't show.

You own the inference pipeline end to end: model selection, serving infrastructure, evaluation loops, prompt and context strategy, and the cloud services that keep it all running in production. You make the tradeoffs between latency, cost, and quality. You build the eval harness that tells us whether the system is actually getting better, not just feeling different. If you do this job right, the product feels seamless to users, the data stays safe, and inference costs don't run away from us. You are a cloud engineer who is deeply fluent in how AI systems actually work in production. 

For candidates based in the US, the salary range for this position is $190,000 to $280,000 USD. For candidates based out of Canada, the salary range for this position is $220,000 to $260,000 CAD. Note: Please be aware that the job title for positions in Canada will be "Developer" in lieu of "Engineer." We take into consideration an individual's background and experience in determining final salary - therefore, base pay offered may vary considerably depending on geographic location, job-related knowledge, skills, and experience. The compensation package includes a wide range of medical, dental, vision, financial, and other benefits, as well as equity.

What You’ll Do

• Architect the inference pipeline that turns Life360 into a context layer LLMs can reason over: soul files, family context, behavioral signals, document understanding.
• Choose models. Choose hosting. Decide what is self-hosted, API-based, fine-tuned, or prompt-engineered. Revisit those decisions as the landscape changes.
• Build the serving infrastructure. Latency budgets, batching, caching, fallbacks, graceful degradation. Make it run at scale before scale gets here.
• Build the eval loop. Know whether changes make the product better or worse, not just whether the demo works. This is the difference between a real product and a magic trick.
• Own the cost model. Track spend per user, per feature, per family. Find the levers (context compression, model routing, pre-computation) that keep unit economics working from a test group to millions.
• Define what gets persisted, what gets summarized, and what gets thrown away. The architecture decision of "what does our data look like to an LLM" lives with you.
• Set the bar for safety, privacy, and trust at the infrastructure layer. Sensitive categories filtered before they propagate. Encryption, access controls, audit trails built in, not bolted on.

What We’re Looking For

If there's one trait we need above all others, it's self-starter energy. As we've gotten bigger, we've been more open to roles with clearly defined schedules and processes. That doesn't work in a startup. We need people on founder hours, not office hours — with a huge desire to win. You'll be a cofounder of this initiative.

• You operate without a spec. You'd rather have a conversation, a sketch, and 24 hours than a 30-page PRD and a week.
• You ship every day. Not "make progress." Ship. Even rough. Even ugly. Momentum matters more than polish at this stage.
• You push for more. You won't wait to be told what to do. You demand excellence of yourself and the people around you.
• You hold strong opinions and change them when the evidence moves. You push back. You concede fast when wrong.
• You're a customer of what we build. Try it if you haven't.

The bar

• Deep engineering experience, with significant time spent building and running AI systems in production at meaningful scale. Real users, real load, real on-call.
• Fluent in modern LLM serving (vLLM, TGI, SGLang, hosted APIs — whatever's right for the job). No religion about it.
• You think in evals. You've built harnesses. You know the difference between vibes-based iteration and real progress because you've felt the pain of not having one.
• You can build a cloud system from the ground up. Pick the services, wire them together, make them reliable, keep the bill in check.
• Strong opinions about cost. You've seen inference bills run out of control and have instincts for where the leaks come from.
• AI-native in your daily workflow. Hands-on with Claude Code, Cursor, or equivalent. You think natively in agentic workflows, prompt engineering, context window management, MCP / function calling.
• Comfortable deciding with incomplete information. The spec will be a moving target. You don't need it to settle before you start building.
• Strong written communication. You write specs, decision records, and playbooks that an agent (and a human) can act on precisely.
• Experience with agent systems, retrieval pipelines, or long-context personalization.
• Privacy architecture experience in multi-user systems where context is shared across people with different rights to see it.
• You've built something where the data itself was the moat — and you understand why that's different from building on public data.

Our Benefits

• Competitive pay and benefits.
• Medical, dental, vision, life and disability insurance plans (100% paid for US employees). We offer supplemental plans for medical and dental for Canadian employees.
• 401(k) plan with company matching program in the US and RRSP with DPSP plan for Canadian employees.
• Employee Assistance Program (EAP) for mental wellness.
• Flexible PTO and 12 company wide days off throughout the year.
• Learning & Development programs.
• Equipment, tools, and reimbursement support for a productive remote environment.
• Free Life360 Platinum Membership for your preferred circle.

Life360 Values

Our company’s mission driven culture is guided by our shared values to create a trusted work environment where you can bring your authentic self to work and make a positive difference 

• Be a Good Person - We have a team of high integrity people you can trust. 
• Be Direct With Respect - We communicate directly, even when it’s hard.
• Members Before Metrics - We focus on building an exceptional experience for families. 
• High Intensity High Impact - We do whatever it takes to get the job done. 

Our Commitment to Diversity

We are an equal opportunity employer and value diversity at Life360. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, disability status or any legally protected status.  

We encourage people of all backgrounds to apply. We believe that a diversity of perspectives and experiences create a foundation for the best ideas. Come join us in building something meaningful. Even if you don’t meet 100% of the below qualifications, you should still seriously consider applying!

#LI-Remote

____________________________________________________________________________

Role & Team

As our inaugural Senior Security Engineer, you will play a critical role in safeguarding Overstory’s systems, data, and reputation. Partnering closely with your manager - the Director of Information Security and Compliance - you will take ownership of our security and compliance posture, and define, implement, and continuously improve our security program.

You will lead initiatives across vulnerability management, compliance, and security operations, while acting as a trusted partner to engineering, product, and business teams. This role is ideal for someone who combines hands-on technical expertise with a strategic mindset and enjoys building scalable security practices in a growing company.

Time Zone Requirement: Eastern North America (NST, AST, EST)

What You’ll Do

• Own and evolve Overstory’s compliance program, ensuring ongoing alignment with SOC 2, ISO 27001, and other relevant frameworks
• Drive vulnerability management end-to-end, from detection to remediation, working closely with engineering teams to prioritize and resolve risks efficiently
• Design and improve security processes and controls across infrastructure, applications, and internal systems
• Lead security input in architecture and engineering decisions, helping teams build secure-by-design systems
• Oversee and improve identity and access management, endpoint security, and core IT security practices
• Own vendor security and third-party risk management, including assessments, risk evaluation, and mitigation strategies
• Lead audit readiness and execution for SOC 2 and ISO 27001, including control design, evidence collection, and auditor coordination
• Partner with customer-facing teams to handle security questionnaires and build scalable, high-quality response processes
• Contribute to security awareness and culture, mentoring others and raising the security bar across the organization

Skills & Experience

• 5+ years of experience in security engineering, security operations, or a related field
• Direct experience with security and compliance frameworks such as SOC 2 and/or ISO 27001, including audit processes
• Deep experience with vulnerability management, including tooling, prioritization, and remediation workflows
• Fluency working across cloud environments (AWS, GCP, or Azure) and modern SaaS ecosystems
• Experience with identity and access management, endpoint security, and IT/security operations
• Demonstrated ability to translate security risks into clear, actionable guidance for technical and non-technical stakeholders
• Demonstrable experience (or at a minimum a serious interest in) leveraging AI tooling to accelerate business impact.
• Strong written communication skills and are comfortable owning documentation and audit artifacts
• Demonstrable proactive, pragmatic mindset as well as capacity for balancing security best practices with business needs
• Experience working cross-functionally influencing without authority in a remote-first environment

Nice To Have

• Experience designing or improving SIEM, logging, and alerting pipelines
• Familiarity with compliance automation platforms (Drata, Vanta, Tugboat, etc.)
• Experience leading or owning SOC 2 / ISO 27001 audits
• Background in application or cloud security engineering
• Experience mentoring or guiding more junior team members

What We Offer

• Competitive, location-specific compensation and benefits
• Flexible, autonomous and collaborative working environment rooted in trust - we build our work days around our lives, not the other way around
• Home office stipend, coworking and ongoing education budgets 
• A company culture that genuinely embodies each of our core values
• To be part of truly mission-driven work that reduces wildfires, protects earth’s natural resources and helps solve our climate crisis

This is a remote opportunity and we would be interested in applicants located in Canadian time zones (EST + CST only at this time). 

Staff Backend Engineer - Application Core Services, Stacks

The Opportunity: 

Application Core Services (AppCore) is a group within Platform, in the Foundations department. Foundations produces the Internal Engineering Platform (IEP) and partners closely with our Cloud, Enterprise, and Grafana teams. Our team develops the essential systems driving Grafana's business operations. We utilize the grafana.com platform to engineer bespoke integrations and solutions that unify the diverse technical ecosystem of a modern software enterprise.

The team owns important domain areas that help keep both our customer workflows and internal business processes running smoothly. AppCore is made up of multiple squads, each focused on one or more of these domains. Our work includes maintaining the billing engine responsible for customer usage calculation, automating provisioning after a customer signs a contract, integrating with cloud marketplaces such as AWS, Azure, and GCP, and building and maintaining the user portal our customers rely on to manage their accounts.

This is a team working at the intersection of product, platform, and business operations. The systems we build are critical to how Grafana scales. We are looking for engineers who enjoy solving complex workflow and systems problems, improving reliability and developer experience, and building software that directly supports both customers and internal stakeholders.

As a company we are remote-first and global, we embrace people of different experiences and backgrounds to build diverse teams where every person brings a unique perspective to the software. Engineers at Grafana also have the opportunity to contribute to Open Source communities and collaborate across teams beyond their immediate scope.

What You’ll Be Doing:

The AppCore Stacks squad owns the systems that create, configure, reconcile, migrate, and operate Grafana Cloud stacks at scale. A stack is the customer-facing Grafana Cloud environment that connects an organization to Grafana and the backend services it uses, including Mimir, Loki, Tempo, plugins, dashboards, data sources, and stack-level configuration.

Our work sits at the intersection of product, platform, and operations. We build the control-plane services and workflows that keep stack state aligned across grafana.com, Stack State Service (SSS), Hosted Grafana, cloud regions, and the underlying Grafana Cloud infrastructure. When this domain works well, customers get reliable stack creation, safe configuration rollout, predictable migrations, and fewer manual operational interventions.

• Design, build, and operate reconciliation systems, including the SSS backend, to track desired stack state, detect and repair drift across stack templates, grafana.com state, Hosted Grafana, and actual customer stack configuration
• Collaborate across SSS, grafana.com, and deployment configurations to ensure stack lifecycle workflows remain reliable, observable, and resilient
• Improve operational efficiency by reducing deployment complexity (e.g., aiming for single PR regional SSS deployment) and contributing to the Stack Config Reconciliation project
• Manage rollout mechanisms for provisioned plugins, dashboards, data sources, Grafana versions, release channels, and stack-level configuration
• Support new region and cluster rollouts, including the operational paths required to bring stacks online safely in new Grafana Cloud regions
• Improve incident response and recovery paths for stack misalignment, reconciliation failures, plugin rollout issues, and Hosted Grafana integration failures
• Partner with Product, Hosted Grafana, Infrastructure, Support, and adjacent AppCore squads on customer-impacting stack lifecycle work
• Contribute to roadmap planning, technical design, OnCall improvements, and long-term simplification of stack operations
• You will help own the production behavior of the systems you build. That includes improving runbooks, dashboards, alerts, reconciliation safety, rollout controls, and recovery procedures. You should be comfortable debugging across service boundaries and making careful changes in systems that affect customer stacks

Of course, there is an on-call component to this role and one that we take seriously. As a company, we hire globally (remote-first) to ensure our on-call remains healthy and aligned to approximately 12 daylight hours per day. You will work closely with counterparts in other regions to provide balanced coverage and shared ownership.

We invest heavily in developer productivity. You can use modern AI coding assistants as part of your daily workflow (your choice of tools, within security guidelines), backed by a company-funded usage budget so you can iterate quickly without unnecessary friction. We encourage pragmatic AI-assisted development: faster prototyping, test generation, refactors, documentation, and incident follow-ups—always paired with strong code review and quality standards. You’ll also have access to frontier models (e.g., GPT-Codex 5/3, Claude Opus 4.6, Gemini 3 Pro).

What Makes You a Great Fit:

At Grafana, we actively embrace AI-assisted and agentic development practices, integrating these technologies into both our engineering workflows and the systems we deliver. We encourage our engineers to thoughtfully leverage AI tools to enhance every stage of the lifecycle, from design and implementation to testing, documentation, and operations. We also look for strategic opportunities to embed agentic capabilities within our services to eliminate toil, bolster reliability, and ensure that complex customer workflows remain resilient and safe.

We are seeking a Staff Backend Engineer who thrives on building production systems where correctness, scalability, and operational clarity are paramount. As a remote-first organization, you should be comfortable collaborating asynchronously across time zones and taking full ownership of the critical systems powering Grafana Cloud. Our team is small and operates with a high degree of independence; you will be expected to lead major projects, coordinate across service boundaries, and help define the technical direction for our domain.

You will be particularly successful in this role if you enjoy solving challenges related to stateful systems, eventual consistency, and reconciliation loops. We value engineers who can take ambiguous lifecycle requirements and transform them into explicit, modular solutions. You should be adept at breaking down complex systems work into safe, iterative increments while clearly communicating technical tradeoffs to both internal stakeholders and adjacent product teams.

Some things you might be expected to do could include:

• Writing efficient, readable, and easy to maintain code
• Designing new microservices or systems
• Collaborating with teammates and other departments to reach consensus on proposed solutions
• Coordinating with product and UX when needed
• Responding to customer requests and feedback
• When ready, participating in our follow-the-sun OnCall rotation
• Participating in team decisions, such as roadmap planning and prioritization

Requirements:

• You have at least 1 year of fully remote work experience
• You have worked on a big SaaS platform and dealt with common distributed systems problems (e.g. scalability, multi-tenancy, data isolation, HA, …)
• Have professional experience with Golang and be willing to work across both backend service and application code
• Care deeply about developer and user experience and the quality of the products that you work on
• Have some experience with delivering projects from gathering requirements, and brainstorming ideas to shipping a product to the customer’s hands in a self-driven way
• You write clean, robust, well-tested software that other engineers can understand, operate, and maintain
• Have experience with mentoring junior engineers in a collaborative but asynchronous environment
• Can take on complex challenges and break them down to achieve tight learning loops: to analyze, design, and build modular solutions, deliver MVPs, gather data and feedback, and then progress iteratively
• You are willing to work across teams. Your work has to be aligned with the needs of other squads and external stakeholders. You make your plans transparent, bring stakeholders on board, and are open to feedback and suggestions
• Strong Kubernetes experience in AWS, GCP, or Azure, and familiarity with infrastructure-as-code tooling (Helm, Terraform, Jsonnet, etc.)
• Experience participating in blameless incident response and writing high-quality post-incident reviews

Bonus Points For:

• Experience with TypeScript/Node.js
• Experience with Kubernetes control-plane patterns, operators, reconcilers, or desired-state systems
• Experience with Jsonnet/Tanka, Terraform, Flux, Argo, or similar deployment/configuration tooling
• Experience working on SaaS provisioning, tenancy, regional expansion, plugin rollout, or customer lifecycle systems
• Experience with incident response involving configuration drift, partial failure, or cross-service state mismatch

Compensation & Rewards:

In Canada, the Base compensation range for this role is CAD 186,368 - CAD 223,642. Actual compensation may vary based on level, experience, and skillset as assessed in the interview process. Benefits include equity, bonus (if applicable) and other benefits listed here.

All of our roles include Restricted Stock Units (RSUs), giving every team member ownership in Grafana Labs' success. We believe in shared outcomes—RSUs help us stay aligned and invested as we scale globally.

This is a remote opportunity and we would be interested in applicants located in USA time zones (EST + CST only at this time). 

Staff Backend Engineer - Application Core Services, Stacks

The Opportunity: 

Application Core Services (AppCore) is a group within Platform, in the Foundations department. Foundations produces the Internal Engineering Platform (IEP) and partners closely with our Cloud, Enterprise, and Grafana teams. Our team develops the essential systems driving Grafana's business operations. We utilize the grafana.com platform to engineer bespoke integrations and solutions that unify the diverse technical ecosystem of a modern software enterprise.

The team owns important domain areas that help keep both our customer workflows and internal business processes running smoothly. AppCore is made up of multiple squads, each focused on one or more of these domains. Our work includes maintaining the billing engine responsible for customer usage calculation, automating provisioning after a customer signs a contract, integrating with cloud marketplaces such as AWS, Azure, and GCP, and building and maintaining the user portal our customers rely on to manage their accounts.

This is a team working at the intersection of product, platform, and business operations. The systems we build are critical to how Grafana scales. We are looking for engineers who enjoy solving complex workflow and systems problems, improving reliability and developer experience, and building software that directly supports both customers and internal stakeholders.

As a company we are remote-first and global, we embrace people of different experiences and backgrounds to build diverse teams where every person brings a unique perspective to the software. Engineers at Grafana also have the opportunity to contribute to Open Source communities and collaborate across teams beyond their immediate scope.

What You’ll Be Doing:

The AppCore Stacks squad owns the systems that create, configure, reconcile, migrate, and operate Grafana Cloud stacks at scale. A stack is the customer-facing Grafana Cloud environment that connects an organization to Grafana and the backend services it uses, including Mimir, Loki, Tempo, plugins, dashboards, data sources, and stack-level configuration.

Our work sits at the intersection of product, platform, and operations. We build the control-plane services and workflows that keep stack state aligned across grafana.com, Stack State Service (SSS), Hosted Grafana, cloud regions, and the underlying Grafana Cloud infrastructure. When this domain works well, customers get reliable stack creation, safe configuration rollout, predictable migrations, and fewer manual operational interventions.

• Design, build, and operate reconciliation systems, including the SSS backend, to track desired stack state, detect and repair drift across stack templates, grafana.com state, Hosted Grafana, and actual customer stack configuration
• Collaborate across SSS, grafana.com, and deployment configurations to ensure stack lifecycle workflows remain reliable, observable, and resilient
• Improve operational efficiency by reducing deployment complexity (e.g., aiming for single PR regional SSS deployment) and contributing to the Stack Config Reconciliation project
• Manage rollout mechanisms for provisioned plugins, dashboards, data sources, Grafana versions, release channels, and stack-level configuration
• Support new region and cluster rollouts, including the operational paths required to bring stacks online safely in new Grafana Cloud regions
• Improve incident response and recovery paths for stack misalignment, reconciliation failures, plugin rollout issues, and Hosted Grafana integration failures
• Partner with Product, Hosted Grafana, Infrastructure, Support, and adjacent AppCore squads on customer-impacting stack lifecycle work
• Contribute to roadmap planning, technical design, OnCall improvements, and long-term simplification of stack operations
• You will help own the production behavior of the systems you build. That includes improving runbooks, dashboards, alerts, reconciliation safety, rollout controls, and recovery procedures. You should be comfortable debugging across service boundaries and making careful changes in systems that affect customer stacks

Of course, there is an on-call component to this role and one that we take seriously. As a company, we hire globally (remote-first) to ensure our on-call remains healthy and aligned to approximately 12 daylight hours per day. You will work closely with counterparts in other regions to provide balanced coverage and shared ownership.

We invest heavily in developer productivity. You can use modern AI coding assistants as part of your daily workflow (your choice of tools, within security guidelines), backed by a company-funded usage budget so you can iterate quickly without unnecessary friction. We encourage pragmatic AI-assisted development: faster prototyping, test generation, refactors, documentation, and incident follow-ups—always paired with strong code review and quality standards. You’ll also have access to frontier models (e.g., GPT-Codex 5/3, Claude Opus 4.6, Gemini 3 Pro).

What Makes You a Great Fit:

At Grafana, we actively embrace AI-assisted and agentic development practices, integrating these technologies into both our engineering workflows and the systems we deliver. We encourage our engineers to thoughtfully leverage AI tools to enhance every stage of the lifecycle, from design and implementation to testing, documentation, and operations. We also look for strategic opportunities to embed agentic capabilities within our services to eliminate toil, bolster reliability, and ensure that complex customer workflows remain resilient and safe.

We are seeking a Staff Backend Engineer who thrives on building production systems where correctness, scalability, and operational clarity are paramount. As a remote-first organization, you should be comfortable collaborating asynchronously across time zones and taking full ownership of the critical systems powering Grafana Cloud. Our team is small and operates with a high degree of independence; you will be expected to lead major projects, coordinate across service boundaries, and help define the technical direction for our domain.

You will be particularly successful in this role if you enjoy solving challenges related to stateful systems, eventual consistency, and reconciliation loops. We value engineers who can take ambiguous lifecycle requirements and transform them into explicit, modular solutions. You should be adept at breaking down complex systems work into safe, iterative increments while clearly communicating technical tradeoffs to both internal stakeholders and adjacent product teams.

Some things you might be expected to do could include:

• Writing efficient, readable, and easy to maintain code
• Designing new microservices or systems
• Collaborating with teammates and other departments to reach consensus on proposed solutions
• Coordinating with product and UX when needed
• Responding to customer requests and feedback
• When ready, participating in our follow-the-sun OnCall rotation
• Participating in team decisions, such as roadmap planning and prioritization

Requirements:

• You have at least 1 year of fully remote work experience
• You have worked on a big SaaS platform and dealt with common distributed systems problems (e.g. scalability, multi-tenancy, data isolation, HA, …)
• Have professional experience with Golang and be willing to work across both backend service and application code
• Care deeply about developer and user experience and the quality of the products that you work on
• Have some experience with delivering projects from gathering requirements, and brainstorming ideas to shipping a product to the customer’s hands in a self-driven way
• You write clean, robust, well-tested software that other engineers can understand, operate, and maintain
• Have experience with mentoring junior engineers in a collaborative but asynchronous environment
• Can take on complex challenges and break them down to achieve tight learning loops: to analyze, design, and build modular solutions, deliver MVPs, gather data and feedback, and then progress iteratively
• You are willing to work across teams. Your work has to be aligned with the needs of other squads and external stakeholders. You make your plans transparent, bring stakeholders on board, and are open to feedback and suggestions
• Strong Kubernetes experience in AWS, GCP, or Azure, and familiarity with infrastructure-as-code tooling (Helm, Terraform, Jsonnet, etc.)
• Experience participating in blameless incident response and writing high-quality post-incident reviews

Bonus Points For:

• Experience with TypeScript/Node.js
• Experience with Kubernetes control-plane patterns, operators, reconcilers, or desired-state systems
• Experience with Jsonnet/Tanka, Terraform, Flux, Argo, or similar deployment/configuration tooling
• Experience working on SaaS provisioning, tenancy, regional expansion, plugin rollout, or customer lifecycle systems
• Experience with incident response involving configuration drift, partial failure, or cross-service state mismatch

Compensation & Rewards:

In the United States, the Base compensation range for this role is USD 174,986 - USD 209,983. Actual compensation may vary based on level, experience, and skillset as assessed in the interview process. Benefits include equity, bonus (if applicable) and other benefits listed here.

All of our roles include Restricted Stock Units (RSUs), giving every team member ownership in Grafana Labs' success. We believe in shared outcomes—RSUs help us stay aligned and invested as we scale globally.

Overview

Instacart’s IT organization empowers every employee to work securely, reliably, and at scale. We’re looking for a Senior Corporate Engineer II to own and evolve our security-critical workforce platforms, including our Okta identity platform, device trust program, and office networks across San Francisco, New York City, and Toronto. Your work will directly impact every Instacart employee and partner by ensuring seamless, safe access to the tools we rely on every day.

You’ll collaborate closely with Security Engineering, Enterprise Applications, Workplace, Compliance, and our Help Desk teams to ship automation, harden our posture, and raise operational reliability. This is a hands-on role in a fast-paced, ever-changing environment—ideal for someone who thrives in ambiguity, rolls up their sleeves to solve complex problems, and brings sound architectural judgment to high-stakes systems.

We are a dynamic team that loves tackling unique scenarios while building solutions that are scalable and secure. The role is remote-friendly within North America, with a preference for candidates in the Pacific Time Zone and the San Francisco Bay Area. Occasional travel to Instacart offices may be required (up to 10%).

About the Job

• Own the architecture, security, and day-to-day operations of our enterprise Okta tenant, including delivery of Okta Identity Governance (OIG), lifecycle management, SCIM provisioning, SSO integrations (SAML/OIDC), MFA, risk-based policies, and device trust.
• Design and maintain Infrastructure-as-Code for identity and access using Terraform, building reusable modules, guardrails, and automated workflows integrated with HRIS and ITSM systems to achieve least-privilege and timely provisioning/deprovisioning.
• Architect, operate, and continuously improve Instacart’s office network infrastructure (firewalls, routing/switching, wireless) across SF, NYC, and Toronto; drive zero-trust segmentation, observability, capacity planning, and vendor/partner management.
• Lead and participate in incident response for identity and network events, drive rapid mitigation and root-cause analysis, and implement durable remediations through post-incident reviews and change management.
• Standardize and execute certificate and key lifecycles for SAML/TLS across SaaS applications; eliminate manual toil with scripting and robust runbooks that increase reliability and auditability.
• Partner with Security and Compliance to meet controls and audit needs (e.g., access reviews, evidence collection), improve access risk management, and unlock license savings via automated revocation and right-sizing.
• Mentor teammates, elevate documentation and operational excellence, and help shape the roadmap by prioritizing high-impact work in a rapidly evolving environment.

About You

Minimum Qualifications

• 7+ years of experience in corporate IT engineering or a related field with a focus on identity and access management (IAM) and enterprise networking.
• 3+ years of hands-on administration of Okta in production (1,000+ users), including SSO integrations (SAML/OIDC), SCIM provisioning, MFA, and policy design.
• 2+ years implementing identity governance and automation using Okta Workflows, Okta Identity Governance (OIG), or an equivalent IGA platform.
• Proficiency with Infrastructure-as-Code and automation: Terraform (required) and at least one scripting language (Python, Bash, or PowerShell).
• Demonstrated experience planning and executing certificate rotations and key management for SAML/TLS across multiple SaaS applications.
• Hands-on experience operating and troubleshooting office network infrastructure (switching, routing, wireless, firewalls) and VPN/zero-trust access using technologies such as Cisco/Meraki, Aruba, and Palo Alto.
• Proven track record leading critical incidents and executing structured change management, including authoring runbooks and conducting post-incident reviews.
• Working knowledge of endpoint management and device trust (e.g., Jamf, Kandji, Intune) and integrating device posture into access controls.
• Bachelor’s degree in Computer Science, Engineering, Information Systems, or equivalent practical experience.

Preferred Qualifications

• Okta certifications (Administrator, Professional, or Consultant) and/or networking/security certifications (e.g., CCNP, PCNSE).
• Experience building Git-based CI/CD pipelines for identity and network automation (e.g., GitHub Actions, CircleCI) and implementing policy-as-code.
• Familiarity with compliance frameworks and audits (SOX, SOC 2, ISO 27001) and hands-on experience running access reviews and evidence collection.
• Experience administering Google Workspace and/or Microsoft 365 identity and security configurations at scale.
• Exposure to secrets management and PKI (e.g., HashiCorp Vault, AWS KMS) and log/monitoring platforms (e.g., Datadog, Splunk).
• Strong cross-functional communication skills and experience leading complex, multi-stakeholder projects from scoping through delivery.

#LI-Remote

About the Role

We are looking for a Distinguished Engineer to pioneer and scale autonomous, agentic SDLC capabilities across GitLab. Distinguished Engineers are recognized experts across multiple technology domains and represent the most senior level of technical leadership within and across divisions at the company.

In this role you will deeply immerse in GitLab's product and internal engineering workflows to identify classes of problems that can be wholly or largely addressed by AI agents, validate them through rigorous experimentation in production-adjacent environments, and codify patterns that can be productized for our millions of users. You will act as a bridge between Architecture, Product, Infrastructure, and Data and ML teams, ensuring that agentic capabilities deliver durable value internally first and then scale reliably and securely to our customers.

This role reports to a Director-level engineering leader.

What You'll Do

• Define and continuously refine a company-wide technical vision for autonomous, agentic SDLC that aligns with GitLab's product strategy and Engineering job architecture.
• Identify and prioritize non-linear productivity opportunities across the SDLC, from planning and coding to review, security, compliance, and operations, targeting 10x step changes rather than incremental gains.
• Translate ambiguous problem spaces into concrete, iterable roadmaps in partnership with Product, AI and ML, and Architecture teams.
• Lead hands-on experiments and prototypes to validate where agentic workflows can fully own or materially reshape engineering tasks, including autonomous MR authoring, test creation and triage, security remediation, release readiness, and incident response.
• Design and implement reference architectures for agentic SDLC inside GitLab, including orchestration patterns, safety guardrails, observability, and human-in-the-loop controls.
• Define evaluation frameworks using offline benchmarks and online experiments to measure correctness, latency, safety, cost, and productivity impact of agentic workflows.
• Select and own a small set of high-impact internal use cases as pathfinders and drive them from concept through adoption to measurable productivity gains.
• Work directly with engineering teams to embed agentic workflows into day-to-day development, ensuring they are trusted, observable, and resilient.
• Define and track core productivity metrics such as cycle time, MTTR, and MR throughput, and link agentic interventions to real business outcomes.
• Capture and codify reusable patterns, libraries, and playbooks that other teams can adopt with minimal friction.
• Work with Product Management and Engineering leadership to convert proven internal patterns into product capabilities that can be safely and reliably offered to customers.
• Ensure designs respect multi-tenant, compliance, and data governance requirements across GitLab.com and self-managed customers.
• Serve as a point of escalation for complex technical and architectural decisions related to agentic workflows, AI safety, and large-scale systems integration.
• Mentor Principal and Staff Engineers working on AI and agentic efforts, raising the overall bar for technical execution, experimentation rigor, and cross-team collaboration.
• Write clear, opinionated design documents, architecture narratives, and decision records that help teams make aligned, high-quality decisions independently.
• Represent GitLab in the broader ecosystem at conferences, standards groups, and open source communities on topics such as AI-assisted development, autonomous agents, and productivity measurement.
• Partner with Security and Compliance to define guardrails, review processes, and monitoring for agentic features, ensuring responsible use of AI and protection of customer data.
• Work with Reliability and SRE teams to ensure that agentic services are observable, debuggable, and resilient, and that failure modes degrade gracefully.

What You'll Bring

• 10+ years of software engineering experience, including 4+ years in a Staff, Principal, or equivalent senior technical leadership role.
• Deep expertise in AI and ML systems, including large language models, agentic frameworks, and autonomous workflow design at production scale.
• Proven track record of leading hands-on technical experimentation, including defining evaluation frameworks, running benchmarks, and translating findings into scalable architecture decisions.
• Strong background in scalable, multi-tenant distributed systems, including service decomposition, fault tolerance, observability, and operational resilience.
• Experience designing and implementing human-in-the-loop controls, safety guardrails, and responsible AI practices for production systems.
• Demonstrated ability to drive cross-functional alignment across Engineering, Product, Infrastructure, and Data and ML teams on complex, ambiguous technical challenges.
• Experience mentoring senior engineers and influencing technical direction across multiple teams or divisions without direct authority.
• Ability to work effectively in a fully remote, globally distributed organization with excellent written and asynchronous communication skills.
• Familiarity with GitLab's DevSecOps platform, CI/CD primitives, and the software development lifecycle is a strong plus.

This will be a remote role to start, with plans to transition to hybrid in-office 2x/week located in downtown Toronto.

With millions of diners, 60,000+ restaurant partners and 25+ years of experience, OpenTable, part of Booking Holdings, Inc. (NASDAQ: BKNG), is an industry leader with a passion for helping restaurants thrive. Our world-class technology empowers restaurants to focus on what matters most – their team, their guests, and their bottom line – while enabling diners to discover and book the perfect restaurant for every occasion. 

Every employee at OpenTable has a tangible impact on what we do and how we do it. You’ll also be part of a global team and its portfolio of metasearch brands. Hospitality is all about taking care of others, and it defines our culture.

Responsibilities:

• Conduct threat modeling and security design reviews for new and changing application features, APIs, and integrations; provide actionable guidance to engineering and product teams.
• Partner with Product and Engineering to translate business requirements into security requirements, performing risk assessments and defining compensating controls when needed.
• Translate risk findings and incident learnings into prioritized remediation plans and mitigations, including short-term risk reduction and long-term design improvements.
• Build and maintain automation to scale the design review process and streamline vulnerability triage.
• Serve as a subject matter expert during security incidents. Assist in triage, analysis, and technical containment.
• Drive post-incident and post-release learning. Turn incident learnings into new design patterns, detection alerts, or developer training to prevent recurrence.
• Monitor the threat landscape to ensure our design reviews and IR playbooks stay ahead of modern attack vectors
• Evaluate and implement vendor security solutions that improve detection, response, and secure design, ensuring effective integration into security processes.

Our Ideal Candidate Will Have:

• 5-7 years of combined Information Security Experience
• B.S. or M.S. Computer Science or a related field, or equivalent experience
• A fast learning curve and a track record of partnering effectively with cross-functional teams to achieve security goals
• A "consultant" mindset with the ability to offer alternatives, partnering with engineers to find creative solutions that satisfy both security requirements and product deadlines
• Experience in assessing new application features and establishing secure guidelines for Product teams
• Comfort in the "heat of battle" with the technical depth to triage application-layer attacks and assist in steering a team toward containment
• Skill in explaining complex security concepts to audiences ranging from Product Managers to Senior Engineers
• Proficiency in at least one backend language (e.g. Java, Python, etc) and can navigate unfamiliar codebases to identify logic flaws and vulnerabilities,
• Solid understanding of network and web protocols.
• Experience with the security of intra-company and third-party APIs.
• Operate with a high level of independence
• Candidate Bonus Points for the Following:
  • Technical certifications within information security (CISSP, CCSP, OSCP, OSWE or equivalents)
  • Experience with access and identity management
  • Experience with SIEM and log management

Benefits:

• Generous paid vacation + time off for your birthday
• Work from (almost) anywhere for up to 20 days per year
• Focus on mental health and well-being:
  • Company-paid therapy sessions through SpringHealth
  • Company-paid subscription to Headspace
  • Annual company-wide week off - the whole team fully recharges (and returns without a pile-up of work!)
• Paid parental leave
• Paid volunteer time
• Focus on your career growth:
  • Development Dollars
  • Leadership development
  • Access to thousands of on-demand e-learnings
• Travel Discounts
• Employee Resource Groups
• Private health and dental insurance
• Life and Disability insurance

There are a variety of factors that go into determining a salary range, including but not limited to external market benchmark data, geographic location, and years of experience sought/required. The expected range of compensation for this position based in Toronto, Canada, including commission and/or bonuses is $130,000-$160,000 CAD.

We offer a competitive base salary and benefits including: health benefits; flexible spending account; retirement benefits; life insurance; paid time off (including PTO, paid sick leave, medical leave, bereavement leave, floating holidays and paid holidays); and parental leave benefits. This role is eligible to be considered for an annual bonus and equity grant.

Work Environment & Flexibility

At OpenTable, we pride ourselves on fostering a global and dynamic work environment. As a team member with us, you will benefit from a schedule tailored to accommodate a global workforce operating across multiple time zones. While the majority of your responsibilities may align with conventional business hours, there will be instances where you are expected to manage communications - via calls, Slack messages, or emails - outside of regular working hours to effectively collaborate with international colleagues, respond to restaurant partners, and/or address urgent matters. OpenTable will always abide by and consider local laws and regulations.

Inclusion

We’re committed to creating a workplace where everyone feels they belong and can thrive. We know the best ideas come when we bring different voices to the table, so we're building a team as dynamic as the diners and restaurants we serve—and fostering a culture where everyone feels welcome to be themselves.

If you need accommodations during the application or interview process, or on the job, we’re here to support you. Please reach out to your recruiter to request any accommodations.

This is Engineering at Lattice

At Lattice, we build software that helps people and organizations thrive. Our engineering team values maintainable systems, strong collaboration, and thoughtful product experiences.

As we expand AI-powered capabilities across our platform, security is a core part of how we design, build, and operate our product. Our Product Security team partners closely with engineering to ensure we ship features that are secure by default and resilient in production.

What You Will Do

You will work closely with product and platform engineering teams to improve the security of Lattice’s applications and services.

Product Security & Engineering Partnership

• Partner with engineers to identify, triage, and remediate security issues in product features and services
• Participate in security reviews and threat modeling for new features and systems
• Perform security-focused code reviews and help identify common vulnerabilities
• Contribute to secure-by-default patterns, libraries, and tooling in our TypeScript-based stack

Security Tooling & Operations

• Help implement and operate security tooling (SAST, DAST, dependency scanning, etc.)
• Support vulnerability management workflows, including internal findings and bug bounty reports
• Assist in investigating security issues and assessing risk and impact

Cloud & Platform Security

• Collaborate with platform and infrastructure teams to improve application and cloud security posture
• Contribute to improving security practices in AWS-based environments

AI/LLM Security

• Assist in identifying and mitigating risks in AI/LLM-powered features, including prompt injection, data leakage, and unsafe output handling
• Apply emerging best practices (OWASP Top 10 for LLM Applications) to real product use cases

Security Enablement

• • Contribute to security guidance, documentation, and training for engineering teams
  • Help improve how security is integrated into the development lifecycle

What You Will Bring to the Table

Experience that is important for you to have at some level:

• 1–3+ years of experience in product security, application security, or software engineering
• Experience writing and maintaining code in JavaScript/TypeScript (or similar languages like Python or Ruby)
• Familiarity with common web and API vulnerabilities (e.g., OWASP Top 10)
• Exposure to security testing tools (SAST, DAST, dependency scanning, etc.)
• Experience working in or with cloud environments (AWS or similar)

Technical Approach

• Ability to identify common security risks and suggest practical mitigations
• Understanding of secure coding practices and basic security controls
• Interest in how security decisions impact real-world product systems

Collaboration & Growth

• Strong communication skills and ability to work closely with engineering teams
• Willingness to ask questions, learn quickly, and take ownership of well-scoped problems
• Ability to contribute to team discussions and share security context effectively

Experience that would be nice to have:

• Experience with modern web architectures (Next.js, NestJS, GraphQL)
• Familiarity with containerization or Kubernetes
• Experience or interest in AI/LLM security, including

----

The estimated annual cash salary for this role is $116,500 - $154,000. This position is also eligible for incentive stock options, subject to the terms of Lattice’s applicable plans

Benefits: The Company offers the following benefits for this position, subject to applicable eligibility requirements: Medical insurance; Dental insurance; Vision insurance; Life, AD&D, and Disability Insurance; Emergency Weather Support; Wellness Apps; Paid Parental Leave, Paid Time off inclusive of holidays and sick time; Commuter & Parking Accounts; Lunches in the Office; Internet and Phone Stipend; 401(k) retirement plan; Financial Planning; Learning & Development Budget

*Note on Pay Transparency:

Lattice provides an estimate of the compensation for roles that may be hired as required by state regulations. Compensation may vary based on (a) location, as Lattice factors in specific location when benchmarking compensation for most roles; (b) individual candidate skills and qualifications; and (c) individual candidate experience.

Additionally, Lattice leverages current market data to determine compensation, so posted compensation figures are subject to change as new market data becomes available. The salary, other compensation, and benefits information is accurate as of the date of this posting. Lattice reserves the right to modify this information at any time, subject to applicable law.

#LI-remote

We’re seeking an experienced Senior Security Engineer with a strong passion for Identity and Access Management(IAM) and proven expertise in cloud-native environments, particularly AWS. In this role, you’ll help shape and implement modern identity strategies to secure access across all of Marqeta’s systems and services—100% cloud-based, with no data center footprint.

Join us in building a secure, scalable, and frictionless IAM program where you’ll play a crucial part in:

• Building and evolving our Identity Governance and Administration (IGA) capabilities.
• Implementing & Operating Privileged Access Management (PAM) in a cloud-first (AWS-focused) environment.
• Designing and architecting a Certificate Lifecycle Management solution that supports cloud-native workloads.
• Driving integration of IAM across AWS services, SaaS platforms, and developer/DevOps pipelines.
• Designing identity and access controls to protect AI/ML systems—ensuring secure access to training data, models, and inference APIs.

The Impact You’ll Have

• Develop and lead implementation of robust IAM strategies aligned with cloud-native architecture and security principles.
• Expand and operationalize the IAM program across IGA, PAM, SSO, MFA, access management, secrets management, and certificate lifecycle.
• Automate identity provisioning, de-provisioning, and access reviews using AI tools and infrastructure-as-code.
• Design IAM integrations for AWS-native services (Lambda, EC2, S3, IAM, etc.), SaaS platforms, and third-party identity tools (e.g., Okta, CyberArk).
• Promote and enforce least privilege and zero-trust principles through scalable access controls and policy automation.
• Mentor junior engineers and serve as a technical lead for IAM-related projects.
• Collaborate with Security, DevOps, and Infrastructure teams to embed IAM controls across the engineering lifecycle.
• Stay ahead of emerging trends and continuously refine IAM strategy based on evolving cloud threats and compliance requirements.

Who You Are

• A minimum of 8 years related experience with a Bachelor’s degree; or 5 years and a Master’s degree; or a PhD with 3 years’ experience; or equivalent combination of related education and work experience.
• Strong experience with IAM tools (e.g., Okta, CyberArk, Ping, SailPoint).
• Deep knowledge of IAM in cloud-native environments, especially AWS IAM, roles, policies, permissions boundaries, and federation.
• Proficiency in infrastructure-as-code (e.g., Terraform, CloudFormation).
• Familiarity with authentication and authorization protocols (SAML, OAuth2, OpenID Connect, Kerberos).
• Strong grasp of directory services like Active Directory, LDAP, and cloud-based alternatives.
• Hands-on skills in scripting (e.g., Python, PowerShell) to automate IAM operations.
• Solid understanding of compliance standards: NIST, SOC 2, PCI DSS, etc.
• Proven experience integrating IAM into CI/CD pipelines, secrets management, and DevOps workflows.
• Excellent communication skills and ability to influence and lead cross-functional teams.

Nice to have

• Relevant certifications such as CISSP, CISM, or IAM-specific credentials (e.g., CIAM/CAMS, CyberArk Certified, Okta Certified Consultant).
• Experience with AWS technologies such as Lambda, S3, DynamoDB, RDS, Aurora, SNS, SQS, CloudTrail, CloudWatch, Code Pipeline, AWS Developer Tools, and IAM roles and permissions
• Experience with DevOps tools and practices, including secrets management and CICD pipelines

Manager

• Sandeep Chotwani

Recruiter for this role

• Kayla Osuna

Compensation and Benefits

Marqeta is a Flex First company which allows you to choose your best working environment, whether that be from home or at a company office. To support Flex First, we calibrate pay to a competitive value according to working location. 

When determining salaries, we consider several factors including, but not limited to, skills, prior experience, and work location. The new-hire base salary range for this position, reflected in CAD, is: 136,800 - 171,000

We also believe in recognizing the contributions of our people. That's why we award annual bonuses to eligible employees, rewarding both individual performance and the success of the entire company.

Along with monetary compensation, Marqeta offers

• Multiple health insurance options
• Flexible vacation time
• Retirement savings program with company contribution
• Equity in a publicly-traded company 
• Monthly stipend to support our remote work model
• Annual “development dollars” to support our people growth and development
• Family-forming benefits and up to 20 weeks of Parental Leave

We’re seeking an experienced Senior Security Engineer with a strong passion for Identity and Access Management(IAM) and proven expertise in cloud-native environments, particularly AWS. In this role, you’ll help shape and implement modern identity strategies to secure access across all of Marqeta’s systems and services—100% cloud-based, with no data center footprint.

Join us in building a secure, scalable, and frictionless IAM program where you’ll play a crucial part in:

• Building and evolving our Identity Governance and Administration (IGA) capabilities.
• Implementing & Operating Privileged Access Management (PAM) in a cloud-first (AWS-focused) environment.
• Designing and architecting a Certificate Lifecycle Management solution that supports cloud-native workloads.
• Driving integration of IAM across AWS services, SaaS platforms, and developer/DevOps pipelines.
• Designing identity and access controls to protect AI/ML systems—ensuring secure access to training data, models, and inference APIs.

The Impact You’ll Have

• Develop and lead implementation of robust IAM strategies aligned with cloud-native architecture and security principles.
• Expand and operationalize the IAM program across IGA, PAM, SSO, MFA, access management, secrets management, and certificate lifecycle.
• Automate identity provisioning, de-provisioning, and access reviews using AI tools and infrastructure-as-code.
• Design IAM integrations for AWS-native services (Lambda, EC2, S3, IAM, etc.), SaaS platforms, and third-party identity tools (e.g., Okta, CyberArk).
• Promote and enforce least privilege and zero-trust principles through scalable access controls and policy automation.
• Mentor junior engineers and serve as a technical lead for IAM-related projects.
• Collaborate with Security, DevOps, and Infrastructure teams to embed IAM controls across the engineering lifecycle.
• Stay ahead of emerging trends and continuously refine IAM strategy based on evolving cloud threats and compliance requirements.

Who You Are

• A minimum of 8 years related experience with a Bachelor’s degree; or 5 years and a Master’s degree; or a PhD with 3 years’ experience; or equivalent combination of related education and work experience.
• Strong experience with IAM tools (e.g., Okta, CyberArk, Ping, SailPoint).
• Deep knowledge of IAM in cloud-native environments, especially AWS IAM, roles, policies, permissions boundaries, and federation.
• Proficiency in infrastructure-as-code (e.g., Terraform, CloudFormation).
• Familiarity with authentication and authorization protocols (SAML, OAuth2, OpenID Connect, Kerberos).
• Strong grasp of directory services like Active Directory, LDAP, and cloud-based alternatives.
• Hands-on skills in scripting (e.g., Python, PowerShell) to automate IAM operations.
• Solid understanding of compliance standards: NIST, SOC 2, PCI DSS, etc.
• Proven experience integrating IAM into CI/CD pipelines, secrets management, and DevOps workflows.
• Excellent communication skills and ability to influence and lead cross-functional teams.

Nice to have

• Relevant certifications such as CISSP, CISM, or IAM-specific credentials (e.g., CIAM/CAMS, CyberArk Certified, Okta Certified Consultant).
• Experience with AWS technologies such as Lambda, S3, DynamoDB, RDS, Aurora, SNS, SQS, CloudTrail, CloudWatch, Code Pipeline, AWS Developer Tools, and IAM roles and permissions
• Experience with DevOps tools and practices, including secrets management and CICD pipelines

Manager

• Sandeep Chotwani

Recruiter for this role

• Kayla Osuna

Compensation and Benefits

Marqeta is a Flex First company which allows you to choose your best working environment, whether that be from home or at a company office. To support Flex First, we calibrate pay to a competitive value according to working location. 

When determining salaries, we consider several factors including, but not limited to, skills, prior experience, and work location. The new-hire base salary range for this position, reflected in CAD, is: 136,800 - 171,000

We also believe in recognizing the contributions of our people. That's why we award annual bonuses to eligible employees, rewarding both individual performance and the success of the entire company.

Along with monetary compensation, Marqeta offers

• Multiple health insurance options
• Flexible vacation time
• Retirement savings program with company contribution
• Equity in a publicly-traded company 
• Monthly stipend to support our remote work model
• Annual “development dollars” to support our people growth and development
• Family-forming benefits and up to 20 weeks of Parental Leave

Staff Product Security Engineer

Backend Software Engineer — Okta Privileged Access Management (PAM)

Ever wonder how large organizations make sure the right people can access their most critical systems? That's the problem we solve.

Our team builds the infrastructure that controls who can reach sensitive servers, databases, and cloud resources, grants access only when it's needed. It is the security layer between people (and non-human-interfaces) and the systems they need to do their jobs.

We're looking for a Backend Software Engineer who wants to work on hard problems: distributed systems and building software where getting it right really matters. You'll ship code that protects real infrastructure for real organizations. You’ll build foundations that multiple feature teams depend on. When you make something faster, more reliable, or easier to use, it multiplies across the entire product.

This is a role for someone who likes thinking about how systems fit together. You'll need strong opinions about what makes a good abstraction, and the flexibility to evolve those abstractions as the product grows.

The Okta Privileged Access Management (PAM) is an identity-centric approach to a common and critical privileged access use case. Our elegant Zero Trust architecture is purpose-built for the modern cloud and helps customers solve challenging security and operations pain points at scale. 

We are looking for a Backend Software Engineer to join our fast-growing team with a focus on scalability, reliability, and enhancing the building blocks of the product.

In this role you will:

• Be deeply involved in evolving the core architecture of PAM.
• Work in our product development teams to build scalable, composable components of our platform.
• Be responsible for designing and implementing scalable architecture patterns.
• Design and build APIs with OpenAPI Specification that customers rely on for access to production infrastructure.
• Work on backend systems written in Go
• Participate in the rotational on-call activities with SRE and product development teams.

You might be a good fit if you:

• Are an experienced software engineer with a background in Golang (other languages are also acceptable)
• Experienced working with relational databases like PostgreSQL or similar RDBMS technologies.
• Have the ability to design database models and backend APIs.
• Have experience working with cloud services like Caching, Queues, NoSQL Databases etc. 
• Experienced working with any cloud provider such as AWS, GCP or Azure.
• Thrive in a collaborative environment built on end-to-end ownership.
• Love thinking about distributed systems, and the reliability, availability, and performance implications of the decisions made in their design.
• Enjoy deep-diving into production metrics, and familiarity with monitoring tools like Splunk, DataDog etc.
• Think in terms of systems, services, and APIs.

Required education and experience:

• 8+ years working as a software engineer.
• Experience working with production systems.
• Bachelors in CS, or equivalent

#LI-LSS1

#LI-Remote

requisition ID- P24957_3415623

The PAM Team

Ever wonder how large organizations make sure the right people can access their most critical systems? That's the problem the Okta Privileged Access Management (PAM)  team solves.

Our solution controls who can reach sensitive servers, databases and cloud resources and grants access only when it's needed. It is the security layer between people (and non-human-identities) and the systems they need to do their jobs.

The Staff Backend Engineer Opportunity

We are seeking a world-class Staff Engineer to help us architect and build the high-performance core of our non-human identity platform.

Your work, in close collaboration with our principal engineers and architects, will be the foundation of our strategy for managing privileged access in the modern enterprise. If you are a systems programmer who thrives on influencing the design of high-performance, concurrent, and resilient security software, this is the role for you.

What you’ll be doing 

• Contribute to Core Architecture: Partner with principal engineers and architects to design and implement a low-latency, high-throughput secrets engine for non-human identities
• Solve for Massive Scale: Write highly concurrent, performance-critical code capable of handling millions of machine-to-machine authentication and authorization requests
• Shape Technical Strategy: Play a key role in defining the long-term technical roadmap for scalability and performance, ensuring our platform can meet the demands of the largest enterprises
• Mentor and Elevate: As a senior engineer on the team, you will work with junior engineers to help them advance their SDLC expertise.
• On-Call: Participate in the rotational on-call activities with SRE and product development team

What you’ll bring to the role

• Required Experience:
  • 8+ years of professional software engineering experience, with a heavy focus on backend or systems-level development
  • Bachelor’s or Master’s degree in Computer Science, or equivalent practical experience
• Core Technical Expertise:
  • Deep, hands-on expertise in multi-platform Go development and building high-performance, concurrent applications
  • Experience designing or operating distributed systems
  • Experience with secure systems (authn/authz, encryption, TLS, token handling, PKI, CAs, diagnosing TLS issues)
  • Deep expertise in distributed storage systems, with a focus on replication, backup, and restore, and data management. (Postgres, etc.)
  • Direct experience designing, building, or contributing to a secrets management, service mesh, or machine identity platform
  • Expert-level at ergonomic API design (gRPC/openAPI), and building for reliability at scale
  • Deep knowledge of cloud-native infrastructure

And extra credit if you have experience in any of the following! 

• Experience at a leading Cybersecurity or Infrastructure-as-Code company
• Contributions to open-source projects in the identity, security, or infrastructure space

(P24956_3414025)

#LI-Hybrid 

#BB-1

The PAM Team

Ever wonder how large organizations make sure the right people can access their most critical systems? That's the problem the Okta Privileged Access Management (PAM)  team solves.

Our solution controls who can reach sensitive servers, databases and cloud resources and grants access only when it's needed. It is the security layer between people (and non-human-identities) and the systems they need to do their jobs.

The Staff Backend Engineer Opportunity

We're looking for a Backend Software Engineer who wants to work on hard problems: distributed systems and building software where getting it right really matters. You'll ship code that protects real infrastructure for real organizations. You’ll build foundations that multiple feature teams depend on. When you make something faster, more reliable, or easier to use, it multiplies across the entire product.

This is a role for someone who likes thinking about how systems fit together. You'll need strong opinions about what makes a good abstraction, and the flexibility to evolve those abstractions as the product grows.

What you’ll be doing 

• Be deeply involved in evolving the core architecture of PAM.
• Work in our product development teams to build scalable, composable components of our platform.
• Be responsible for designing and implementing scalable architecture patterns.
• Design and build APIs with OpenAPI Specification that customers rely on for access to production infrastructure.
• Work on backend systems written in Go
• Participate in the rotational on-call activities with SRE and product development teams

What you’ll bring to the role

• 8+ years of experience as a SWE 
• Are an experienced software engineer with a background in Golang (other languages are also acceptable)
• Experienced working with relational databases like PostgreSQL or similar RDBMS technologies.
• Have the ability to design database models and backend APIs.
• Have experience working with cloud services like Caching, Queues, NoSQL Databases etc. 
• Experienced working with any cloud provider such as AWS, GCP or Azure.
• Thrive in a collaborative environment built on end-to-end ownership.
• Love thinking about distributed systems, and the reliability, availability, and performance implications of the decisions made in their design.
• Enjoy deep-diving into production metrics, and familiarity with monitoring tools like Splunk, DataDog etc.
• Think in terms of systems, services, and APIs

(P24959_3414026)

#LI-Hybrid 

#BB1

Awesome tech is made by awesome people, and we’re always looking for new team members who bring energy, passion, commitment, and collaboration. These qualities have made Okta the great company it is today.

So, what do we build exactly? Auth0 is an authentication and authorization platform designed by developers for developers. Basically, we make users' logins safe, secure, and seamless. Our mission is to secure the world’s identities so innovators can innovate, but it’s a big mission that requires a lot of teamwork.

We are looking for a Senior Software Engineer to join our high-caliber Extensibility Engineering team to help us continue to improve our ultra-low latency, secure, and scalable platform for untrusted code execution. In this role, you will have the opportunity to significantly contribute to the foundation of Auth0's Ecosystem, realizing a huge impact for our customers and partners.

As a member of Developer Experience - Extensibility Platform, you will: 

• Design, architect, and document large-scale distributed systems.
• Implement features across different layers of the stack using technologies such as Go, MongoDB, PostgreSQL, AWS, Azure, and Kubernetes.
• Lead team discussions, mentor other engineers to become senior and improve the team’s productivity.
• Contribute to improving Auth0's architecture, performance, observability, security controls, and best practices.
• Collaborate with Product and Security teams to define and continually improve Auth0’s Extensibility platform and architecture.
• Participate in our on-call rotations for troubleshooting production issues.

Key Qualifications:

• 5+ years of experience in software development, building distributed systems using Go.
• Strong experience in API-driven applications using REST and/or gRPC.
• Experience with packaging and distributing containerized applications using Docker and Kubernetes.
• Experience with sandboxing untrusted code or tenant isolation (both preferred but not required).
• A high bar for both code quality as well as quality of user experience.
• Proven ability to collaborate with others to drive initiatives forward.

Nice To Haves:

• Solid hands-on experience with Node.js in building scalable backend services

#LI-HYBRID

#LI-SH1
P-3247_3396333

About the Role

As a Staff Detection & Response Engineer at Okta, you will occupy a high-impact leadership role within our Security Operations organization. This is not just a technical role; it is a strategic one. You will influence security decisions across multiple teams, drive innovation in our defense-in-depth strategies, and act as a force multiplier for our global security posture.

You will be responsible for leading complex threat hunts, managing major security incidents, and architecting the detection frameworks that protect Okta’s infrastructure and customers. You will serve as a bridge between executive leadership and technical teams, ensuring our security objectives align with broader business trends and strategic goals.

What You’ll Do

Technical Leadership & Innovation

• Threat Hunting: Lead complex, hypothesis-driven threat hunts based on vague intelligence, and develop refined methodologies for the broader team to follow.
• Detection Engineering: Write novel detections and solve complex querying challenges. You will establish the frameworks and standards for detection engineering across the entire security organization.
• Architectural Influence: Design and validate the effectiveness of preventative control chains and influence the selection and architecture of new security solutions.
• Incident Response: Serve as the technical lead for major incidents, including investigating threats in "foreign" or uncommon environments by leveraging frameworks and your professional network.

Global Mindset: While Okta maintains a 24x7posture, there is a requirement to be available in a crisis out of (your business) hours, and as a thought leader, to interface with colleagues globally. 

Strategic Execution

• Project Ownership: Own multi-quarter objectives and drive them to success, developing project plans that align with Okta’s strategic VMTs (Vision, Metrics, and Targets) and budget.
• Problem Solving: Navigate issues of diverse scope, analyzing data against current business trends to provide innovative solutions.
• Innovation: Secure resources for and drive innovation initiatives across multiple teams, facilitating cross-functional workshops to generate new security solutions.

Team Advocacy & Mentorship

• Culture Building: Foster an inclusive, collaborative environment by sharing wins, rewarding team efforts, and encouraging diverse perspectives.
• Mentorship: Act as an advisor to junior colleagues, providing actionable feedback and helping others align their career goals with organizational objectives.
• Consensus Driving: Drive consensus and resolve issues within cross-functional teams, ensuring all stakeholders are aligned on security priorities.

Who You Are

• Expert Investigator: You have a deep understanding of threat actor TTPs and can navigate complex systems even when documentation is sparse.
• Effective Communicator: You can translate complex technical problems for any audience, from executive leadership to junior analysts.
• Resilient Leader: You have a "bottom-line" orientation, persisting through obstacles and setbacks to achieve results.
• Self-Aware & Empathetic: You proactively seek feedback, know your limits, and lead with empathy and compassion.
• Collaboratively Minded: You prioritize the development of others and establish internal and external networks of coaches and mentors.

Qualifications

• Proven experience in a high-growth SaaS or security-focused environment.
• Expertise in querying languages, detection frameworks (e.g., MITRE ATT&CK), and modern IR toolsets.
• Experience managing communications during crises or major security incidents.
• Demonstrated ability to lead project teams and manage budget/resource requirements.
• Strong background in automating response workflows and refining preventative controls.

Why Okta? Okta is the World’s Identity Company. We are building a world where anyone can safely use any technology. As a Staff Engineer, you will play a pivotal role in ensuring that vision remains a reality.

#LI-HYBRID 

P6513_3323862

About the Role

As a Staff Detection & Response Engineer at Okta, you will occupy a high-impact leadership role within our Security Operations organization. This is not just a technical role; it is a strategic one. You will influence security decisions across multiple teams, drive innovation in our defense-in-depth strategies, and act as a force multiplier for our global security posture.

You will be responsible for leading complex threat hunts, managing major security incidents, and architecting the detection frameworks that protect Okta’s infrastructure and customers. You will serve as a bridge between executive leadership and technical teams, ensuring our security objectives align with broader business trends and strategic goals.

What You’ll Do

Technical Leadership & Innovation

• Threat Hunting: Lead complex, hypothesis-driven threat hunts based on vague intelligence, and develop refined methodologies for the broader team to follow.
• Detection Engineering: Write novel detections and solve complex querying challenges. You will establish the frameworks and standards for detection engineering across the entire security organization.
• Architectural Influence: Design and validate the effectiveness of preventative control chains and influence the selection and architecture of new security solutions.
• Incident Response: Serve as the technical lead for major incidents, including investigating threats in "foreign" or uncommon environments by leveraging frameworks and your professional network.

Global Mindset: While Okta maintains a 24x7posture, there is a requirement to be available in a crisis out of (your business) hours, and as a thought leader, to interface with colleagues globally. 

Strategic Execution

• Project Ownership: Own multi-quarter objectives and drive them to success, developing project plans that align with Okta’s strategic VMTs (Vision, Metrics, and Targets) and budget.
• Problem Solving: Navigate issues of diverse scope, analyzing data against current business trends to provide innovative solutions.
• Innovation: Secure resources for and drive innovation initiatives across multiple teams, facilitating cross-functional workshops to generate new security solutions.

Team Advocacy & Mentorship

• Culture Building: Foster an inclusive, collaborative environment by sharing wins, rewarding team efforts, and encouraging diverse perspectives.
• Mentorship: Act as an advisor to junior colleagues, providing actionable feedback and helping others align their career goals with organizational objectives.
• Consensus Driving: Drive consensus and resolve issues within cross-functional teams, ensuring all stakeholders are aligned on security priorities.

Who You Are

• Expert Investigator: You have a deep understanding of threat actor TTPs and can navigate complex systems even when documentation is sparse.
• Effective Communicator: You can translate complex technical problems for any audience, from executive leadership to junior analysts.
• Resilient Leader: You have a "bottom-line" orientation, persisting through obstacles and setbacks to achieve results.
• Self-Aware & Empathetic: You proactively seek feedback, know your limits, and lead with empathy and compassion.
• Collaboratively Minded: You prioritize the development of others and establish internal and external networks of coaches and mentors.

Qualifications

• Proven experience in a high-growth SaaS or security-focused environment.
• Expertise in querying languages, detection frameworks (e.g., MITRE ATT&CK), and modern IR toolsets.
• Experience managing communications during crises or major security incidents.
• Demonstrated ability to lead project teams and manage budget/resource requirements.
• Strong background in automating response workflows and refining preventative controls.

Why Okta? Okta is the World’s Identity Company. We are building a world where anyone can safely use any technology. As a Staff Engineer, you will play a pivotal role in ensuring that vision remains a reality.

#LI-HYBRID 

P6513_3323862

Staff Security Infrastructure Engineer, Red Team

Within the Product Security team, our Red Team delivers robust security assurance for Okta's products, services, and infrastructure.  You will be the team's dedicated infrastructure and tooling engineer, the first person in this role for a small team of operators. You will work alongside operators but not report through an operator chain; you'll collaborate as a peer focused on a different discipline.

We seek a Staff Security Infrastructure Engineer to own the engineering backbone that enables our operations. This is not a traditional operator role but a dedicated infrastructure, tooling, and automation engineering position embedded within the Red Team.  You will design, build, maintain, and continuously improve the platforms, infrastructure, and custom tooling that our operators depend on to execute engagements.

Your work directly enables the team to operate at a higher maturity level: faster infrastructure deployment, more resilient and OPSEC-aware architecture, automated workflows, and reliable custom tooling, freeing operators to focus on the mission.  Your role will also extend to cultivating stakeholder collaboration and elevating our company’s security posture through strategic engagement and proactive measures.  As the team matures, this role can evolve toward platform leadership, custom capability development, or a hybrid operator/engineer path.

What You Will Do

• Infrastructure Engineering & Automation:
• Own the full lifecycle of red team infrastructure: design, provisioning, configuration, maintenance, and teardown
• Build and maintain Infrastructure-as-Code (IaC) using Terraform (or equivalent) to automate deployment of C2 servers, redirectors, phishing infrastructure, payload-delivery systems, and supporting services.
• Resource and asset lifecycle management through tracking domains, certificates, cloud accounts, recurring expenses, and infrastructure resources; managing acquisition, rotation, and retirement.
• Tooling Development & Maintenance:
• Develop, maintain, and improve custom tools, scripts, and automation to support red team operations (e.g., payload generation pipelines, log aggregation, C2 profile management, infrastructure health checks), providing on-demand infrastructure/tooling support when issues or gaps arise.
• Collaborate closely with operators during engagement planning to understand infrastructure requirements, OPSEC constraints, and operational timelines.
• Building and maintaining a representative test environment for pre-operation validation of tools and tradecraft against a security stack similar to the target.
• Maintaining the team's source code repository with merge/pull request processes, documentation, and code quality standards.
• Ensuring engagement evidence, infrastructure logs, and operational data are centrally collected and accessible for reporting and after-action reviews.
• Contribute to and maintain metrics that demonstrate infrastructure maturity, operational efficiency, and readiness (e.g., deployment time, rebuild time, infrastructure availability during engagements).
• Security & OPSEC:
• Design infrastructure with OPSEC as a first-class requirement: network segmentation, traffic separation between operations, credential management, and access controls 
• Implement and manage secure access to red team infrastructure
• Create and update operational runbooks, infrastructure documentation, and SOPs for the team.
• Maintain clear records of infrastructure ownership and attribution to support deconfliction processes.

What You Bring

Required

• 8+ years of professional experience in infrastructure engineering, DevOps, platform engineering, or a similar role with significant automation responsibilities
• Strong familiarity with Terraform (or equivalent IaC tooling) for multi-cloud infrastructure provisioning and management
• Experience operating in cloud-native, SaaS, or identity-focused environments
• Strong proficiency with configuration management tools (Ansible, or equivalent)
• Proficiency in at least one systems programming or scripting language (Python, Go, Bash) with disciplined development practices (version control, code review, testing, documentation)
• Solid understanding of Linux systems administration, networking fundamentals (DNS, HTTP/S, TCP/IP, proxying, TLS), and cloud platforms (AWS, GCP, or Azure)
• Understanding of OPSEC principles as they apply to offensive infrastructure — you know why redirector chains, domain categorization, traffic separation, and certificate management matter.

Strongly Preferred

• Experience building and maintaining CI/CD pipelines (GitHub Actions, GitLab CI, Jenkins, or similar)
• Familiarity with containerization and orchestration (Docker, Kubernetes) as applicable to tooling and lab environments
• Familiarity with C2 frameworks (Cobalt Strike, Mythic, Sliver, or similar) from an infrastructure and deployment perspective — you don't need to operate them, but you need to understand what operators need from the infrastructure
• Familiarity with detection evasion concepts as they relate to infrastructure (e.g., traffic shaping, hosting provider reputation, certificate transparency)

Nice to Have

• Working knowledge of Blue Team operations and related technologies
• Experience with security tool development (implant development, payload engineering, evasion tooling) — this role can grow in that direction
• Familiarity with Red Team maturity models and how infrastructure/tooling capabilities map to organizational maturity 

Note: This is not an operator role. You will not be the person running hands-on-keyboard engagements as your primary function. While you may participate in operations to understand requirements or provide support, your core mission is ensuring the team's infrastructure, workflows, tooling, and automation are reliable, repeatable, and mature. You are the engineering foundation the operators build on.

#LI-TM

#LI-Hybrid

(P22302_3403905)

We are looking for a Staff Software Engineer to join our high-caliber Extensibility Engineering team to help us continue to improve our ultra-low latency, secure, and scalable platform for untrusted code execution. In this role, you will have the opportunity to significantly contribute to the foundation of the Customer Identity Ecosystem, realizing a huge impact for our customers and partners.

As a member of Developer Experience - Extensibility, you will: 

• Lead, Design, architect, and document large-scale projects using technologies such as  Node.js, Golang, MongoDB, PostgreSQL, AWS, Azure, and Kubernetes.
• Mentors others by coaching and delegating responsibilities to others. Collaborates with Engineering Manager on buy-in and direction.
• Contribute to improving Auth0's architecture, performance, observability, security controls, and best practices.
• Collaborate with Product and Security teams to define and continually improve Auth0’s Extensibility platform and architecture.
• Participate in our on-call rotations for troubleshooting production issues.

Key Qualifications:

• 8+ years of experience in software development building distributed systems (Node.js and/or Go).
• Strong experience in API-driven applications using REST and/or gRPC.
• Experience with packaging and distributing containerized applications using Docker and Kubernetes.
• Experience with sandboxing untrusted code or tenant isolation (both preferred but not required).
• A high bar for both code quality as well as quality of user experience.
• Proven ability to collaborate with others to drive initiatives forward.

Nice To Haves:

• Frontend application development in React/Angular (or other JavaScript frameworks) is a plus.
• An understanding of evergreen infrastructure and CI/CD best practices

#LI-HYBRID

#LI-SH1
P20120_3431986

The PAM Team

Ever wonder how large organizations make sure the right people can access their most critical systems? That's the problem the Okta Privileged Access Management (PAM) team solves.

Our solution controls who can reach sensitive servers, databases and cloud resources and grants access only when it's needed. It is the security layer between people (and non-human-identities) and the systems they need to do their jobs.

The Staff Backend Software Engineer Role

We're looking for a Staff Backend Software Engineer who wants to work on hard problems: distributed systems and building software where getting it right really matters. You'll ship code that protects real infrastructure for real organizations. You’ll build foundations that multiple feature teams depend on. When you make something faster, more reliable, or easier to use, it multiplies across the entire product.

This is a role for someone who likes thinking about how systems fit together. You'll need strong opinions about what makes a good abstraction, and the flexibility to evolve those abstractions as the product grows. 

What you’ll be doing 

• Be deeply involved in evolving the core architecture of PAM
• Work in our product development teams to build scalable, composable components of our platform
• Be responsible for designing and implementing scalable architecture patterns
• Design and build APIs with OpenAPI Specification that customers rely on for access to production infrastructure
• Work on backend systems written in Go
• Participate in the rotational on-call activities with SRE and product development teams

What you’ll bring to the role

• 8+ years of experience as a SWE
• Are an experienced software engineer with a background in Golang (other languages are also acceptable)
• Experience working with relational databases like PostgreSQL or similar RDBMS technologies
• Ability to design database models and backend APIs
• Experience working with cloud services like Caching, Queues, NoSQL Databases etc.
• Experience working with cloud providers such as AWS, GCP or Azure
• Thrive in a collaborative environment built on end-to-end ownership
• Love thinking about distributed systems, and the reliability, availability, and performance implications of the decisions made in their design
• Enjoy deep-diving into production metrics, and familiarity with monitoring tools like Splunk, DataDog etc.
• Think in terms of systems, services, and APIs.

Required education and experience:

• 8+ years of professional software engineering experience, with a demonstrated track record of technical leadership and increasing scope.
• Experience working with production systems.
• Bachelors in CS, or equivalent

Must be able to work onsite from our Toronto office.

#LI-SM1

#LI-Hybrid

P24958_3402708

Join Okta’s Defensive Cyber Engineering team as a Staff Engineer responsible for safeguarding Okta’s environments. You’ll work closely with the Security, Business Technology Engineering and Product teams to implement and manage security solutions and ensure that core infrastructure applications are protecting our workforce, endpoints, and corporate data. 

A strong desire to make tools and people work together to solve complex security problems is central to this role. This approach mandates an engineering-first approach: maximizing the utility of existing security tools before strategically building or buying new solutions to address any remaining security gaps. 

To execute this vision, you will combine your enterprise security expertise with your hands-on engineering skills, leveraging automation, policy-as-code, and cloud-native technologies to deliver scalable, resilient, and secure solutions. Your work will ultimately set standards for security best practices across the organization and influence the architecture of business-critical systems.

What you bring:

• Hands on experience with enterprise security tools such as Okta, Crowdstrike and Palo Alto suite covering EDR (Endpoint Detection and Response), CASB (Cloud Access Security Broker), DLP (Data Loss Prevention), MDM (Mobile Device Management), SASE (Secure Access Service Edge), and SSPM (SaaS Secure Posture Management) capabilities.
• Strong coding and scripting skills are required for building automation and custom tooling. Python experience is preferred, but proficiency in other languages (e.g., Bash, PowerShell, Go) is a plus.
• Proven track record automating security controls and workflows using a cloud-first approach
• Experience with Terraform and other infrastructure-as-code tools to orchestrate security infrastructure
• Familiarity with CI/CD pipelines for security automation and drift management
• Strong communication skills across technical staff, support teams, executive leadership, and external vendors.

What you’ll be doing

• Serve as a security subject matter expert (SME) for solution engineering, architecture reviews, security assessment, and vulnerability mitigation
• Lead technical efforts evaluating, designing, and implementing new enterprise security systems and feature enhancements
• Build, maintain, and enhance custom automation and cloud infrastructure using Terraform or similar tools to support team workflows and the enforcement of security controls
• Develop integrations with APIs, cloud platforms (AWS, GCP, Azure), and security infrastructure to improve detection, response, and remediation
• Collaborate with cross-functional teams to tackle global technology and security challenges
• Write and maintain scripts and automation to streamline security operations, with an emphasis on Python-based solutions
• Establish monitoring and alerting for security posture, misconfigurations, and threats across endpoints, SaaS, and cloud workloads
• Proactively identify and remediate security gaps; stay updated on emerging threats, solutions, and tooling across the industry

And extra credit if you have experience in any of the following!

• Working with advanced identity management technologies (MFA, SAML, OAuth, OIDC, WebAuthn)
• Deep understanding of Okta's ecosystem, including advanced configuration and integrations
• Experience with continuous compliance solutions (e.g., policy-as-code, automated evidence gathering)
  
  

What you can look forward to as an Full-Time Okta employee!

World-class benefits, flexibility, and growth opportunities

The chance to shape the security posture of a global leader in identity

Opportunities to make a social Impact through technology and innovation

Ready to join Okta and make security the foundation of our innovation? Apply today!

#LI-HYBRID

P24217

The Team

Okta’s Workforce Identity Cloud Security Engineering group embraces innovation and paves the way to transform bright ideas into excellent security software solutions that help run large-scale, mission-critical software. Our Security engineering team has a niche skill-set that combines security domain expertise with the ability to design, implement and rollout security features and functionalities without adding friction to product functionality or performance. We are responsible for the ever-growing need to improve our customer safety and privacy by providing security services that are coupled with the core Okta product.

The Role

Okta’s Workforce Identity Cloud Security Engineering group is looking for an experienced and passionate Staff Software Security Engineer to join a team focused on designing and developing Security solutions to harden our frameworks & infrastructure. We encourage you to prescribe defense-in-depth measures, industry security standards, and enforce the principle of least privilege to help take our Security posture to the next level.

This is a high-impact role in a security-centric, fast-paced organization that is poised for massive growth and success. You will act as a liaison between the Security org and the engineering org to build technical leverage and influence the security roadmap and direction. You will focus on engineering security and privacy aspects of the systems used across our services while working on a weekly release cadence. You will be empowered to propose  stimulating new projects for our roadmap and rewarded with projects using  emerging technologies. Join us and be part of a company that is about to change the cloud computing landscape forever.

What you’ll be doing 

• Act as a liaison between the engineering and security org to develop innovative requirements for the security roadmap
• Evangelize security best practices across the engineering org
• Research, design, implement and own security oriented frameworks and features with the common goal of protecting Okta’s customers
• Routinely participate in cross-vertical code reviews with emphasis on Security
• Break down complex problems into sub-tasks while prototyping rapidly and iteratively contributing to security initiatives using agile practices
• Coach and mentor junior engineers in the team

What you’ll bring to the role

• 8+ years of development experience in designing and implementing software systems in Java, building highly reliable and mission-critical software
• 4+ years of work experience in designing and implementing security solutions for applications and distributed systems
• Work experience and excellent understanding in mitigating OWASP Top 10 attacks on applications, Application Security, Cryptography, Authentication, Authorization using Role-Based and Attribute-Based access controls
• Strong understanding of concepts such as Test-Driven development, Secure SDLC, Secure code reviews and the ability to identify and mitigate threat vectors and vulnerabilities in code and infrastructure
• Good understanding and experience in using cloud service providers such as AWS and GCP
• Good understanding of 'AI Secure by Design' practices throughout the development lifecycle, ensuring secure coding for AI-powered applications and validating the integrity of training datasets
• Engineer and implement AI-based security solutions (e.g., automated threat analysis) that enhance application and infrastructure security
• Developing and maintaining technical documentation such as cookbooks, design and architecture docs
• Troubleshooting and fixing production issues to ensure reliability, security and performance
• Work experience in using RDBMS like MySQL, good grasp of concepts such as  replication and clustering along with familiarity in data stores such as Redis and Elasticsearch
• Excellent grasp of software engineering principles coupled with strong written and verbal communication skills
• B.S or M.S in Computer Science or related fields

#LI-SM1

#LI-Hybrid

P12002_3360981

Overview

Instacart’s Data Infrastructure organization builds and operates the systems that power our company’s data ecosystem, including a modern open data lakehouse on Apache Iceberg, a multi-engine compute platform for stream and analytical workloads, and self-serve tooling that helps Product, Data Science, ML, Ads, Finance, and engineering teams move fast with data.

We’re looking for a Staff Software Engineer, Data Infrastructure to join our Data Governance and Foundations Team. In this role, you’ll serve as a senior technical leader owning the architecture and delivery of our open lakehouse foundation, governance and access patterns, and multi-engine compute strategy—balancing today’s reliability with the next three to five years of scale, maturity, and cost efficiency.

You’ll collaborate closely with engineering leadership and stakeholders across Data Science, ML Platform, Ads Infrastructure, Finance Engineering, Product Engineering, and Security. You’ll operate with a high degree of ownership in a fast-paced environment where architectural decisions have real technical and financial consequences. If you thrive on complex, high-scale challenges and roll-up-your-sleeves execution, this is a chance to shape the backbone of Instacart’s data platform.

Our stack includes technologies such as Apache Iceberg, Apache Flink, Trino, ClickHouse, Apache Kafka, Apache Spark, Snowflake, Databricks, Confluent, Airflow, dbt, Delta Lake, Scala, Python, Postgres, and AWS. You’ll join a focused team of 7 engineers that values pragmatism, clarity, and impact.

About the Job

• Translate Instacart’s data strategy (e.g., monetization, federated access, real-time) into an actionable multi-year architecture roadmap; align with leadership while evolving the platform for scale, maturity, and cost efficiency.
• Own the open lakehouse foundation: define and deliver unified table formats, storage governance, and a multi-engine compute portfolio (interactive, batch, streaming) that enables portability and prevents lock-in.
• Drive real-time and streaming infrastructure for critical use cases (Ads, Fraud, ML): set deployment patterns, SLAs, and operational practices that balance performance, availability, and spend.
• Pioneer AI-native data infrastructure engineering by applying LLM/AI tools to the platform lifecycle—accelerating development, automation, observability, and cost optimization—and partnering to embed AI-powered capabilities into the platform.
• Elevate engineering excellence: lead architecture reviews, mentor senior/staff engineers, influence hiring, and clearly communicate complex trade-offs to both technical and executive audiences to ensure cross-org alignment.

About You

Minimum Qualifications

• 5+ years of software engineering experience building and operating data infrastructure or distributed systems at production scale.
• Hands-on expertise with modern data lakehouse architectures and open table formats (e.g., Apache Iceberg, Delta Lake, Hudi) and with distributed query/compute engines (e.g., Trino, Spark, ClickHouse), including performance tuning and production reliability.
• Experience with event-driven and streaming infrastructure (e.g., Kafka, Flink) for real-time pipelines and serving systems.
• Proven ownership of major platform transitions or migrations (build vs. buy, migration design, risk management) delivered to production.
• Ability to build cost/benefit and TCO models for infrastructure investments and to drive alignment via clear architecture docs and strategy memos across multiple teams and leadership levels.

Preferred Qualifications

• Experience designing platform-level governance controls and familiarity with compliance frameworks (e.g., SOX, CPRA, GDPR).
• FinOps experience optimizing data platform spend, including managing multi-million dollar infrastructure budgets and negotiating vendor contracts.
• Deep SQL proficiency and strong skills in Python or Scala for systems-level development.
• Experience with orchestration (e.g., Apache Airflow) and data transformation pipelines (e.g., dbt) in large-scale production environments.
• Bachelor’s, Master’s, or PhD in Computer Science, Computer Engineering, Electrical Engineering, or equivalent practical experience.

#LI-Remote

Team Description

Ad Safety is a growing team focusing on user safety and advertiser trust by building a robust, automated ecosystem that prioritizes Brand Suitability and Ads Integrity. This is achieved by deploying highly accurate automated ad review systems that vet content before it goes live, coupled with advanced brand safety classifications and controls that give brands granular agency over their ad adjacency along with ensuring Reddit standards are adhered to. By further integrating with trusted third-party verification partners, the platform not only solidifies confidence in its ad effectiveness but also creates a transparent, scalable environment designed to unlock significant revenue growth.

The team is expanding its Fraud counter-measures by consolidating the identification and enforcement of deceptive ads (Malware, Phishing, Scams) and Billing fraud into a centralized platform. Collecting signals across multiple surfaces, in addition to third party vendor integration, will allow for more effective measures to analyze coordinated efforts of bad actors and pre-emptive detection of malignant intent. 

Role Description

Reporting to the Ad Safety Engineering Manager, the person in this role will be the primary technical driver for the new Fraud detection system, working closely with Ad Review, Billing, Policy and other Reddit Safety teams to enhance overall systems. You will drive the long term strategy for the platform, setting measurable goals and taking overall ownership of a critical function in the Ads organization. 

This is a high-agency position for an engineer who can navigate ambiguity and take decisive ownership of the platform's technical direction in collaboration with other engineers, teams, and stakeholders. 

This role acts as both a technically adept deep coder and a force multiplier. It is responsible for working cross-functionally to help establish the long-term technical vision for Fraud Detection, ensuring our systems are highly available and capable of scaling with the marketplace. In this role you will lead large-scale projects through the entire software development lifecycle, from concept through implementation until delivery. 

What You’ll Do

• Steer: Work with the team to select, scope, and drive high-leverage projects that accelerate the development of Fraud Detection to help Reddit achieve its ambitious goals.
• Architect: Help define the 2+ year technical roadmap for the platform, translating complex business needs into a clear strategy for highly available and performant backend services.
• Build: Execute on a strategy to create world-class Fraud Detection systems.
• Amplify: Mentor, coach, and collaborate with other technical contributors, fostering a culture of empathetic technical excellence and proactive problem-solving.
• Collaborate: Work together with a variety of cross-functional teams, including Product Management, Policy and Legal, to ensure Fraud Detection meets the needs of all stakeholders.
• Evolve: Learn and improve technical and non-technical abilities, staying up-to-date on trends and best practices in the Fraud Detection space across the industry.

Qualifications

• Experience: 7+ years of software engineering experience, with a track record of leading large-scale technical projects that require cross-team and cross-functional collaboration.
• Backend Expertise: Strong experience in large-scale distributed systems and developing highly scalable and reliable backend services.
• Technical Ability: Expertise in at least one general-purpose programming language (e.g., Go, Python, Scala, Java, or C++) and ability to grow expertise in Python and Go.
• Leadership: Demonstrated ability to disambiguate complex problems, align stakeholders with different priorities, and aggressively prioritize to execute effectively.
• Communication: Excellent communication skills employed to drive toward consensus, navigate disagreements, and influence decisions across the engineering organization.
• Agency: A bias for action. The ability to identify what needs to be done, take the initiative to make it happen without waiting for direction, and finish the swing.

Preferred Qualifications

• Direct experience as a Tech Lead or in a similar function.
• Previous success as part of an Ads team with a user base in the millions.
• Experience in Ads Fraud, Ad review or Ads Brand Safety
• Proven experience designing, building, and operating scalable platforms.
• Expertise in Python and/or Go.
• Prior experience in Fraud/Malicious actors space
• Proven track record of utilizing LLMs in production systems. 

Benefits: 

• Comprehensive Healthcare Benefits and Income Replacement Programs
• Family Planning Support
• Gender-Affirming Care
• Mental Health & Coaching Benefits
• Flexible Vacation & Reddit Global Days Off
• Generous paid Parental Leave  
• Paid Volunteer time off

#li-remote

About IEM

Industrial Electric Mfg. (IEM) is the largest independent full-line manufacturer of custom power distribution systems in North America. Founded more than 75 years ago in Fremont, California, IEM grew alongside Silicon Valley and today operates over 1.7 million square feet of manufacturing capacity. With $1B+ in annual sales and 10,000+ commissioned projects across technology, data centers, commercial, energy, utilities, healthcare, industrial, and infrastructure markets, IEM continues to deliver exceptional product quality, dependable service, and the flexibility to meet complex technical requirements at scale.

Position Summary

The Switchgear Application Expert is the senior technical escalation point for complex pre‑sales and post‑sales inquiries related to IEM’s low- and medium-voltage switchgear, switchboards, panelboards, and related distribution products. The role provides Tier‑2 and Tier‑3 support across Pre‑Sales, Order Review, Engineering, Production, Field Services, Quality, Product Management, and Customer Support, ensuring that solutions are technically sound, compliant with codes/standards and UL procedures, and manufacturable at scale. The Application Expert combines deep protection & controls, three‑phase power, and standards knowledge with strong cross‑functional collaboration to de‑risk projects, resolve field issues, and drive continuous improvement.

Ideal Candidate Profile

• Seasoned application or engineer with strong power systems with OEM background and familiar with LV and MV distribution equipment who enjoys being the “go‑to” technical expert.
• Comfortable reviewing complex specifications, single‑line diagrams, CDEs, and relay schemes, and explaining trade‑offs to both technical and non‑technical stakeholders.
• Thrives in a fast‑paced environment balancing urgent escalations with long‑term improvements to standards, tools, and processes.

Key Responsibilities

1. App Expert / Cross‑functional Technical Leadership

• Serve as the primary Application Expert for complex and non‑standard applications of IEM switchgear and related products.
• Act as a technical liaison between Sales, Estimation, Engineering, Production, Field Services, Quality, and Product Management, ensuring consistent interpretation of standards, UL procedures, and IEM practices.
• Identify recurring technical issues and lead or support initiatives to improve standard designs, tools, and documentation.

1. Pre‑Sales Inquiries

• Support Estimation and Inside Sales by validating complex CDEs, custom enclosure footprints, and utility‑interface requirements against IEM standard offerings and UL procedures.
• Review IEM quotes and CDEs for alignment with customer specifications, codes, and IEM practices; provide clear technical clarifications and risk flags.
• Perform in‑depth technical reviews for projects with high technical P&C requirements, paralleling controls, unusual system topologies, or non‑standard configurations.
• Determine when proposed solutions fall outside standard UL procedures or IEM product offerings and coordinate with Development / R&D / Product Engineering to define acceptable alternatives or exceptions.

1. Product Team Support

• Provide structured feedback to Product Management and R&D based on trends in pre‑sales questions, production issues, and field events.
• Participate in product roadmap and design reviews as the “voice of application,” ensuring new offers are practical to apply, commission, and service.
• Support validation of new features or product lines through application testing, documentation review, and internal training for Sales, Engineering, and Field Services.

1. Production Support

• Review and advise on installation methods and minor drawing clarifications when production questions arise.
• Evaluate production/installation defects to determine whether material replacement or limited rework is required.
• Lead major technical reviews when production or QC identifies issues that may impact code compliance, UL procedure adherence, safety, or functionality.
• Confirm that electrical and mechanical designs meet applicable codes, standards, and IEM UL procedures; propose robust solutions that minimize shipment delays, rework, and added cost.
• Act as mediator between Engineering, Production, and QC on complex issues, driving clear decisions and documented resolutions.

1. Engineering Support

• Support design engineers with general design reviews and returned customer submittal comments; clarify specifications and ensure project requirements align with IEM standard practices and UL procedures.
• Confirm UR components are correctly selected and within applicable UL files.
• Own major technical reviews that require deeper analysis, research, and justification to meet challenging design or specification requirements.
• Provide expert guidance on power system configuration, protection & controls, and communication architectures for complex projects.

1. Order Review

• Review order entry and acknowledgment forms against the approved quote, CDE, specifications, and single‑line diagrams; identify discrepancies early and work with Engineering to define technical solutions.
• Collaborate with Engineering and Sales to review “show‑stopper” items identified during Tier‑2 review that cannot be resolved without customer buy‑in.
• Define technically sound alternatives, articulate risks and constraints, and support customer discussions as needed.

1. Customer Support (Post‑Sales)

• Address advanced customer questions on submittals, dimensional changes, and specification clarifications that are not yet formal service issues.
• Provide troubleshooting guidance on equipment based on drawings, settings, and documentation prior to Service engagement.
• Lead complex customer escalations involving design interpretation, protection & controls performance, or systemic issues.
• Participate in technical meetings and root‑cause discussions with key customers and internal stakeholders, ensuring a strong technical basis for decisions.

1. Field Services Support

• Provide diagnostic support for high‑profile site events (e.g., mis‑operations, major outages, arc‑flash incidents, or site stoppages).
• Analyze relay/event logs, test reports, and site conditions to identify root causes and recommend corrective and preventive actions.
• Assist in preparing in‑depth corrective action reports, including independent research and coordination with Engineering, Quality, and Product teams.

1. Quality Support

• Support QC teams on testing requirements, guidelines, and interpretation of standards and UL procedures.
• Complete assigned nonconformance investigations, including analysis of cause, risk, and preventive actions.
• Provide technical research and feedback on major quality events, including arc‑flash or site stoppage incidents, and translate findings into updates to standards, templates, or training.

Qualifications

• Bachelor’s degree in electrical engineering (BSEE) or equivalent technical experience.
• 5+ years of experience in application engineering, design engineering, or field service for low- and/or medium-voltage switchgear, switchboards, or related power distribution equipment.
• Strong knowledge of three‑phase power systems, protection and control schemes, and communication protocols commonly used in power systems.
• Solid understanding of applicable codes and standards (e.g., NEC, UL 891/1558/508A, IEEE/ANSI) and how they apply to IEM products and UL procedures.
• Proficiency in reading and interpreting single‑line diagrams, schematics, wiring diagrams, and mechanical assembly drawings; AutoCAD experience strongly preferred.
• Demonstrated ability to perform structured root‑cause analysis and to lead cross‑functional investigations.
• Strong written and verbal communication skills, with the ability to explain complex technical concepts to both technical and non‑technical stakeholders.
• Proven track record of managing multiple priorities in a fast‑paced, project‑driven environment.

Preferred

• Experience with power system analysis and protection coordination tools.
• Prior experience in a deep technical support, field service, or product engineering role for LV/MV equipment.
• Familiarity with data center, industrial, or utility applications where high reliability and availability are critical.

Workplace Conditions

• Onsite or remote role with primary collaboration with the Application Engineering team, Sales, Engineering, Production, Field Services, and Product Management.
• Occasional meetings with colleagues across time zones may require flexibility in working hours.
• Travel expectations: Minimal; may include periodic visits to manufacturing facilities, project sites, or customer locations for investigations or technical meetings.

About the role:

Samsara is looking for an experienced Staff Software Engineer to join our Cloud Governance Platform team. This team builds the foundational platforms that enforce governance, identity security, compliance, and software supply-chain protections across all of Samsara’s cloud infrastructure and developer environments.

Rather than relying on manual reviews or policy enforcement, this team delivers secure, compliant-by-default systems through cloud IAM guardrails, automated controls, and scalable platform abstractions across AWS and GCP.

As a Staff Engineer, you will operate as a technical leader and force multiplier: driving architecture, influencing engineering direction across teams, and building highly reliable, secure platforms that scale with Samsara’s global footprint supporting millions of connected devices.

Our final interview stage is a full-day, in-person onsite at our SF office. This is an exciting opportunity to collaborate face-to-face with our senior technical leaders and dive deep into the hard problems we are solving.

This is a remote position open to candidates based in the US.

You should apply if:

• You want to impact the industries that run our world: The software, firmware, and hardware you build will result in real-world impact—helping to keep the lights on, get food into grocery stores, and most importantly, ensure workers return home safely.
• You want to build for scale: With over 2.3 million IoT devices deployed to our global customers, you will work on a range of new and mature technologies driving scalable innovation for customers across industries driving the world's physical operations.
• You are a life-long learner: We have ambitious goals. Every Samsarian has a growth mindset as we work with a wide range of technologies, challenges, and customers that push us to learn on the go.
• You believe customers are more than a number: Samsara engineers enjoy a rare closeness to the end user and you will have the opportunity to participate in customer interviews, collaborate with customer success and product managers, and use metrics to ensure our work is translating into better customer outcomes.
• You are a team player: Working on our Samsara Engineering teams requires a mix of independent effort and collaboration. Motivated by our mission, we’re all racing toward our connected operations vision, and we intend to win—together.

In this role, you will: 

• Lead the technical direction and architecture of Samsara’s Cloud Governance Platform, spanning cloud IAM, security controls, compliance enforcement, and software supply-chain security.
• Define and own the roadmap and long-term vision for governance and security platforms across AWS and GCP.
• Drive compliance through engineering, translating regulatory frameworks into automated, continuously enforced controls.
• Own software supply-chain security initiatives, including SAST, DAST, and secure CI/CD patterns.
• Partner with Infrastructure, Security, Compliance, and Product Engineering to solve complex, cross-functional risk and governance challenges.
• Mentor engineers across teams and contribute to a strong engineering culture through technical guidance and example.
• Communicate architectural decisions, tradeoffs, and risks clearly to technical and non-technical stakeholders.
• Champion and embed Samsara’s cultural principles as the organization scales.

Minimum requirements for this role.

• Bachelor’s degree or higher in Computer Science, Engineering, or related field.
• 8+ years of software engineering experience, with significant experience building and operating cloud platforms at scale.
• Deep hands-on expertise in cloud infrastructure (AWS, GCP, or similar).
• Strong understanding of cloud security, IAM systems, threat models, and mitigations.
• Proven track record of leading large technical initiatives with cross-team impact.
• Experience designing and operating highly reliable, scalable distributed systems.
• Strong communication skills and ability to influence without direct authority.

An ideal candidate also has:

• Experience building internal developer platforms or governance systems used across many teams.
• Background in developer tools, infrastructure, or productivity engineering.
• Experience with software supply-chain security practices and tooling.
• Proficiency in Golang, Python, Terraform, or similar platform-focused technologies.
• Strong judgment in balancing developer experience, platform adoption, and enforcement of security controls.

Role Description

Responsibilities

• Technical leadership and architecture: Define and drive the technical roadmap for identity and engagement platform services, including APIs, service boundaries, data models, and reliability goals.
• Modernization and platform evolution: Lead multi-quarter modernization efforts (e.g., reducing legacy dependencies, improving scalability, simplifying integrations) with a focus on cohesion, observability, and operational excellence.
• Identity and access systems: Design and improve authentication, authorization, account integrity, and identity lifecycle services with strong security and privacy posture.
• Engagement and insights foundations: Build and evolve the systems that power engagement signals, experimentation hooks, telemetry/analytics pipelines, and usage insights to support product iteration and growth.
• Developer velocity and platform enablement: Create reusable platform primitives, reference architectures, and best practices that make it easier for product teams to build safely and quickly.
• Cross-functional collaboration: Partner with Product, Design, Security, Infrastructure, and AI/ML teams to align technical decisions with customer outcomes and organizational priorities.
• Execution and quality: Own delivery of complex initiatives end-to-end—breaking down ambiguous problems, driving alignment, and ensuring high-quality implementation, testing, rollout, and oncall readiness.
• Mentorship and influence: Mentor senior engineers, review critical designs, elevate engineering standards, and influence technical direction across teams beyond your immediate scope.

Requirements

• 12+ years of software engineering experience, including significant experience designing and operating large-scale backend or platform systems.
• Proven ability to lead architecture for distributed systems with high reliability, performance, and security requirements.
• Strong expertise in at least two of the following areas: identity/authn/authz, service API design, analytics/telemetry infrastructure, search/retrieval foundations, experimentation platforms, or engagement systems.
• Track record of driving modernization efforts in complex environments (e.g., migrating legacy systems, improving data quality and observability, simplifying architecture).
• Excellent technical judgment and ability to balance speed, stability, and long-term maintainability.
• Strong communication skills: able to write clear design docs, align stakeholders, and lead technical decision-making across teams.

Preferred Qualifications

• Experience with cloud-scale identity platforms (SSO, session management, risk signals, account security, privacy controls).
• Familiarity with AI enablement infrastructure, especially data pipelines, engagement signals, retrieval/search systems, and feedback loops.
• Experience building or operating multi-tenant SaaS platforms with strong compliance and security requirements.
• Demonstrated ability to influence org-wide standards and technical strategy (beyond a single team), including mentorship of other tech leads and principals.

Compensation

Role Description

Responsibilities

• Technical leadership and architecture: Define and drive the technical roadmap for identity and engagement platform services, including APIs, service boundaries, data models, and reliability goals.
• Modernization and platform evolution: Lead multi-quarter modernization efforts (e.g., reducing legacy dependencies, improving scalability, simplifying integrations) with a focus on cohesion, observability, and operational excellence.
• Identity and access systems: Design and improve authentication, authorization, account integrity, and identity lifecycle services with strong security and privacy posture.
• Engagement and insights foundations: Build and evolve the systems that power engagement signals, experimentation hooks, telemetry/analytics pipelines, and usage insights to support product iteration and growth.
• Developer velocity and platform enablement: Create reusable platform primitives, reference architectures, and best practices that make it easier for product teams to build safely and quickly.
• Cross-functional collaboration: Partner with Product, Design, Security, Infrastructure, and AI/ML teams to align technical decisions with customer outcomes and organizational priorities.
• Execution and quality: Own delivery of complex initiatives end-to-end—breaking down ambiguous problems, driving alignment, and ensuring high-quality implementation, testing, rollout, and oncall readiness.
• Mentorship and influence: Mentor senior engineers, review critical designs, elevate engineering standards, and influence technical direction across teams beyond your immediate scope.

Requirements

• 12+ years of software engineering experience, including significant experience designing and operating large-scale backend or platform systems.
• Proven ability to lead architecture for distributed systems with high reliability, performance, and security requirements.
• Strong expertise in at least two of the following areas: identity/authn/authz, service API design, analytics/telemetry infrastructure, search/retrieval foundations, experimentation platforms, or engagement systems.
• Track record of driving modernization efforts in complex environments (e.g., migrating legacy systems, improving data quality and observability, simplifying architecture).
• Excellent technical judgment and ability to balance speed, stability, and long-term maintainability.
• Strong communication skills: able to write clear design docs, align stakeholders, and lead technical decision-making across teams.

Preferred Qualifications

• Experience with cloud-scale identity platforms (SSO, session management, risk signals, account security, privacy controls).
• Familiarity with AI enablement infrastructure, especially data pipelines, engagement signals, retrieval/search systems, and feedback loops.
• Experience building or operating multi-tenant SaaS platforms with strong compliance and security requirements.
• Demonstrated ability to influence org-wide standards and technical strategy (beyond a single team), including mentorship of other tech leads and principals.

Compensation

Required:

• 3+ in Windows desktop application development using Windows App SDK, WinUI (or similar), C#, XAML — and ideally additional experience with native Windows code (C++, Win32/WinRT/COM).
• Deep understanding of Windows application architecture, including interop between managed code (.NET) and native code.
• Proven track record of designing, building, and shipping production-quality desktop applications, with an emphasis on reliability, performance, scalability, and maintainability.
• Strong experience with accessibility APIs on Windows (e.g. Microsoft UI Automation or similar), and a dedication to building accessible and inclusive software.
• Excellent software engineering fundamentals: OOP, design patterns, data structures, algorithms, memory management, multi-threading or asynchronous programming (where relevant).
• Experience leading technical design, mentoring other engineers, conducting code reviews, and making architecture-level decisions.
• Strong communication skills; ability to articulate tradeoffs, collaborate with cross-functional teams, and drive consensus.
• A user-centric mindset: focus on building polished, intuitive, and accessible experiences for end users.

Preferred / Bonus:

• Experience with writing automated tests for UI — unit tests, integration tests, UI automation tests; familiarity with relevant testing frameworks.
• Experience with performance optimization for desktop apps (memory usage, startup time, rendering performance, high-DPI support, responsiveness under load).
• Experience with localization/globalization, right-to-left UI support, internationalization, accessibility for multiple regions.
• Familiarity with telemetry, analytics, crash reporting, logging, and error monitoring in desktop applications.
• Previous experience in shaping CI/CD workflows, release pipelines, and deployment strategies for desktop applications.
• Demonstrated ability to take ownership of feature areas or modules and drive them long-term, including maintenance, refactoring, and technical debt management.

What we offer

• A high-impact role: you will define architecture, shape the future of our Windows product, and directly influence what millions of users see and experience.
• A collaborative, flat-structure engineering culture — you are not just a coder, but a builder and a decision-maker.
• Opportunities to lead — mentor others, steer technical direction, and grow into broader technical leadership (e.g. Tech Lead, Architect).
• Flexibility, autonomy, and responsibility: you define how to solve problems, own features end-to-end, and contribute to long-term product vision.
• A purpose-driven mission: building software that’s reliable, accessible, and user-centered — making a real difference for people.                  

Think you’re a good fit for this job? 

Tell us more about yourself and why you're interested in the role when you apply.
And don’t forget to include links to your portfolio and LinkedIn.

Not looking but know someone who would make a great fit? 
Refer them! 

Speechify is committed to a diverse and inclusive workplace. 
Speechify does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status.

At Lyft, our purpose is to serve and connect. We aim to achieve this by cultivating a work environment where all team members belong and have the opportunity to thrive. 

Our core corporate functions (Finance, Supply Chain) are critical to Lyft's success. The health and sustainability of our applications, systems, tooling, and processes are critical for daily operations and for Lyft's ability to grow. This Business Systems Engineer is primarily a functional role with an experience in the Oracle Fusion Record to Report (R2R) process domain, complemented by a working exposure to technical tools that support and extend those functional capabilities. This engineering role provides support for Lyft’s Corporate systems, managing their enhancements and incidents, implementing effective monitoring and alerting tools, creating automated workflows, building customer solutions, configuring applications, providing end user training and protecting all system related information.

To effectively support our business stakeholders, candidates for this role must be proactive, detail oriented, highly subject oriented, analytical, service focussed and possess the ability to execute the following skills.

Responsibilities:

• Serve as a skilled Oracle Fusion Record to Report (R2R) Techno-Functional professional, acting as bridge between business and technical teams to support and continuously enhance ERP Financial modules within Oracle Fusion Cloud Applications.
• Possess functional experience across core Financial modules including General Ledger (GL), Sub-ledger Accounting (SLA), Account Reconciliations, Fixed Assets, Cash Management, Fusion Accounting Hub (FAH), Account Payables and Receivables.
• Configure and maintain Oracle Fusion GL components including Chart of Accounts (COA), Accounting Calendars, Ledgers, Legal Entities, and Business Units to support Lyft's financial reporting structure.
• Experienced in configuring new Sub-ledger Accounting (SLA) rules, journal entry rule sets, and accounting method configurations to ensure accurate and compliant financial postings from all sub-ledgers (AP, AR, Fixed Assets, Projects, Third-Party).
• Hands-on knowledge of Cash Management, including bank account configuration, configuring new rules, bank statement reconciliation, and period-close activities.
• Experienced in Fixed Assets, including asset creation, categorization, depreciation methods, mass additions, asset retirements, and reconciliation of the Fixed Assets sub-ledger to the General Ledger to ensure accurate capital reporting.
• Partner with Finance stakeholders to gather, document, and translate business requirements into functional Oracle Fusion configurations and process designs.
• Must be able to quickly engage in calls with the Business and stakeholders to provide immediate support during critical periods, such as the month-end close process or any other high-priority task.
• Leverage SQL, PL/SQL, BI, OTBI reporting tools to drive data-driven insights and reporting solutions.
• Develop simple custom financial reports, dashboards, and analytics using OTBI and BI Publisher to meet the reporting and analytics needs of Finance and Accounting teams.
• Maintain good level knowledge of Accounting and Basic Business Process Flows, with solid exposure to data migration using FBDI (File-Based Data Import).
• Conduct functional testing (FUT), user acceptance testing (UAT), develop test scripts, and validate end-to-end scenarios for patches, quarterly updates, and new feature releases.
• Coordinate and manage design, development, and testing activities across project phases to ensure timely and high-quality delivery
• Support SOX compliance by documenting key controls, preparing audit evidence, and ensuring system configurations adhere to internal control requirements.
• Work with Oracle Support by raising and managing Service Requests (SRs), driving through to timely resolution.
• Show interest in Technology Innovation by staying ahead of emerging trends including Generative AI and Agentic AI to proactively identify and implement opportunities that drive system performance and operational efficiency.
• Create configuration workbooks, BR100, Functional Specifications, maintain thorough, up-to-date documentation of system configurations, SLA rules, integrations, and business process flows.
• Proficient in applying both Agile and Waterfall project methodologies across development, testing, and release activities, with the ability to adapt to the delivery model best suited to the project requirements.

Experience:

• 4 - 5 years of work experience in IT systems with domain expertise in Record to Report processes within Oracle Fusion Cloud, demonstrating a strong command of functional and exposure to technical aspects of the saas platform.
• Enthusiastic about learning new technologies and staying current with emerging tools
• Strong problem-solving and troubleshooting skills with the ability to exercise mature judgment in complex and ambiguous situations. 
• Collaborative team player who thrives in cross-functional environments, fosters a culture of knowledge sharing, and contributes positively to team dynamics and collective success.
• Self-motivated and driven professional with a strong sense of ownership, proactively identifying opportunities for improvement and seeing them through to completion with minimal supervision.
• Good understanding of the software development lifecycle (SDLC) with solid familiarity across development, support, and release management activities.
• Should be comfortable enough to report to a Senior level Business Systems Engineer.

Benefits:

• Extended health and dental coverage options, along with life insurance and disability benefits
• Mental health benefits
• Family building benefits
• Child care and pet benefits
• Access to a Lyft funded Health Care Savings Account
• RRSP plan with company match to help save for your future
• In addition to provincial observed holidays, salaried team members are covered under Lyft's flexible paid time off policy. The policy allows team members to take off as much time as they need (with manager approval). Hourly team members get 15 days paid time off, with an additional day for each year of service 
• Lyft is proud to support new parents with 18 weeks of paid time off, designed as a top-up plan to complement provincial programs. Biological, adoptive, and foster parents are all eligible.
• Subsidized commuter benefits and Lyft ride credits

Lyft is committed to creating an inclusive workforce that fosters belonging. Lyft believes that every person has a right to equal employment opportunities without discrimination because of race, ancestry, place of origin, colour, ethnic origin, citizenship, creed, sex, sexual orientation, gender identity, gender expression, age, marital status, family status, disability, pardoned record of offences, or any other basis protected by applicable law or by Company policy. Lyft also strives for a healthy and safe workplace and strictly prohibits harassment of any kind.  Accommodation for persons with disabilities will be provided upon request in accordance with applicable law during the application and hiring process. Please contact your recruiter if you wish to make such a request.

Lyft highly values having employees working in-office to foster a collaborative work environment and company culture. This role will be in-office on a hybrid schedule — Team Members will be expected to work in the office at least 3 days per week, including on Mondays, Wednesdays, and Thursdays. Lyft considers working in the office at least 3 days per week to be an essential function of this hybrid role. Your recruiter can share more information about the various in-office perks Lyft offers. Additionally, hybrid roles have the flexibility to work from anywhere for up to 4 weeks per year. #Hybrid

The expected base pay range for this position in the Toronto area is CAD $102,000 - CAD $127,500, not inclusive of potential equity offering, bonus or benefits. Salary ranges are dependent on a variety of factors, including qualifications, experience and geographic location. Your recruiter can share more information about the salary range specific to your working location and other factors during the hiring process.

Lyft may use artificial intelligence to screen applicants, however, Lyft employees make the ultimate selection and hiring decisions.

This job fills an existing vacancy.

This is Engineering at Lattice

At Lattice, we build software that helps people and organizations thrive. Our engineering team values maintainable systems, strong collaboration, and thoughtful product experiences.

As we expand AI-powered capabilities across our platform, security is a core part of how we design, build, and operate our product. Our Product Security team partners closely with engineering to ensure we ship features that are secure by default and resilient in production.

What You Will Do

You will work closely with product and platform engineering teams to improve the security of Lattice’s applications and services.

Product Security & Engineering Partnership

• Partner with engineers to identify, triage, and remediate security issues in product features and services
• Participate in security reviews and threat modeling for new features and systems
• Perform security-focused code reviews and help identify common vulnerabilities
• Contribute to secure-by-default patterns, libraries, and tooling in our TypeScript-based stack

Security Tooling & Operations

• Help implement and operate security tooling (SAST, DAST, dependency scanning, etc.)
• Support vulnerability management workflows, including internal findings and bug bounty reports
• Assist in investigating security issues and assessing risk and impact

Cloud & Platform Security

• Collaborate with platform and infrastructure teams to improve application and cloud security posture
• Contribute to improving security practices in AWS-based environments

AI/LLM Security

• Assist in identifying and mitigating risks in AI/LLM-powered features, including prompt injection, data leakage, and unsafe output handling
• Apply emerging best practices (OWASP Top 10 for LLM Applications) to real product use cases

Security Enablement

• • Contribute to security guidance, documentation, and training for engineering teams
  • Help improve how security is integrated into the development lifecycle

What You Will Bring to the Table

Experience that is important for you to have at some level:

• 1–3+ years of experience in product security, application security, or software engineering
• Experience writing and maintaining code in JavaScript/TypeScript (or similar languages like Python or Ruby)
• Familiarity with common web and API vulnerabilities (e.g., OWASP Top 10)
• Exposure to security testing tools (SAST, DAST, dependency scanning, etc.)
• Experience working in or with cloud environments (AWS or similar)

Technical Approach

• Ability to identify common security risks and suggest practical mitigations
• Understanding of secure coding practices and basic security controls
• Interest in how security decisions impact real-world product systems

Collaboration & Growth

• Strong communication skills and ability to work closely with engineering teams
• Willingness to ask questions, learn quickly, and take ownership of well-scoped problems
• Ability to contribute to team discussions and share security context effectively

Experience that would be nice to have:

• Experience with modern web architectures (Next.js, NestJS, GraphQL)
• Familiarity with containerization or Kubernetes
• Experience or interest in AI/LLM security, including

Location Requirement:
This role is open to candidates located in British Columbia or Ontario, Canada. At this time, we are only able to hire employees residing in these provinces.

----

The estimated annual cash salary for this role is CAD $93,750 - CAD $125,000. This position is also eligible for incentive stock options, subject to the terms of Lattice’s applicable plans

Benefits: The Company offers the following benefits for this position, subject to applicable eligibility requirements: Medical insurance; Dental insurance; Life, AD&D, and Disability Insurance; Natural Disaster Support Program; Wellness Apps; Paid Parental Leave, Paid Time off inclusive of holidays and sick time; Working Remotely Stipend; One time WFH Office Set-Up Stipend; Retirement Plan; Financial Planning; and Learning & Development Budget.

*Note on Pay Transparency:

Lattice provides an estimate of the compensation for roles that may be hired as required by state regulations. Compensation may vary based on (a) location, as Lattice factors in specific location when benchmarking compensation for most roles; (b) individual candidate skills and qualifications; and (c) individual candidate experience.

Additionally, Lattice leverages current market data to determine compensation, so posted compensation figures are subject to change as new market data becomes available. The salary, other compensation, and benefits information is accurate as of the date of this posting. Lattice reserves the right to modify this information at any time, subject to applicable law.

#LI-remote

Who we are

About Stripe

Stripe is a financial infrastructure platform for businesses. Millions of companies—from the world’s largest enterprises to the most ambitious startups—use Stripe to accept payments, grow their revenue, and accelerate new business opportunities. Our mission is to increase the GDP of the internet, and we have a staggering amount of work ahead. That means you have an unprecedented opportunity to put the global economy within everyone’s reach while doing the most important work of your career.

About the team

The Supportability Evaluation team acts as stewards of the financial ecosystem. Our mission is to protect Stripe’s reputation with our global financial partners by architecting highly precise, automated supportability controls. We develop the AI/ML models and systems that detect and action supportability violations in real-time. We're responsible for building high-fidelity detection engines that ensure our merchants remain compliant across the globe, balancing the scale of millions of users with the surgical precision required by the world’s largest financial institutions.

What you’ll do

As a Machine Learning Engineer in Supportability, you will be responsible for designing, building, training, evaluating, deploying, and owning AI/ML models in production. You will work closely with software engineers, machine learning engineers, product managers, and data scientists to operate Stripe’s ML powered systems, features, and products. You will also have the opportunity to contribute to and influence AI/ML architecture at Stripe and be a part of a larger community.

Responsibilities

• Design state-of-the-art AI/ML models and large scale systems for detection and decisioning for Stripe products based onAI/ML principles, domain knowledge, and engineering constraints
• Drive the expansion of Stripe's largest LLM-based system, scaling its usage and integrating new capabilities through agentic approaches or supervised learning.
• Rapidly prototype new AI/ML-based approaches to achieve key business goals.  
• Develop processes to train and evaluate models in offline and online environments
• Integrate models into production systems and ensure their scalability and reliability
• Collaborate with product and strategy partners to propose, prioritize, and implement new product features
• Engage with the latest developments in AI/ML and take calculated risks in transforming innovative ideas into productionized solutions
• Explore cutting-edge AI/ML techniques and evaluate their potential to solve business problems

Who you are

We are looking for ML Engineers who are passionate about building AI/ML and AI systems that touch the lives of millions. You have experience building and evaluating advanced AI/ML models, and deploying them to production. You are comfortable with ambiguity, love to take initiative, have a bias towards action, and thrive in a collaborative environment.

Minimum requirements

• 2+ years of industry experience building and shipping AI/ML systems in production
• Proficient with AI/ML libraries and frameworks such as PyTorch, TensorFlow, XGBoost, as well as Spark 
• Knowledge of various AI/ML algorithms and model architectures
• Hands-on experience in designing, training, and evaluating machine learning models
• Hands-on experience in productionizing and deploying models at scale
• Experience rigorously evaluating model performance, including cleaning data, and working with data-generating processes to improve signal and reduce noise in high-noise datasets.
• Proficiency in creatively applying modern machine learning techniques and Generative AI models to solve complex business problems.

Preferred qualifications

• MS/PhD degree in AI/ML or related field (e.g. math, physics, statistics)
• Experience with DNNs including the latest architectures such as transformers and LLMs
• Experience working in Java or Ruby codebases
• Proven track record of building and deploying AI/ML systems that have effectively solved ambiguous business problems
• Experience with online experimentation such as A/B testing or multi-armed bandits.
• Experience with model calibration

About the Role:  

Veeam, following its acquisition of Securiti AI - the leader in AI-powered data security posture management (DSPM) - is seeking a Senior Sales Engineer to drive technical leadership in our sales team, focusing on the Securiti AI portfolio. 

You will guide customers from needs assessment to solution design, delivering hands-on demos and proof-of-concepts to showcase value. Success in this role requires strong technical skills and the ability to build trust with clients.

You’re already a technical leader trusted at executive levels when the conversation shifts from “we need to secure our data” to “we need to enable safe, compliant AI at scale.” 

You’re already an expert on data/AI security and a proven enterprise sales engineer. Now it’s time to join the home of Data and AI Trust. 

You’ve already seen our new release of Agent Commander, but you haven’t seen what’s coming next. After the acquisition of Securiti AI, Veeam is even further into the forefront of data resilience, protection, trust, and the acceleration of safe AI at scale.

Are you ready for an exciting new challenge at enterprise scale?

What You’ll Do: 

• Act as the primary technical contact for Securiti AI solutions during the sales cycleServe as the primary technical data protection expert for Securiti AI and Veeam solutions throughout the pre-sales cycle.
  
• Lead discovery to translate risk, architecture, and business goals into a practical solution approach.
  
• Design and deliver tailored demos and hands-on proof-of-concepts that prove value in the customer’s environment.
  
• Drive technical conversations on AI Trust, Data Discovery, DSPM, Data Access & Governance, and Compliance (including GDPR, HIPAA, PCI-DSS).
  
• Provide solution guidance across AWS, Azure, and GCP, including cloud security best practices and identity/access concepts.
  
• Partner cross-functionally with sales, product, engineering, and customer success to ensure clean technical handoff and customer confidence post-sale.
  
• Hone your professional development through hands-on experimentation, team collaboration, robust onboarding, and more.
  
• Work ~80% remote, with client-facing travel usually 1-2 short trips per month.
  

What You’ll Bring (required): 

• Extensive enterprise sales experience in data protection, cloud security, networks, and AI.
  
• Proven ability to quickly develop trust and credibility with both technical and business stakeholders.
  
• Strong technical leadership foundation in enterprise data protection, cloud security, networks, and AI.
  
• Hands-on experience with AWS, Azure, or GCP (multi-cloud exposure strongly valued).
  
• Deep working knowledge of data privacy/security and compliance programs, especially GDPR, HIPAA, and PCI-DSS, plus data governance and access controls.
  
• Ability to build and run compelling demos and POCs while earning trust as a customer-facing technical lead.
  
• Practical technical fluency with areas such as Linux, Kubernetes/containerized environments, and modern cloud/data architectures.
  
• Strong expertise with DSPM, DLP, data discovery approaches (e.g., patterns/keywords/dictionaries/regex/exact matching) and with common cloud/data systems (e.g., object storage and enterprise databases/warehouses).
  

Preferred (strong differentiators): 

• Experience applying or discussing GenAI security in real enterprise contexts, including RAG (Retrieval-Augmented Generation) concepts and vector databases / indexing approaches.
  
• Exposure to CASB / SASE / DLP technologies and how customers operationalize them.
  
• Relevant certifications (CISSP, CISM, AWS/Azure/GCP).
  

#LI-JC3

About the Role:  

Veeam, following its acquisition of Securiti AI - the leader in AI-powered data security posture management (DSPM) - is seeking a Senior Sales Engineer to drive technical leadership in our sales team, focusing on the Securiti AI portfolio. 

You will guide customers from needs assessment to solution design, delivering hands-on demos and proof-of-concepts to showcase value. Success in this role requires strong technical skills and the ability to build trust with clients.
You’re already a technical leader trusted at executive levels when the conversation shifts from “we need to secure our data” to “we need to enable safe, compliant AI at scale.” 
You’re already an expert on data/AI security and a proven enterprise sales engineer. Now it’s time to join the home of Data and AI Trust. 
You’ve already seen our new release of Agent Commander, but you haven’t seen what’s coming next. After the acquisition of Securiti AI, Veeam is even further into the forefront of data resilience, protection, trust, and the acceleration of safe AI at scale.
Are you ready for an exciting new challenge at enterprise scale?

What You’ll Do: 

• Serve as the primary technical data protection expert for Securiti AI and Veeam solutions throughout the pre-sales cycle.
  
• Lead discovery to translate risk, architecture, and business goals into a practical solution approach.
  
• Design and deliver tailored demos and hands-on proof-of-concepts that prove value in the customer’s environment.
  
• Drive technical conversations on AI Trust, Data Discovery, DSPM, Data Access & Governance, and Compliance (including GDPR, HIPAA, PCI-DSS).
  
• Provide solution guidance across AWS, Azure, and GCP, including cloud security best practices and identity/access concepts.
  
• Partner cross-functionally with sales, product, engineering, and customer success to ensure clean technical handoff and customer confidence post-sale.
  
• Hone your professional development through hands-on experimentation, team collaboration, robust onboarding, and more.
  
• Work ~80% remote, with client-facing travel usually 1-2 short trips per month.

What You’ll Bring (Required): 

• Extensive enterprise sales experience in data protection, cloud security, networks, and AI.
  
• Proven ability to quickly develop trust and credibility with both technical and business stakeholders.
  
• Strong technical leadership foundation in enterprise data protection, cloud security, networks, and AI.
  
• Hands-on experience with AWS, Azure, or GCP (multi-cloud exposure strongly valued).
  
• Deep working knowledge of data privacy/security and compliance programs, especially GDPR, HIPAA, and PCI-DSS, plus data governance and access controls.
  
• Ability to build and run compelling demos and POCs while earning trust as a customer-facing technical lead.
  
• Practical technical fluency with areas such as Linux, Kubernetes/containerized environments, and modern cloud/data architectures.
  
• Strong expertise with DSPM, DLP, data discovery approaches (e.g., patterns/keywords/dictionaries/regex/exact matching) and with common cloud/data systems (e.g., object storage and enterprise databases/warehouses).
  

Preferred (strong differentiators): 

• Experience applying or discussing GenAI security in real enterprise contexts, including RAG (Retrieval-Augmented Generation) concepts and vector databases / indexing approaches.
  Exposure to CASB / SASE / DLP technologies and how customers operationalize them.
  Relevant certifications (CISSP, CISM, AWS/Azure/GCP).
  

#LI-JC3

What We Need

We’re looking for a Senior AI Engineer to design and build production-grade agent and RAG systems that power intelligent, reliable automation across our platform. This role combines hands-on engineering with system-level thinking—owning everything from architecture and evaluation to scalability, observability, and reliability in production. The ideal candidate thrives in ambiguity, moves quickly from prototype to production, and brings a strong focus on quality, safety, and real-world impact.

What You'll Do

Agent Platform & Architecture

• Design and build core agent platform capabilities, including orchestration patterns (e.g., ReAct, Plan-and-Execute), tool execution layers, memory/context management, and guardrails
• Develop reusable agent skills and a standardized tool ecosystem aligned with platform conventions
• Implement enterprise-grade controls for agent execution, including human-in-the-loop workflows, permissioning, and policy enforcement

Retrieval & AI Systems

• Design and implement RAG services, including hybrid retrieval, reranking, embeddings, and citation behavior
• Define evaluation frameworks and quality metrics to ensure grounded, reliable outputs

Production Engineering & Reliability

• Build automated evaluation and regression pipelines to maintain quality at scale
• Establish observability (tracing, metrics, alerting) and optimize systems for latency, throughput, and cost
• Define best practices and incident response processes to ensure production readiness

Applied Research & Technical Strategy

• Prototype and productionize emerging approaches (e.g., GraphRAG, knowledge graphs, MCP integrations)
• Evaluate AI frameworks and infrastructure (e.g., LangChain, LangGraph, AutoGen, LlamaIndex) and guide platform decisions

Technical Execution

• Diagnose and resolve complex AI system issues (retrieval quality, hallucinations, prompt regressions, agent failures)
• Lead system design and drive technical decisions through hands-on prototyping and benchmarking

What You Bring

• BS in Computer Science, AI, Electrical Engineering, or related field (advanced degree preferred or equivalent experience)
• 5+ years of software engineering experience, including building and deploying production-grade LLM, agent, or RAG systems
• Proven track record of shipping and supporting AI-powered features in production
• Strong Python skills (API design, testing, error handling, environment management)
• Working proficiency in C# or C++
• Deep understanding of RAG system design and evaluation methodologies
• Experience building evaluation frameworks (test sets, metrics, regression pipelines)
• Understanding of LLM security risks (prompt injection, data leakage, agent misuse)
• Experience with graph databases, knowledge graphs, or GraphRAG preferred
• Experience designing human-in-the-loop systems and execution controls preferred
• Experience with agent frameworks (e.g., LangChain, LangGraph, AutoGen, LlamaIndex)
• You are willing and able to commute to our Toronto, ON office on a hybrid (once a week) schedule
• Manual Dexterity: Repetitive motion of wrists, hands and fingers for using a computer.
• Stationary Tasks: Sitting for extended periods, remaining in a stationary position.

What We Offer

Our comprehensive compensation package is vital in how we recognize our people for the impact they make on us reaching our goals as a company.

For this role, the estimated base is CAD $130,000 - CAD $165,000 + Bonus. The actual salary may vary based on a range of factors, including market and individual qualifications objectively assessed during the interview process.

The range listed above is a guideline and may be modified. People Experience offers a comprehensive benefits package in addition to cash compensation that includes but is not limited to RRSP and medical/dental coverage. Speak with your Recruiter for more details on our Total Rewards philosophy.

Required:

• 3+ in Windows desktop application development using Windows App SDK, WinUI (or similar), C#, XAML — and ideally additional experience with native Windows code (C++, Win32/WinRT/COM).
• Deep understanding of Windows application architecture, including interop between managed code (.NET) and native code.
• Proven track record of designing, building, and shipping production-quality desktop applications, with an emphasis on reliability, performance, scalability, and maintainability.
• Strong experience with accessibility APIs on Windows (e.g. Microsoft UI Automation or similar), and a dedication to building accessible and inclusive software.
• Excellent software engineering fundamentals: OOP, design patterns, data structures, algorithms, memory management, multi-threading or asynchronous programming (where relevant).
• Experience leading technical design, mentoring other engineers, conducting code reviews, and making architecture-level decisions.
• Strong communication skills; ability to articulate tradeoffs, collaborate with cross-functional teams, and drive consensus.
• A user-centric mindset: focus on building polished, intuitive, and accessible experiences for end users.

Preferred / Bonus:

• Experience with writing automated tests for UI — unit tests, integration tests, UI automation tests; familiarity with relevant testing frameworks.
• Experience with performance optimization for desktop apps (memory usage, startup time, rendering performance, high-DPI support, responsiveness under load).
• Experience with localization/globalization, right-to-left UI support, internationalization, accessibility for multiple regions.
• Familiarity with telemetry, analytics, crash reporting, logging, and error monitoring in desktop applications.
• Previous experience in shaping CI/CD workflows, release pipelines, and deployment strategies for desktop applications.
• Demonstrated ability to take ownership of feature areas or modules and drive them long-term, including maintenance, refactoring, and technical debt management.

What we offer

• A high-impact role: you will define architecture, shape the future of our Windows product, and directly influence what millions of users see and experience.
• A collaborative, flat-structure engineering culture — you are not just a coder, but a builder and a decision-maker.
• Opportunities to lead — mentor others, steer technical direction, and grow into broader technical leadership (e.g. Tech Lead, Architect).
• Flexibility, autonomy, and responsibility: you define how to solve problems, own features end-to-end, and contribute to long-term product vision.
• A purpose-driven mission: building software that’s reliable, accessible, and user-centered — making a real difference for people.                  

Think you’re a good fit for this job? 

Tell us more about yourself and why you're interested in the role when you apply.
And don’t forget to include links to your portfolio and LinkedIn.

Not looking but know someone who would make a great fit? 
Refer them! 

Speechify is committed to a diverse and inclusive workplace. 
Speechify does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status.

Required:

• 3+ in Windows desktop application development using Windows App SDK, WinUI (or similar), C#, XAML — and ideally additional experience with native Windows code (C++, Win32/WinRT/COM).
• Deep understanding of Windows application architecture, including interop between managed code (.NET) and native code.
• Proven track record of designing, building, and shipping production-quality desktop applications, with an emphasis on reliability, performance, scalability, and maintainability.
• Strong experience with accessibility APIs on Windows (e.g. Microsoft UI Automation or similar), and a dedication to building accessible and inclusive software.
• Excellent software engineering fundamentals: OOP, design patterns, data structures, algorithms, memory management, multi-threading or asynchronous programming (where relevant).
• Experience leading technical design, mentoring other engineers, conducting code reviews, and making architecture-level decisions.
• Strong communication skills; ability to articulate tradeoffs, collaborate with cross-functional teams, and drive consensus.
• A user-centric mindset: focus on building polished, intuitive, and accessible experiences for end users.

Preferred / Bonus:

• Experience with writing automated tests for UI — unit tests, integration tests, UI automation tests; familiarity with relevant testing frameworks.
• Experience with performance optimization for desktop apps (memory usage, startup time, rendering performance, high-DPI support, responsiveness under load).
• Experience with localization/globalization, right-to-left UI support, internationalization, accessibility for multiple regions.
• Familiarity with telemetry, analytics, crash reporting, logging, and error monitoring in desktop applications.
• Previous experience in shaping CI/CD workflows, release pipelines, and deployment strategies for desktop applications.
• Demonstrated ability to take ownership of feature areas or modules and drive them long-term, including maintenance, refactoring, and technical debt management.

What we offer

• A high-impact role: you will define architecture, shape the future of our Windows product, and directly influence what millions of users see and experience.
• A collaborative, flat-structure engineering culture — you are not just a coder, but a builder and a decision-maker.
• Opportunities to lead — mentor others, steer technical direction, and grow into broader technical leadership (e.g. Tech Lead, Architect).
• Flexibility, autonomy, and responsibility: you define how to solve problems, own features end-to-end, and contribute to long-term product vision.
• A purpose-driven mission: building software that’s reliable, accessible, and user-centered — making a real difference for people.                  

Think you’re a good fit for this job? 

Tell us more about yourself and why you're interested in the role when you apply.
And don’t forget to include links to your portfolio and LinkedIn.

Not looking but know someone who would make a great fit? 
Refer them! 

Speechify is committed to a diverse and inclusive workplace. 
Speechify does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status.

Required:

• 3+ in Windows desktop application development using Windows App SDK, WinUI (or similar), C#, XAML — and ideally additional experience with native Windows code (C++, Win32/WinRT/COM).
• Deep understanding of Windows application architecture, including interop between managed code (.NET) and native code.
• Proven track record of designing, building, and shipping production-quality desktop applications, with an emphasis on reliability, performance, scalability, and maintainability.
• Strong experience with accessibility APIs on Windows (e.g. Microsoft UI Automation or similar), and a dedication to building accessible and inclusive software.
• Excellent software engineering fundamentals: OOP, design patterns, data structures, algorithms, memory management, multi-threading or asynchronous programming (where relevant).
• Experience leading technical design, mentoring other engineers, conducting code reviews, and making architecture-level decisions.
• Strong communication skills; ability to articulate tradeoffs, collaborate with cross-functional teams, and drive consensus.
• A user-centric mindset: focus on building polished, intuitive, and accessible experiences for end users.

Preferred / Bonus:

• Experience with writing automated tests for UI — unit tests, integration tests, UI automation tests; familiarity with relevant testing frameworks.
• Experience with performance optimization for desktop apps (memory usage, startup time, rendering performance, high-DPI support, responsiveness under load).
• Experience with localization/globalization, right-to-left UI support, internationalization, accessibility for multiple regions.
• Familiarity with telemetry, analytics, crash reporting, logging, and error monitoring in desktop applications.
• Previous experience in shaping CI/CD workflows, release pipelines, and deployment strategies for desktop applications.
• Demonstrated ability to take ownership of feature areas or modules and drive them long-term, including maintenance, refactoring, and technical debt management.

What we offer

• A high-impact role: you will define architecture, shape the future of our Windows product, and directly influence what millions of users see and experience.
• A collaborative, flat-structure engineering culture — you are not just a coder, but a builder and a decision-maker.
• Opportunities to lead — mentor others, steer technical direction, and grow into broader technical leadership (e.g. Tech Lead, Architect).
• Flexibility, autonomy, and responsibility: you define how to solve problems, own features end-to-end, and contribute to long-term product vision.
• A purpose-driven mission: building software that’s reliable, accessible, and user-centered — making a real difference for people.                  

Think you’re a good fit for this job? 

Tell us more about yourself and why you're interested in the role when you apply.
And don’t forget to include links to your portfolio and LinkedIn.

Not looking but know someone who would make a great fit? 
Refer them! 

Speechify is committed to a diverse and inclusive workplace. 
Speechify does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status.

Required:

• 3+ in Windows desktop application development using Windows App SDK, WinUI (or similar), C#, XAML — and ideally additional experience with native Windows code (C++, Win32/WinRT/COM).
• Deep understanding of Windows application architecture, including interop between managed code (.NET) and native code.
• Proven track record of designing, building, and shipping production-quality desktop applications, with an emphasis on reliability, performance, scalability, and maintainability.
• Strong experience with accessibility APIs on Windows (e.g. Microsoft UI Automation or similar), and a dedication to building accessible and inclusive software.
• Excellent software engineering fundamentals: OOP, design patterns, data structures, algorithms, memory management, multi-threading or asynchronous programming (where relevant).
• Experience leading technical design, mentoring other engineers, conducting code reviews, and making architecture-level decisions.
• Strong communication skills; ability to articulate tradeoffs, collaborate with cross-functional teams, and drive consensus.
• A user-centric mindset: focus on building polished, intuitive, and accessible experiences for end users.

Preferred / Bonus:

• Experience with writing automated tests for UI — unit tests, integration tests, UI automation tests; familiarity with relevant testing frameworks.
• Experience with performance optimization for desktop apps (memory usage, startup time, rendering performance, high-DPI support, responsiveness under load).
• Experience with localization/globalization, right-to-left UI support, internationalization, accessibility for multiple regions.
• Familiarity with telemetry, analytics, crash reporting, logging, and error monitoring in desktop applications.
• Previous experience in shaping CI/CD workflows, release pipelines, and deployment strategies for desktop applications.
• Demonstrated ability to take ownership of feature areas or modules and drive them long-term, including maintenance, refactoring, and technical debt management.

What we offer

• A high-impact role: you will define architecture, shape the future of our Windows product, and directly influence what millions of users see and experience.
• A collaborative, flat-structure engineering culture — you are not just a coder, but a builder and a decision-maker.
• Opportunities to lead — mentor others, steer technical direction, and grow into broader technical leadership (e.g. Tech Lead, Architect).
• Flexibility, autonomy, and responsibility: you define how to solve problems, own features end-to-end, and contribute to long-term product vision.
• A purpose-driven mission: building software that’s reliable, accessible, and user-centered — making a real difference for people.                  

Think you’re a good fit for this job? 

Tell us more about yourself and why you're interested in the role when you apply.
And don’t forget to include links to your portfolio and LinkedIn.

Not looking but know someone who would make a great fit? 
Refer them! 

Speechify is committed to a diverse and inclusive workplace. 
Speechify does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status.

About the team + role

We are building an elite team, applying frontier technologies to the world’s biggest financial problems. We’re looking for bold thinkers. Sharp problem-solvers. Builders who are wired to make an impact. Robinhood isn’t a place for complacency, it’s where ambitious people do the best work of their careers. We’re a high-performing, fast-moving team with ethics at the center of everything we do. Expectations are high, and so are the rewards. 

The Threat Intelligence team reduces organizational risk by rapidly detecting, understanding, and disrupting adversary activity. We research criminal ecosystems targeting our brand, customers, and infrastructure, and work with partners to translate that intelligence into detections, controls, and customer protections. Our work enables Security, Engineering, Trust & Safety, and executive leaders to focus resources where risk is highest. We operate with a strong sense of ownership, clear communication, and a commitment to protecting customers so they can confidently participate in the financial system!

As a Staff Security Analyst, Threat Intelligence, you will operate at the forefront of advanced and evolving threats targeting Robinhood and our customers. You will actively hunt for emerging phishing, scam, impersonation, fraud, and infrastructure abuse campaigns while building scalable systems that turn intelligence into action. This role combines hands-on investigation, program design, mentorship, and stakeholder engagement. Your work will shape proactive controls, influence product and security decisions, and strengthen our overall threat defense strategy.

This role is based in our Toronto, Canada office(s), with in-person attendance expected at least 3 days per week. 

At Robinhood, we believe in the power of in-person work to accelerate progress, spark innovation, and strengthen community. Our office experience is intentional, energizing, and designed to fully support high-performing teams.

What you’ll do

• Proactively hunt and map criminal ecosystems targeting Robinhood and its customers, then translate intelligence into scalable systems and coordinated defenses that disrupt adversaries before they cause harm.
• Build and operationalize a comprehensive “Universe of Threats” by identifying, tracking, and prioritizing adversaries across phishing, scams, impersonation, fraud, and infrastructure abuse.
• Establish and mature a proactive threat intelligence lifecycle by developing industry partnerships, collaborating with trusted peers and federal authorities, and cultivating online personas to generate early warning capabilities that protect Robinhood’s business operations.
• Investigate attacker infrastructure across domains, DNS, certificate transparency logs, cloud providers, and telecom platforms, and convert findings into concrete detections, controls, and customer protections.
• Coordinate threat actor infrastructure takedowns with hosting providers, domain registrars, cloud platforms, and other infrastructure partners to disrupt adversary operations at scale.
• Design and automate intelligence workflows using OSINT tooling, enrichment pipelines, data analysis tools, and case management systems to scale analysis and reporting.
• Partner directly with Detection & Response, Automation, Customer Trust & Safety (Fraud and Financial Crimes), Security Engineering, Corporate Security, Risk, and executive leaders to prioritize threats based on measurable business risk.

What you bring

• 8–12+ years of total experience, including 3–5+ years operating at a senior or staff-level scope in threat intelligence, brand protection, or cyber investigations.
• Hands-on experience tracking criminal ecosystems tied to phishing, scams, impersonation, fraud, and infrastructure abuse, and the ability to move from isolated indicators to campaign- and actor-level analysis.
• Deep familiarity with domain registration patterns, DNS and certificate transparency analysis, cloud and hosting abuse across providers (e.g., AWS, GCP, Azure, VPS), and attacker monetization methods.
• Experience using OSINT tooling, SQL, Python, notebooks, SIEM or SOAR platforms, OpenCTI, and case management systems to analyze data and automate workflows.
• Ability to translate complex technical threats into clear business risk for technical teams and executive audiences through strong written and verbal communication.
• Experience mentoring others or leading initiatives across teams, with a high level of accountability and sound risk judgment in ambiguous situations.

Nice to have

• Experience with crypto investigations or on-chain analysis.
• Background in highly regulated industries such as fintech, financial services, payments, crypto, healthcare, or government.

About the team + role

We are building an elite team, applying frontier technologies to the world’s biggest financial problems. We’re looking for bold thinkers. Sharp problem-solvers. Builders who are wired to make an impact. Robinhood isn’t a place for complacency, it’s where ambitious people do the best work of their careers. We’re a high-performing, fast-moving team with ethics at the center of everything we do. Expectations are high, and so are the rewards. 

The Red Team team’s mission is to proactively identify and simulate real-world threats against Robinhood’s platforms, properties, and people. Through red teaming and adversarial simulations, the team evaluates security controls, uncovers vulnerabilities, and helps continuously strengthen Robinhood’s overall security posture in close partnership with Detection & Response, Physical Security, and Engineering.

As a Staff Offensive Security Engineer, you will take a hands-on role in designing and executing stealthy adversarial simulations to validate assumptions and uncover gaps in detection and response. You’ll leverage threat modeling, penetration testing, and research-driven techniques to emulate sophisticated attackers, while collaborating cross-functionally to improve defenses and shape more secure systems.

This role is based in our Toronto, Canada office(s), with in-person attendance expected at least 3 days per week. 

At Robinhood, we believe in the power of in-person work to accelerate progress, spark innovation, and strengthen community. Our office experience is intentional, energizing, and designed to fully support high-performing teams.

What you’ll do

• Plan and execute red team operations, adversarial simulations, and penetration tests across applications, infrastructure, networks, offices, and internal processes.
• Perform threat modeling for new and existing services, clearly articulating security risks and tradeoffs to engineering and risk stakeholders.
• Conduct vulnerability research, exploit development, and testing using both custom tooling and public proof-of-concept techniques.
• Partner with detection and response teams to simulate realistic attack scenarios and evaluate monitoring and incident response readiness.
• Write and maintain tooling to automate and scale offensive security assessments.
• Serve as a subject matter expert by documenting findings, recommending remediation strategies, and supporting teams through fixes.
• Mentor teammates and contribute to shared knowledge through internal documentation, presentations, and external talks or blog posts.

What you bring

• 8+ years of hands-on experience in red teaming, offensive security, or penetration testing.
• Demonstrated experience mentoring or guiding other security engineers.
• Strong understanding of threat modeling methodologies and the MITRE ATT&CK framework.
• Experience testing modern environments, including cloud platforms (AWS, GCP), containerized systems (Docker, Kubernetes), CI pipelines, and identity systems.
• Working knowledge of defensive security tools such as IDS/IPS, EDR, packet capture, and network monitoring, including common evasion techniques.
• Proficiency in Python, Go, or JavaScript for exploit development, tooling, or automation.
• Clear written and verbal communication skills, with the ability to explain technical findings to both engineers and senior leaders.
• Experience collaborating with distributed teams and documenting work through tools such as Slack, Jira, GitHub, and email.

Bonus points:

• Experience working in financial technology or regulated environments.
• Prior experience serving as a technical lead on security initiatives.

What we offer

• Challenging, high-impact work to grow your career
• Performance driven compensation with multipliers for outsized impact, bonus programs, and equity ownership
• Top tier benefits to fuel your work, including supplemental health insurance, ancillary insurance, and mental health support programs
• Lifestyle wallet - a highly flexible employer-paid benefits spending account expenses beyond traditional benefits such as wellness, childcare, learning, and more.
• Time off to recharge including company holidays, paid time off, sick time, paid volunteer time off, parental leave, and more!
• Exceptional office experience with catered meals, events, and comfortable workspaces. 
• Monthly commuter stipend to help offset in-office commuting costs

Our team is committed to providing an inclusive and welcoming interview experience for all candidates. If you require a specific accommodation during the application or interview process due to a physical or mental condition, please complete this Applicant Accommodation Form to notify our team. The form should only be completed if you need a specific accommodation.

AI Usage Disclosure: Robinhood uses artificial intelligence (AI) tools to support parts of our recruiting process. These tools enhance the efficiency and consistency of our hiring process; however, all hiring decisions are made by our hiring teams.

Vacancy Notice: This job posting represents an existing vacancy that we are actively seeking to fill.

About the team + role

We are building an elite team, applying frontier technologies to the world’s biggest financial problems. We’re looking for bold thinkers. Sharp problem-solvers. Builders who are wired to make an impact. Robinhood isn’t a place for complacency, it’s where ambitious people do the best work of their careers. We’re a high-performing, fast-moving team with ethics at the center of everything we do. Expectations are high, and so are the rewards. 

The Red Team team’s mission is to proactively identify and simulate real-world threats against Robinhood’s platforms, properties, and people. Through red teaming and adversarial simulations, the team evaluates security controls, uncovers vulnerabilities, and helps continuously strengthen Robinhood’s overall security posture in close partnership with Detection & Response, Physical Security, and Engineering.

As a Staff Offensive Security Engineer, you will take a hands-on role in designing and executing stealthy adversarial simulations to validate assumptions and uncover gaps in detection and response. You’ll leverage threat modeling, penetration testing, and research-driven techniques to emulate sophisticated attackers, while collaborating cross-functionally to improve defenses and shape more secure systems.

This role is based in our Toronto, Canada office(s), with in-person attendance expected at least 3 days per week. 

At Robinhood, we believe in the power of in-person work to accelerate progress, spark innovation, and strengthen community. Our office experience is intentional, energizing, and designed to fully support high-performing teams.

What you’ll do

• Plan and execute red team operations, adversarial simulations, and penetration tests across applications, infrastructure, networks, offices, and internal processes.
• Perform threat modeling for new and existing services, clearly articulating security risks and tradeoffs to engineering and risk stakeholders.
• Conduct vulnerability research, exploit development, and testing using both custom tooling and public proof-of-concept techniques.
• Partner with detection and response teams to simulate realistic attack scenarios and evaluate monitoring and incident response readiness.
• Write and maintain tooling to automate and scale offensive security assessments.
• Serve as a subject matter expert by documenting findings, recommending remediation strategies, and supporting teams through fixes.
• Mentor teammates and contribute to shared knowledge through internal documentation, presentations, and external talks or blog posts.

What you bring

• 8+ years of hands-on experience in red teaming, offensive security, or penetration testing.
• Demonstrated experience mentoring or guiding other security engineers.
• Strong understanding of threat modeling methodologies and the MITRE ATT&CK framework.
• Experience testing modern environments, including cloud platforms (AWS, GCP), containerized systems (Docker, Kubernetes), CI pipelines, and identity systems.
• Working knowledge of defensive security tools such as IDS/IPS, EDR, packet capture, and network monitoring, including common evasion techniques.
• Proficiency in Python, Go, or JavaScript for exploit development, tooling, or automation.
• Clear written and verbal communication skills, with the ability to explain technical findings to both engineers and senior leaders.
• Experience collaborating with distributed teams and documenting work through tools such as Slack, Jira, GitHub, and email.

Bonus points:

• Experience working in financial technology or regulated environments.
• Prior experience serving as a technical lead on security initiatives.

What we offer

• Challenging, high-impact work to grow your career
• Performance driven compensation with multipliers for outsized impact, bonus programs, and equity ownership
• Top tier benefits to fuel your work, including supplemental health insurance, ancillary insurance, and mental health support programs
• Lifestyle wallet - a highly flexible employer-paid benefits spending account expenses beyond traditional benefits such as wellness, childcare, learning, and more.
• Time off to recharge including company holidays, paid time off, sick time, paid volunteer time off, parental leave, and more!
• Exceptional office experience with catered meals, events, and comfortable workspaces. 
• Monthly commuter stipend to help offset in-office commuting costs

Our team is committed to providing an inclusive and welcoming interview experience for all candidates. If you require a specific accommodation during the application or interview process due to a physical or mental condition, please complete this Applicant Accommodation Form to notify our team. The form should only be completed if you need a specific accommodation.

AI Usage Disclosure: Robinhood uses artificial intelligence (AI) tools to support parts of our recruiting process. These tools enhance the efficiency and consistency of our hiring process; however, all hiring decisions are made by our hiring teams.

Vacancy Notice: This job posting represents an existing vacancy that we are actively seeking to fill.

About the team + role

We are building an elite team, applying frontier technologies to the world’s biggest financial problems. We’re looking for bold thinkers. Sharp problem-solvers. Builders who are wired to make an impact. Robinhood isn’t a place for complacency, it’s where ambitious people do the best work of their careers. We’re a high-performing, fast-moving team with ethics at the center of everything we do. Expectations are high, and so are the rewards.

The Cloud Security team is focused on protecting Robinhood’s AWS cloud and providing engineers with foundational security capabilities. It is a major contributor to the company’s least privilege objective to manage network traffic and reduce the level of access that employees have or could obtain through escalation.

A Senior Security Engineer on the Cloud Security team is a well-rounded technologist and a deep subject matter expert in cloud security and building security controls on Amazon Web Services (AWS). The ideal candidate for this role will embody and exemplify our Safety First value.

This role is based in our Bellevue, WA offices, with in-person attendance expected at least 3 days per week.

At Robinhood, we believe in the power of in-person work to accelerate progress, spark innovation, and strengthen community. Our office experience is intentional, energizing, and designed to fully support high-performing teams.

What you’ll do

• As a Senior Security Engineer you will be part of a team which owns the security posture for cloud infrastructure on which all Robinhood products are built
• You will build and operate solutions that protect foundational infrastructure and make it easier for Robinhood developers to protect their applications
• Protect Robinhood’s AWS cloud environment and provide engineers with foundational security capabilities
• Build, configure and set up systems with a safety first approach

What you bring

• Securing enterprise applications on AWS by building software, services, and automation that provide safe defaults, paved roads, and intuitive capabilities to other developers
• Proficiency with Golang (preferred) or Python and Infrastructure-as-Code (IaC) using Terraform
• Strong command of industry best practices like the AWS Well-Architected framework and CIS Benchmarks and have expert level knowledge of AWS security services like Identity & Access Management (IAM), Service Control Policies (SCPs), AWS WAF, and AWS Network Firewall

What we offer

• Challenging, high-impact work to grow your career
• Performance driven compensation with multipliers for outsized impact, bonus programs, equity ownership, and 401(k) matching
• Best in class benefits to fuel your work, including 100% paid health insurance for employees with 90% coverage for dependents
• Lifestyle wallet - a highly flexible benefits spending account for wellness, learning, and more
• Employer-paid life & disability insurance, fertility benefits, and mental health benefits
• Time off to recharge including company holidays, paid time off, sick time, parental leave, and more!
• Exceptional office experience with catered meals, events, and comfortable workspaces.

An overview of this role

As a Senior Corporate Security Engineer, you'll help secure the systems GitLab team members rely on every day across a fully remote environment. This role sits within Corporate Security Engineering and focuses on building secure-by-default controls for endpoints and the SaaS platforms that support them, with a strong emphasis on macOS. You'll own meaningful technical decisions around endpoint hardening, automation, and detection, and you'll help turn security requirements into scalable engineering systems that are measurable, auditable, and designed to reduce friction for end users.

This is a strong fit if you're motivated by solving security problems with code. You will work across endpoint management, identity, and security operations to improve how GitLab manages macOS, iOS, Windows, and Linux devices through Infrastructure-as-Code, Terraform, and GitOps workflows. In your first year, you'll be expected to strengthen endpoint security architecture, expand automation, and improve the reliability and auditability of how controls are deployed and maintained.

What you’ll do

• Lead the security architecture of GitLab's endpoint fleet and related infrastructure, with a primary focus on macOS.
• Design and support automation for secure endpoint deployment, configuration, and lifecycle management using code-based workflows.
• Manage endpoint and SaaS security configuration through Terraform, version control, merge requests, continuous integration pipelines, and automated rollouts.
• Define and enforce security baselines across macOS, iOS, Windows, and Linux endpoints.
• Develop patching and software distribution approaches that align with security, compliance, and operational requirements.
• Partner with Information Technology, Security Operations, and Detection and Response teams to improve endpoint telemetry, detections, and response models.
• Drive process improvements that reduce manual work and lower risk by favoring automation, policy-driven controls, and auditable change management.
• Mentor engineers across Corporate Security and Information Technology, and serve as a senior escalation point for complex endpoint security issues.

What you’ll bring

• Experience designing and delivering endpoint, systems, or corporate security solutions in environments that require scalable, durable controls.
• Deep knowledge of endpoint management platforms such as Jamf Pro or FleetDM, especially for architecting and securing macOS environments.
• Strong hands-on ability with Terraform and Infrastructure-as-Code practices, including module design, state management, and pipeline-based deployment.
• Experience working with GitOps workflows where changes are managed through Git repositories, merge requests, code review, and automated pipelines.
•  Strong proficiency in scripting or programming for automation and security tooling, such as bash, Python, PowerShell, or Go.
• Familiarity with cloud identity providers and directories, including platforms such as Okta, Google Workspace, LDAP.
• Ability to communicate clearly, collaborate across distributed teams, and work independently in an all-remote environment.
• Openness to bringing transferable experience from adjacent security, systems, or platform engineering backgrounds, along with a practical and security-focused approach to problem solving.

About the team

The Corporate Security Engineering team secures the internal environment GitLab team members use every day, including endpoints, identity systems, SaaS applications, and platforms that store sensitive internal data. It's a small, high-leverage team that treats security work as engineering work: building with code, operating through Git, and using reviewable, testable, and auditable workflows by default. The team partners closely with Information Technology, Security Operations, and Engineering across regions, collaborating asynchronously to build controls that scale across GitLab's all-remote workforce while reducing friction for end users.

Job Summary

This role is responsible for leading the design and evolution of enterprise-grade cloud infrastructure that underpins a large-scale data platform on AWS. As a Staff Engineer, you will define architectural standards, ensure alignment with security and compliance requirements, and enable multiple teams to build and operate reliable, scalable data systems.

You will work across organizational boundaries to influence platform direction, drive adoption of best practices, and ensure the infrastructure supports high-volume data ingestion, processing, and analytics workloads. The role requires both strategic oversight and hands-on technical leadership in building resilient, cost-efficient, and observable systems in a complex enterprise environment.

Roles & Responsibilities

• This role is responsible for leading the design and evolution of enterprise-grade cloud infrastructure that underpins a large-scale data platform on AWS.
• As a Staff Engineer, you will define architectural standards.
• Ensure alignment with security and compliance requirements.
• Enable multiple teams to build and operate reliable, scalable data systems.
• You will work across organizational boundaries to influence platform direction, drive adoption of best practices, and ensure the infrastructure supports high-volume data ingestion, processing, and analytics workloads.
• The role requires both strategic oversight and hands-on technical leadership in building resilient, cost-efficient, and observable systems in a complex enterprise environment.

Required Qualifications

• Deep expertise in AWS services (e.g., S3, EKS/ECS, Lambda, RDS, Redshift, IAM, VPC) and enterprise cloud architecture
• Strong experience designing and operating large-scale data platforms (data lakes, lakehouses, batch and streaming systems)
• Advanced proficiency with Infrastructure as Code (Terraform, CloudFormation) and automation practices
• Solid understanding of distributed systems, scalability, and performance optimization
• Experience with containerization and orchestration (Kubernetes/EKS) in production environments
• Experience designing and operating API gateway, ingress, and service-to-service communication patterns in AWS environments, including authentication, authorization, throttling, routing, observability, and security controls.

Preferred Qualifications

• Strong knowledge of cloud security, identity (IAM), networking, and compliance frameworks (e.g., ISO, SOC2)
• Experience implementing observability (monitoring, logging, tracing) and reliability engineering practices
• Experience with Kong API Gateway or similar API gateway platforms is a plus
• Proficiency in at least one programming language (e.g., Python, Go, Java)
• Experience with CI/CD pipelines and platform engineering approaches for self-service infrastructure
• Ability to influence architecture across teams and operate effectively in a large, matrixed enterprise environment
• Strong communication skills, with the ability to engage both technical and non-technical stakeholders
• Mentorship and technical leadership experience, guiding engineers and setting engineering standards

The Role and Its Impact 

Our analog connectivity product portfolio includes sophisticated mixed-signal components that form the critical signal conditioning path in both optical modules and copper interconnects: transimpedance amplifiers, transmit drivers, continuous-time linear equalizers, and integrated analog subsystems. The firmware you develop will directly control the adaptive behavior, calibration sequences, and real-time performance optimization of these analog circuits deployed in data centers worldwide.  

As a Principal Engineer in our Signal Connectivity Engineering group, you'll shape firmware architectures that directly impact the performance and reliability of connectivity solutions powering AI infrastructure globally. You'll take end-to-end ownership of the software lifecycle, from pre-silicon planning through production deployment and field support. You will bridge the gap between sophisticated analog circuit design and the software intelligence required to make these circuits adaptive and robust. Working at the intersection of embedded systems and analog control, you'll collaborate closely with mixed-signal designers, systems architects, silicon validation engineers, and customer teams while building and leading a technical team in a high-growth company. 

We're a startup, and this role reflects that reality. You'll have responsibilities spanning firmware architecture, team building, CI/CD infrastructure, customer engagement, and lab automation. We're looking for someone who thrives wearing multiple hats and is energized by jumping into whatever needs doing. We recognize this breadth and reward it accordingly. 

This position offers an opportunity to build and lead a team from the ground up. You'll help hire two engineers and will play an active role in recruiting as the team grows. Depending on your preferences, you can either manage these engineers directly from day one, or mentor them while remaining in a technical lead capacity, either path is fully supported. 

Level is negotiable based on experience and qualifications. 

Location & Travel 

This is a remote position, but candidates must be located and authorized to work in the Ottawa area. Occasional travel to our San Jose headquarters will be required, approximately twice per year for chip bring-ups and project coordination. 

Core Responsibilities 

Software Ownership & Architecture 

• Own the complete firmware stack for analog connectivity products, from low-level hardware abstraction through customer-facing APIs 
• Design and implement embedded firmware that controls complex analog subsystems including adaptive equalization, gain control, PLL/CDR feedback loops, and thermal management 
• Architect calibration algorithms, state machines, and control flow for managing analog tuning parameters across process, voltage, and temperature variation 
• Establish software quality gates and validation criteria at each development phase 

Technical Leadership & Team Building 

• Help recruit and hire two engineers to join your team, with ongoing involvement in recruiting as the team expands 
• Lead your team, whether through direct management or technical mentorship, through design, implementation, code review, and debugging activities 
• Lead architecture discussions and technical tradeoff decisions; balance performance, code size, maintainability, and time-to-market 
• Serve as the go-to technical expert for mixed-signal firmware and analog control loop behavior 
• Drive difficult debug sessions in the lab and through remote customer support, coordinating across silicon design, systems, and applications teams 

Cross-Functional Collaboration 

• Partner with analog circuit designers to understand hardware behavior, tuning requirements, and failure modes 
• Collaborate with product applications to translate customer requirements into firmware features and APIs 
• Work alongside silicon and system validation teams to develop test plans, automate characterization flows, and verify firmware behavior across corner cases 
• Coordinate with field applications engineers to support customer integration and resolve deployment issues 
• Provide regular project updates on progress, risks, dependencies, and technical challenges 

What You Bring 

Required Qualifications: 

• BS/MS in Computer Science, Electrical Engineering, Computer Engineering, or related field 
• 10+ years of embedded C/C++ firmware development in resource-constrained environments 
• Proven track record as a Technical Lead or Team Lead on embedded projects from architecture through production 
• Deep understanding of microcontroller architecture, memory-mapped peripherals, interrupt handling, and bare-metal firmware design 
• Solid experience with analog control loops: PID controllers, feedback systems, adaptive algorithms, and tuning methodologies 
• Strong proficiency with Linux development tools: gcc/clang, make, bash scripting, gdb, and git 
• Excellent verbal and written communication skills; ability to explain complex technical concepts clearly 
• Demonstrated problem-solving ability and systematic debugging approach on real hardware 
• Comfort with ambiguity and a willingness to take on whatever challenges arise in a fast-moving startup environment 

Highly Valued Skills: 

• Experience with Python for test automation, data analysis, or general scripting 
• Hands-on experience building and maintaining Jenkins CI/CD pipelines and automated test infrastructure 
• Familiarity with mixed-signal systems: ADC/DAC interfaces, sensor readout, analog signal conditioning, calibration techniques 
• Knowledge of transimpedance amplifiers, transmit drivers, equalizers (CTLE/DFE), CDR/PLL circuits, or related analog signal path components 
• Background in optical module firmware, pluggable optics/AEC standards (MSA/CMIS), retimer or gearbox firmware/API, or high-speed copper connectivity 
• Experience with lab equipment: oscilloscopes, power supplies, logic analyzers, Viavi/Lecroy/Exfo/Keysight/Tektronix/etc. 
• Exposure to SERDES, Ethernet PHYs, layer 1 devices, or PCIe physical layer implementations 
• Understanding of signal integrity concepts: equalization, channel loss, jitter, eye diagrams, and link margin 
• Familiarity with FPGA emulation, pre-silicon validation, or hardware simulation environments 
• Experience with RTOS, device drivers, coroutines 
• Prior people management, mentorship, or recruiting experience 

Compensation 

Salary range is CAD $184,500 to $205,000 depending on experience, level, and business need. This role will include a discretionary bonus, extremely competitive equity package, comprehensive health/dental/vision coverage, professional development opportunities, and a culture that values technical excellence, collaboration, and innovation. 

About Behavox

Behavox is a cloud-native AI company providing an integrated controls platform for global banks, asset managers, hedge funds, private equity firms, insurance businesses, and commodity firms. The platform unifies communications and trade surveillance, compliant archiving, policy management as well as front-office analytics on a single, AI-native technology stack, delivered as a globally scalable SaaS-based cloud service.

At Behavox, our engineering culture is built around speed, experimentation, and technical excellence, following agile principles and rapid iteration. We constantly test and adopt the latest cloud technologies and AI tooling, optimising for fast feedback loops and execution. We look for people who can move fast, challenge conventional wisdom, and who want to work at the frontier of modern AI, SaaS platforms, and distributed systems.

Behavox is a high-performance organisation with a strong bias toward delivery, ownership, and responsibility. We commit, and we execute. We are building systems that are complex, mission-critical, and global in scale; systems that many consider too large or too difficult. To do that, we seek the smartest, most technically capable engineers and technologists who take end-to-end responsibility and want to win by building what others cannot.

Founded in 2014 and backed by SoftBank Vision Fund, Behavox is headquartered in London, with offices worldwide, including New York City, Montreal, Seattle, Singapore, and Tokyo.

About the Role

The Software Engineer (Java) operates at a senior engineer level, driving technical direction across core product domains. The role combines deep hands-on Java engineering with architectural ownership — from high-level system design and technology selection to leading delivery of critical, cross-cutting platform capabilities.

At this level, engineering excellence extends beyond implementation: the engineer determines the right approach to complex problems, communicates technical decisions across functions, participates in hiring, and is accountable for the long-term health of the systems they own. This level demands sound judgment on technology and business trade-offs and the ability to act as a technical lead. A defining expectation is mastery of AI-assisted engineering — leveraging agentic AI tools as force multipliers while retaining full ownership of architecture, quality, and technical outcomes.

What You'll Bring

• Expert Java engineering: Deep understanding of Java internals — GC tuning, Collections Framework, advanced concurrency (java.util.concurrent, multithreading), NIO/NIO2, performance profiling, and heap-dump analysis. Mastery of Spring Framework (IoC/DI, bean lifecycle, Spring Boot). SOLID principles, Clean Code practices, and GoF design patterns
• Software architecture and design patterns: Expertise in monolith and microservices architectural styles — including migration patterns and domain-driven decomposition. Inter-process communication design (REST, gRPC, messaging), transaction management in distributed systems (Sagas, 2PC), CQRS, Event Sourcing, and external API design focused on scalability, security, and documentation
• Cloud-native platforms and infrastructure: Experience designing high-availability and high-load systems on GCP (preferred), AWS, and Azure. Cloud security best practices: IAM, VPC, data encryption, JWT/JWS/JWE. Infrastructure as Code (Terraform or equivalent) and Twelve-Factor App methodology
• Observability, reliability and deployment: Implementing full observability stacks: structured logging, distributed tracing, metrics, and alerting. SLI/SLO/SLA frameworks. Deployment strategies: Rolling Updates, Blue/Green Deployments, Canary Releases
• AI-assisted engineering: Practitioner-level command of agentic AI tools applied to software engineering — encompassing prompt engineering techniques, AI context management and its limitations, sub-agents, skills and plugins, multi-agent orchestration, and team-of-agents architectures. Experience with Claude Code (Anthropic), Codex (OpenAI), or equivalent is mandatory

What You'll Do

• Architecture and technology leadership: Lead high-level design for complex, cross-service features. Evaluate and select appropriate technologies, frameworks, and architectural patterns before delegating implementation. Produce and maintain architecture documentation: design docs, ADRs, tech specs, and wiki pages
• Advanced Java feature implementation: Own and implement critical product components — including prototyping, architecture validation, and production-grade code. Ensure correctness, performance, and long-term maintainability with comprehensive test coverage (unit, integration, contract, component)
• Technical roadmap contribution: Drive the engineering agenda for assigned product areas. Proactively identify gaps in requirements, architectural limitations, and technical risks. Contribute to product roadmap planning and delivery estimation. Participate in hiring processes
• Cross-functional technical communication: Drive technical communication across engineering, product, DevOps, and ML teams. Communicate technical decisions clearly to non-technical stakeholders. Produce design documents and participate in tech talks and knowledge-sharing sessions
• AI-augmented engineering: Direct agentic AI tools (Claude Code, Codex, or equivalent) across the full engineering workflow — code generation, testing, refactoring, debugging, and documentation. Demonstrated ability to apply advanced prompt engineering, manage AI context limitations, compose multi-agent orchestration workflows, and critically evaluate AI-generated outputs for correctness, security, and quality. Ability to establish guardrails and improve agent configurations to raise the quality bar. AI proficiency amplifies — it does not replace — deep engineering judgment and technical accountability

What We Offer

• The opportunity to work on a global, mission-critical AI platform alongside the best engineers and technologists across multiple geographies
• A role with real ownership and impact, building complex systems at scale in an environment that values speed, experimentation, and technical excellence
• A highly attractive benefits package, including competitive cash compensation, an equity award aligned with long-term value creation, and comprehensive health insurance for employees and their families
• Modern, comfortable offices in Montreal/ Toronto downtown, with an expectation of working from the office 1 day per week, reflecting our belief in strong in-person collaboration, while remaining flexible to accommodate remote work for candidates who live in other Canadian cities
• A generous time-off policy of 30 days annually, plus public holidays and sick leave, recognising the importance of sustained high performance

About Our Process

Our selection process is designed to rigorously assess a candidate’s depth of technical knowledge, problem-solving ability, and alignment with Behavox’s mission and core values.

As part of the process, candidates will first participate in a series of interviews focused on evaluating their technical expertise and engineering judgment. Candidates who successfully progress through these interviews will then be invited to complete a live technical exercise. The purpose of this live technical assessment is to validate the candidate’s stated technical competencies and assess their ability to solve complex problems with speed, accuracy, and sound engineering judgment. Note that whenever possible, we aim to conduct interviews in person at our offices.

We recognise and respect the time candidates invest in this process. In return, Behavox commits significant time and resources to ensure that those who join us have the capability, judgment, and alignment required to operate at the speed and level of complexity our work demands. We value efficiency and clarity on both sides; if at any point we determine that a candidate is not a fit, we reserve the right to immediately conclude the interview or the technical assessment.

Please note the following:

• A core objective of the process is to objectively assess individual knowledge and competencies. The use of AI tools or external assistance during live interviews or technical exercises is strictly prohibited (unless explicitly instructed otherwise) and will result in immediate disqualification.
• Interviews and technical sessions may be recorded for internal review to support fairness, consistency, and collaborative decision-making within the hiring team.

About Behavox

Behavox is a cloud-native AI company providing an integrated controls platform for global banks, asset managers, hedge funds, private equity firms, insurance businesses, and commodity firms. The platform unifies communications and trade surveillance, compliant archiving, policy management as well as front-office analytics on a single, AI-native technology stack, delivered as a globally scalable SaaS-based cloud service.

At Behavox, our engineering culture is built around speed, experimentation, and technical excellence, following agile principles and rapid iteration. We constantly test and adopt the latest cloud technologies and AI tooling, optimising for fast feedback loops and execution. We look for people who can move fast, challenge conventional wisdom, and who want to work at the frontier of modern AI, SaaS platforms, and distributed systems.

Behavox is a high-performance organisation with a strong bias toward delivery, ownership, and responsibility. We commit, and we execute. We are building systems that are complex, mission-critical, and global in scale; systems that many consider too large or too difficult. To do that, we seek the smartest, most technically capable engineers and technologists who take end-to-end responsibility and want to win by building what others cannot.

Founded in 2014 and backed by SoftBank Vision Fund, Behavox is headquartered in London, with offices worldwide, including New York City, Montreal, Seattle, Singapore, and Tokyo.

About the Role

The Software Engineer (Java) operates at a senior engineer level, driving technical direction across core product domains. The role combines deep hands-on Java engineering with architectural ownership — from high-level system design and technology selection to leading delivery of critical, cross-cutting platform capabilities.

At this level, engineering excellence extends beyond implementation: the engineer determines the right approach to complex problems, communicates technical decisions across functions, participates in hiring, and is accountable for the long-term health of the systems they own. This level demands sound judgment on technology and business trade-offs and the ability to act as a technical lead. A defining expectation is mastery of AI-assisted engineering — leveraging agentic AI tools as force multipliers while retaining full ownership of architecture, quality, and technical outcomes.

What You'll Bring

• Expert Java engineering: Deep understanding of Java internals — GC tuning, Collections Framework, advanced concurrency (java.util.concurrent, multithreading), NIO/NIO2, performance profiling, and heap-dump analysis. Mastery of Spring Framework (IoC/DI, bean lifecycle, Spring Boot). SOLID principles, Clean Code practices, and GoF design patterns
• Software architecture and design patterns: Expertise in monolith and microservices architectural styles — including migration patterns and domain-driven decomposition. Inter-process communication design (REST, gRPC, messaging), transaction management in distributed systems (Sagas, 2PC), CQRS, Event Sourcing, and external API design focused on scalability, security, and documentation
• Cloud-native platforms and infrastructure: Experience designing high-availability and high-load systems on GCP (preferred), AWS, and Azure. Cloud security best practices: IAM, VPC, data encryption, JWT/JWS/JWE. Infrastructure as Code (Terraform or equivalent) and Twelve-Factor App methodology
• Observability, reliability and deployment: Implementing full observability stacks: structured logging, distributed tracing, metrics, and alerting. SLI/SLO/SLA frameworks. Deployment strategies: Rolling Updates, Blue/Green Deployments, Canary Releases
• AI-assisted engineering: Practitioner-level command of agentic AI tools applied to software engineering — encompassing prompt engineering techniques, AI context management and its limitations, sub-agents, skills and plugins, multi-agent orchestration, and team-of-agents architectures. Experience with Claude Code (Anthropic), Codex (OpenAI), or equivalent is mandatory

What You'll Do

• Architecture and technology leadership: Lead high-level design for complex, cross-service features. Evaluate and select appropriate technologies, frameworks, and architectural patterns before delegating implementation. Produce and maintain architecture documentation: design docs, ADRs, tech specs, and wiki pages
• Advanced Java feature implementation: Own and implement critical product components — including prototyping, architecture validation, and production-grade code. Ensure correctness, performance, and long-term maintainability with comprehensive test coverage (unit, integration, contract, component)
• Technical roadmap contribution: Drive the engineering agenda for assigned product areas. Proactively identify gaps in requirements, architectural limitations, and technical risks. Contribute to product roadmap planning and delivery estimation. Participate in hiring processes
• Cross-functional technical communication: Drive technical communication across engineering, product, DevOps, and ML teams. Communicate technical decisions clearly to non-technical stakeholders. Produce design documents and participate in tech talks and knowledge-sharing sessions
• AI-augmented engineering: Direct agentic AI tools (Claude Code, Codex, or equivalent) across the full engineering workflow — code generation, testing, refactoring, debugging, and documentation. Demonstrated ability to apply advanced prompt engineering, manage AI context limitations, compose multi-agent orchestration workflows, and critically evaluate AI-generated outputs for correctness, security, and quality. Ability to establish guardrails and improve agent configurations to raise the quality bar. AI proficiency amplifies — it does not replace — deep engineering judgment and technical accountability

What We Offer

• The opportunity to work on a global, mission-critical AI platform alongside the best engineers and technologists across multiple geographies
• A role with real ownership and impact, building complex systems at scale in an environment that values speed, experimentation, and technical excellence
• A highly attractive benefits package, including competitive cash compensation, an equity award aligned with long-term value creation, and comprehensive health insurance for employees and their families
• Modern, comfortable offices in Montreal/ Toronto downtown, with an expectation of working from the office 1 day per week, reflecting our belief in strong in-person collaboration, while remaining flexible to accommodate remote work for candidates who live in other Canadian cities
• A generous time-off policy of 30 days annually, plus public holidays and sick leave, recognising the importance of sustained high performance

About Our Process

Our selection process is designed to rigorously assess a candidate’s depth of technical knowledge, problem-solving ability, and alignment with Behavox’s mission and core values.

As part of the process, candidates will first participate in a series of interviews focused on evaluating their technical expertise and engineering judgment. Candidates who successfully progress through these interviews will then be invited to complete a live technical exercise. The purpose of this live technical assessment is to validate the candidate’s stated technical competencies and assess their ability to solve complex problems with speed, accuracy, and sound engineering judgment. Note that whenever possible, we aim to conduct interviews in person at our offices.

We recognise and respect the time candidates invest in this process. In return, Behavox commits significant time and resources to ensure that those who join us have the capability, judgment, and alignment required to operate at the speed and level of complexity our work demands. We value efficiency and clarity on both sides; if at any point we determine that a candidate is not a fit, we reserve the right to immediately conclude the interview or the technical assessment.

Please note the following:

• A core objective of the process is to objectively assess individual knowledge and competencies. The use of AI tools or external assistance during live interviews or technical exercises is strictly prohibited (unless explicitly instructed otherwise) and will result in immediate disqualification.
• Interviews and technical sessions may be recorded for internal review to support fairness, consistency, and collaborative decision-making within the hiring team.

About Behavox

Behavox is a cloud-native AI company providing an integrated controls platform for global banks, asset managers, hedge funds, private equity firms, insurance businesses, and commodity firms. The platform unifies communications and trade surveillance, compliant archiving, policy management as well as front-office analytics on a single, AI-native technology stack, delivered as a globally scalable SaaS-based cloud service.

At Behavox, our engineering culture is built around speed, experimentation, and technical excellence, following agile principles and rapid iteration. We constantly test and adopt the latest cloud technologies and AI tooling, optimising for fast feedback loops and execution. We look for people who can move fast, challenge conventional wisdom, and who want to work at the frontier of modern AI, SaaS platforms, and distributed systems.

Behavox is a high-performance organisation with a strong bias toward delivery, ownership, and responsibility. We commit, and we execute. We are building systems that are complex, mission-critical, and global in scale; systems that many consider too large or too difficult. To do that, we seek the smartest, most technically capable engineers and technologists who take end-to-end responsibility and want to win by building what others cannot.

Founded in 2014 and backed by SoftBank Vision Fund, Behavox is headquartered in London, with offices worldwide, including New York City, Montreal, Seattle, Singapore, and Tokyo.

About the Role

The Software Engineer (Java) operates at a senior engineer level, driving technical direction across core product domains. The role combines deep hands-on Java engineering with architectural ownership — from high-level system design and technology selection to leading delivery of critical, cross-cutting platform capabilities.

At this level, engineering excellence extends beyond implementation: the engineer determines the right approach to complex problems, communicates technical decisions across functions, participates in hiring, and is accountable for the long-term health of the systems they own. This level demands sound judgment on technology and business trade-offs and the ability to act as a technical lead. A defining expectation is mastery of AI-assisted engineering — leveraging agentic AI tools as force multipliers while retaining full ownership of architecture, quality, and technical outcomes.

What You'll Bring

• Expert Java engineering: Deep understanding of Java internals — GC tuning, Collections Framework, advanced concurrency (java.util.concurrent, multithreading), NIO/NIO2, performance profiling, and heap-dump analysis. Mastery of Spring Framework (IoC/DI, bean lifecycle, Spring Boot). SOLID principles, Clean Code practices, and GoF design patterns
• Software architecture and design patterns: Expertise in monolith and microservices architectural styles — including migration patterns and domain-driven decomposition. Inter-process communication design (REST, gRPC, messaging), transaction management in distributed systems (Sagas, 2PC), CQRS, Event Sourcing, and external API design focused on scalability, security, and documentation
• Cloud-native platforms and infrastructure: Experience designing high-availability and high-load systems on GCP (preferred), AWS, and Azure. Cloud security best practices: IAM, VPC, data encryption, JWT/JWS/JWE. Infrastructure as Code (Terraform or equivalent) and Twelve-Factor App methodology
• Observability, reliability and deployment: Implementing full observability stacks: structured logging, distributed tracing, metrics, and alerting. SLI/SLO/SLA frameworks. Deployment strategies: Rolling Updates, Blue/Green Deployments, Canary Releases
• AI-assisted engineering: Practitioner-level command of agentic AI tools applied to software engineering — encompassing prompt engineering techniques, AI context management and its limitations, sub-agents, skills and plugins, multi-agent orchestration, and team-of-agents architectures. Experience with Claude Code (Anthropic), Codex (OpenAI), or equivalent is mandatory

What You'll Do

• Architecture and technology leadership: Lead high-level design for complex, cross-service features. Evaluate and select appropriate technologies, frameworks, and architectural patterns before delegating implementation. Produce and maintain architecture documentation: design docs, ADRs, tech specs, and wiki pages
• Advanced Java feature implementation: Own and implement critical product components — including prototyping, architecture validation, and production-grade code. Ensure correctness, performance, and long-term maintainability with comprehensive test coverage (unit, integration, contract, component)
• Technical roadmap contribution: Drive the engineering agenda for assigned product areas. Proactively identify gaps in requirements, architectural limitations, and technical risks. Contribute to product roadmap planning and delivery estimation. Participate in hiring processes
• Cross-functional technical communication: Drive technical communication across engineering, product, DevOps, and ML teams. Communicate technical decisions clearly to non-technical stakeholders. Produce design documents and participate in tech talks and knowledge-sharing sessions
• AI-augmented engineering: Direct agentic AI tools (Claude Code, Codex, or equivalent) across the full engineering workflow — code generation, testing, refactoring, debugging, and documentation. Demonstrated ability to apply advanced prompt engineering, manage AI context limitations, compose multi-agent orchestration workflows, and critically evaluate AI-generated outputs for correctness, security, and quality. Ability to establish guardrails and improve agent configurations to raise the quality bar. AI proficiency amplifies — it does not replace — deep engineering judgment and technical accountability

What We Offer

• The opportunity to work on a global, mission-critical AI platform alongside the best engineers and technologists across multiple geographies
• A role with real ownership and impact, building complex systems at scale in an environment that values speed, experimentation, and technical excellence
• A highly attractive benefits package, including competitive cash compensation, an equity award aligned with long-term value creation, and comprehensive health insurance for employees and their families
• Modern, comfortable offices in Montreal/ Toronto downtown, with an expectation of working from the office 1 day per week, reflecting our belief in strong in-person collaboration, while remaining flexible to accommodate remote work for candidates who live in other Canadian cities
• A generous time-off policy of 30 days annually, plus public holidays and sick leave, recognising the importance of sustained high performance

About Our Process

Our selection process is designed to rigorously assess a candidate’s depth of technical knowledge, problem-solving ability, and alignment with Behavox’s mission and core values.

As part of the process, candidates will first participate in a series of interviews focused on evaluating their technical expertise and engineering judgment. Candidates who successfully progress through these interviews will then be invited to complete a live technical exercise. The purpose of this live technical assessment is to validate the candidate’s stated technical competencies and assess their ability to solve complex problems with speed, accuracy, and sound engineering judgment. Note that whenever possible, we aim to conduct interviews in person at our offices.

We recognise and respect the time candidates invest in this process. In return, Behavox commits significant time and resources to ensure that those who join us have the capability, judgment, and alignment required to operate at the speed and level of complexity our work demands. We value efficiency and clarity on both sides; if at any point we determine that a candidate is not a fit, we reserve the right to immediately conclude the interview or the technical assessment.

Please note the following:

• A core objective of the process is to objectively assess individual knowledge and competencies. The use of AI tools or external assistance during live interviews or technical exercises is strictly prohibited (unless explicitly instructed otherwise) and will result in immediate disqualification.
• Interviews and technical sessions may be recorded for internal review to support fairness, consistency, and collaborative decision-making within the hiring team.