We are looking for an experienced Senior or Staff Engineer for our SRE, InfraSec team, to guide the security of our cloud-based infrastructure. As a Staff SRE, you will be very hands-on technically while also mentoring a small team of SREs.

The InfraSec team collaborates closely with other engineering teams to ensure that our infrastructure adheres to the highest security standards. They build essential security infrastructure and implement controls that reinforce the platform’s security posture.

This is an SRE team, which means you can expect a highly hands-on approach, tackling the technical challenges of implementing large scale solutions.This team is deeply involved in the technical aspects of security and the nuances of its actual implementation.

This role can sit in our New York City, Austin, Seattle or San Francisco offices on a hybrid basis, or it can be fully remote while working from a location based in either Eastern or Central time zones.

Responsibilities:

Cloud Security Design and Implementation:  

• Help lead the design and deployment of security solutions for cloud platforms (AWS, Azure, GCP), including network and compute security, identity management, and cloud security posture management (CSPM)

Automation and Monitoring:  

• Build automated solutions for real-time security monitoring, logging, and alerting in cloud environments. Leverage native cloud services and third-party tools for runtime security monitoring and anomaly detection

Security Tooling:

• Evaluate, implement, and manage cloud-native security tools and platforms for endpoint security, identity management (IAM), and CSPM 

Qualifications:

Experience:  

• 6+ years of experience in SRE, infrastructure engineering or similar role, with a strong focus on security work, with ideally 2+ years in a senior or staff engineering role

Security Mindset:

• A comprehensive understanding of all facets of cloud environment security, spanning from foundational OS networking layers to cloud provider configurations. Proven experience in leading projects within security-focused areas, such as runtime scanning, security observability, CSPM, and more

Cloud Expertise:  

• Strong experience with at least one cloud platform (AWS, Azure, GCP), including expertise in IAM, VPC networking, security groups, and cloud security tools (e.g., GuardDuty, Security Hub, CloudTrail)

Coding/Automation:  

• Proficiency in at least one programming language (we use Golang but are language agnostic when it comes to hiring ) and experience with infrastructure-as-code tools (Terraform, CloudFormation, Ansible) to automate security configurations and processes

Linux and Networking

• Understanding of the underlying Linux and networking concepts, including low-level fundamentals, and how they work together in complex systems

Communication and Leadership Skills:  

• Strong ability to explain complex security concepts to both technical and non-technical teams. Ability to lead a small technical team and ensure success both meeting the team goals as well as personal growth for all team members

About MongoDB

MongoDB is built for change, empowering our customers and our people to innovate at the speed of the market. We have redefined the database for the AI era, enabling innovators to create, transform, and disrupt industries with software. MongoDB’s unified database platform—the most widely available, globally distributed database on the market—helps organizations modernize legacy workloads, embrace innovation, and unleash AI. Our cloud-native platform, MongoDB Atlas, is the only globally distributed, multi-cloud database and is available across AWS, Google Cloud, and Microsoft Azure.

With offices worldwide and nearly 60,000 customers—including 75% of the Fortune 100 and AI-native startups—relying on MongoDB for their most important applications, we’re powering the next era of software.

Our compass at MongoDB is our Leadership Commitment, guiding how and why we make decisions, show up for each other, and win. It’s what makes us MongoDB. 

To drive the personal growth and business impact of our employees, we’re committed to developing a supportive and enriching culture for everyone. From employee affinity groups, to fertility assistance and a generous parental leave policy, we value our employees’ wellbeing and want to support them along every step of their professional and personal journeys. Learn more about what it’s like to work at MongoDB, and help us make an impact on the world!

MongoDB is committed to providing any necessary accommodations for individuals with disabilities within our application and interview process. To request an accommodation due to a disability, please inform your recruiter.

MongoDB, Inc. provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type and makes all hiring decisions without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.

Req ID: 1263064630

We are hiring an experienced Security Software Engineer (Staff or Senior) for our Infrastructure Security team to design and build scalable security controls and services within MongoDB Atlas multi-cloud infrastructure.

The team sits within the Site Reliability Engineering organization and works with other engineering teams to ensure that our infrastructure adheres to the highest security standards.

This role can be based out of our New York City, Austin, Seattle or San Francisco offices, or work fully remotely on standard East Coast business hours.

Responsibilities:

• Design and build core security primitives and services that protect MongoDB Atlas compute, networking, and identity across AWS, Azure, and GCP
• Build secure-by-default infrastructure using Linux security mechanisms (AppArmor, SELinux, seccomp, cgroups), Kubernetes, and eBPF to enforce runtime policies and gain deep visibility into systems behaviour
• Develop APIs, automation, and tooling that manage security posture at scale (CSPM, vulnerability management, workload identity) and provide monitoring, logging, and alerting pipelines that integrate with our tooling (Grafana, Splunk, Victoria Metrics.)
• Integrate security into our CI/CD and infrastructure-as-code workflows (Terraform) so that security controls are versioned, reviewed, and deployed just like any other code
• Lead complex projects end‑to‑end, from problem discovery and design docs to implementation, rollout, and long‑term ownership
• Collaborate with SRE, platform and product engineering teams to define secure architectures for new infrastructure and services

Qualifications:

You might be a great fit if you match some of the following:

• 5+ years of experience in Software Engineering, Site Reliability Engineering, or similar roles, preferably with relevant security work
• Proficiency with at least one programming language (Java, Golang, Rust, Python, or C/C++) and experience with infrastructure-as-code tools (Terraform) to automate security configurations and processes
• A deep understanding of Linux and networking concepts, including low-level fundamentals, and how they work together in complex systems
• Experience building security-related features or platforms such as runtime monitoring, CSPM, or vulnerability management
• Experience with a cloud provider (AWS, GCP, or Azure) and their security best practices and building blocks
• Hands-on experience with Kubernetes and its security ecosystem (e.g. RBAC, OPA/Gatekeeper, Kyverno, eBPF, Falco, Tetragon)
• A systems mindset: you think about failure modes, performance, observability, and operability alongside security and correctness
• Strong communication skills and the ability to explain complex security concepts and tradeoffs to both technical and non-technical stakeholders

About MongoDB

MongoDB is built for change, empowering our customers and our people to innovate at the speed of the market. We have redefined the database for the AI era, enabling innovators to create, transform, and disrupt industries with software. MongoDB’s unified database platform—the most widely available, globally distributed database on the market—helps organizations modernize legacy workloads, embrace innovation, and unleash AI. Our cloud-native platform, MongoDB Atlas, is the only globally distributed, multi-cloud database and is available across AWS, Google Cloud, and Microsoft Azure.

With offices worldwide and nearly 60,000 customers—including 75% of the Fortune 100 and AI-native startups—relying on MongoDB for their most important applications, we’re powering the next era of software.

Our compass at MongoDB is our Leadership Commitment, guiding how and why we make decisions, show up for each other, and win. It’s what makes us MongoDB. 

To drive the personal growth and business impact of our employees, we’re committed to developing a supportive and enriching culture for everyone. From employee affinity groups, to fertility assistance and a generous parental leave policy, we value our employees’ wellbeing and want to support them along every step of their professional and personal journeys. Learn more about what it’s like to work at MongoDB, and help us make an impact on the world!

MongoDB is committed to providing any necessary accommodations for individuals with disabilities within our application and interview process. To request an accommodation due to a disability, please inform your recruiter.

MongoDB, Inc. provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type and makes all hiring decisions without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.

Req ID: 2263171228

We are hiring an experienced Security Software Engineer (Staff or Senior) for our Infrastructure Security team to design and build scalable security controls and services within MongoDB Atlas multi-cloud infrastructure.

The team sits within the Site Reliability Engineering organization and works with other engineering teams to ensure that our infrastructure adheres to the highest security standards.

This role can be based out of our Dublin office, or work fully remotely in Ireland.

Responsibilities:

• Design and build core security primitives and services that protect MongoDB Atlas compute, networking, and identity across AWS, Azure, and GCP
• Build secure-by-default infrastructure using Linux security mechanisms (AppArmor, SELinux, seccomp, cgroups), Kubernetes, and eBPF to enforce runtime policies and gain deep visibility into systems behaviour
• Develop APIs, automation, and tooling that manage security posture at scale (CSPM, vulnerability management, workload identity) and provide monitoring, logging, and alerting pipelines that integrate with our tooling (Grafana, Splunk, Victoria Metrics.)
• Integrate security into our CI/CD and infrastructure-as-code workflows (Terraform) so that security controls are versioned, reviewed, and deployed just like any other code
• Lead complex projects end‑to‑end, from problem discovery and design docs to implementation, rollout, and long‑term ownership
• Collaborate with SRE, platform and product engineering teams to define secure architectures for new infrastructure and services

Qualifications:

You might be a great fit if you match some of the following:

• 5+ years of experience in Software Engineering, Site Reliability Engineering, or similar roles, preferably with relevant security work
• Proficiency with at least one programming language (Java, Golang, Rust, Python, or C/C++) and experience with infrastructure-as-code tools (Terraform) to automate security configurations and processes
• A deep understanding of Linux and networking concepts, including low-level fundamentals, and how they work together in complex systems
• Experience building security-related features or platforms such as runtime monitoring, CSPM, or vulnerability management
• Experience with a cloud provider (AWS, GCP, or Azure) and their security best practices and building blocks
• Hands-on experience with Kubernetes and its security ecosystem (e.g. RBAC, OPA/Gatekeeper, Kyverno, eBPF, Falco, Tetragon)
• A systems mindset: you think about failure modes, performance, observability, and operability alongside security and correctness
• Strong communication skills and the ability to explain complex security concepts and tradeoffs to both technical and non-technical stakeholders

About MongoDB

MongoDB is built for change, empowering our customers and our people to innovate at the speed of the market. We have redefined the database for the AI era, enabling innovators to create, transform, and disrupt industries with software. MongoDB’s unified database platform, the most widely available, globally distributed database on the market, helps organizations modernize legacy workloads, embrace innovation, and unleash AI. Our cloud-native platform, MongoDB Atlas, is the only globally distributed, multi-cloud database and is available across AWS, Google Cloud, and Microsoft Azure.

With offices worldwide and over 60,000 customers, including 75% of the Fortune 100 and AI-native startups, relying on MongoDB for their most important applications, we’re powering the next era of software.

Our compass at MongoDB is our Leadership Commitment, guiding how and why we make decisions, show up for each other, and win. It’s what makes us MongoDB. 

To drive the personal growth and business impact of our employees, we’re committed to developing a supportive and enriching culture for everyone. From employee affinity groups, to fertility assistance and a generous parental leave policy, we value our employees’ wellbeing and want to support them along every step of their professional and personal journeys. Learn more about what it’s like to work at MongoDB, and help us make an impact on the world!

MongoDB is committed to providing any necessary accommodations for individuals with disabilities within our application and interview process. To request an accommodation due to a disability, please inform your recruiter.

MongoDB is an equal opportunities employer.

Req ID: 426183

This will be a remote role to start, with plans to transition to hybrid in-office 2x/week located in downtown Toronto.

With millions of diners, 60,000+ restaurant partners and 25+ years of experience, OpenTable, part of Booking Holdings, Inc. (NASDAQ: BKNG), is an industry leader with a passion for helping restaurants thrive. Our world-class technology empowers restaurants to focus on what matters most – their team, their guests, and their bottom line – while enabling diners to discover and book the perfect restaurant for every occasion. 

Every employee at OpenTable has a tangible impact on what we do and how we do it. You’ll also be part of a global team and its portfolio of metasearch brands. Hospitality is all about taking care of others, and it defines our culture.

Responsibilities:

• Conduct threat modeling and security design reviews for new and changing application features, APIs, and integrations; provide actionable guidance to engineering and product teams.
• Partner with Product and Engineering to translate business requirements into security requirements, performing risk assessments and defining compensating controls when needed.
• Translate risk findings and incident learnings into prioritized remediation plans and mitigations, including short-term risk reduction and long-term design improvements.
• Build and maintain automation to scale the design review process and streamline vulnerability triage.
• Serve as a subject matter expert during security incidents. Assist in triage, analysis, and technical containment.
• Drive post-incident and post-release learning. Turn incident learnings into new design patterns, detection alerts, or developer training to prevent recurrence.
• Monitor the threat landscape to ensure our design reviews and IR playbooks stay ahead of modern attack vectors
• Evaluate and implement vendor security solutions that improve detection, response, and secure design, ensuring effective integration into security processes.

Our Ideal Candidate Will Have:

• 5-7 years of combined Information Security Experience
• B.S. or M.S. Computer Science or a related field, or equivalent experience
• A fast learning curve and a track record of partnering effectively with cross-functional teams to achieve security goals
• A "consultant" mindset with the ability to offer alternatives, partnering with engineers to find creative solutions that satisfy both security requirements and product deadlines
• Experience in assessing new application features and establishing secure guidelines for Product teams
• Comfort in the "heat of battle" with the technical depth to triage application-layer attacks and assist in steering a team toward containment
• Skill in explaining complex security concepts to audiences ranging from Product Managers to Senior Engineers
• Proficiency in at least one backend language (e.g. Java, Python, etc) and can navigate unfamiliar codebases to identify logic flaws and vulnerabilities,
• Solid understanding of network and web protocols.
• Experience with the security of intra-company and third-party APIs.
• Operate with a high level of independence
• Candidate Bonus Points for the Following:
  • Technical certifications within information security (CISSP, CCSP, OSCP, OSWE or equivalents)
  • Experience with access and identity management
  • Experience with SIEM and log management

Benefits:

• Generous paid vacation + time off for your birthday
• Work from (almost) anywhere for up to 20 days per year
• Focus on mental health and well-being:
  • Company-paid therapy sessions through SpringHealth
  • Company-paid subscription to Headspace
  • Annual company-wide week off - the whole team fully recharges (and returns without a pile-up of work!)
• Paid parental leave
• Paid volunteer time
• Focus on your career growth:
  • Development Dollars
  • Leadership development
  • Access to thousands of on-demand e-learnings
• Travel Discounts
• Employee Resource Groups
• Private health and dental insurance
• Life and Disability insurance

There are a variety of factors that go into determining a salary range, including but not limited to external market benchmark data, geographic location, and years of experience sought/required. The expected range of compensation for this position based in Toronto, Canada, including commission and/or bonuses is $130,000-$160,000 CAD.

We offer a competitive base salary and benefits including: health benefits; flexible spending account; retirement benefits; life insurance; paid time off (including PTO, paid sick leave, medical leave, bereavement leave, floating holidays and paid holidays); and parental leave benefits. This role is eligible to be considered for an annual bonus and equity grant.

Work Environment & Flexibility

At OpenTable, we pride ourselves on fostering a global and dynamic work environment. As a team member with us, you will benefit from a schedule tailored to accommodate a global workforce operating across multiple time zones. While the majority of your responsibilities may align with conventional business hours, there will be instances where you are expected to manage communications - via calls, Slack messages, or emails - outside of regular working hours to effectively collaborate with international colleagues, respond to restaurant partners, and/or address urgent matters. OpenTable will always abide by and consider local laws and regulations.

Inclusion

We’re committed to creating a workplace where everyone feels they belong and can thrive. We know the best ideas come when we bring different voices to the table, so we're building a team as dynamic as the diners and restaurants we serve—and fostering a culture where everyone feels welcome to be themselves.

If you need accommodations during the application or interview process, or on the job, we’re here to support you. Please reach out to your recruiter to request any accommodations.

We’re seeking an experienced Senior Security Engineer with a strong passion for Identity and Access Management(IAM) and proven expertise in cloud-native environments, particularly AWS. In this role, you’ll help shape and implement modern identity strategies to secure access across all of Marqeta’s systems and services—100% cloud-based, with no data center footprint.

Join us in building a secure, scalable, and frictionless IAM program where you’ll play a crucial part in:

• Building and evolving our Identity Governance and Administration (IGA) capabilities.
• Implementing & Operating Privileged Access Management (PAM) in a cloud-first (AWS-focused) environment.
• Designing and architecting a Certificate Lifecycle Management solution that supports cloud-native workloads.
• Driving integration of IAM across AWS services, SaaS platforms, and developer/DevOps pipelines.
• Designing identity and access controls to protect AI/ML systems—ensuring secure access to training data, models, and inference APIs.

The Impact You’ll Have

• Develop and lead implementation of robust IAM strategies aligned with cloud-native architecture and security principles.
• Expand and operationalize the IAM program across IGA, PAM, SSO, MFA, access management, secrets management, and certificate lifecycle.
• Automate identity provisioning, de-provisioning, and access reviews using AI tools and infrastructure-as-code.
• Design IAM integrations for AWS-native services (Lambda, EC2, S3, IAM, etc.), SaaS platforms, and third-party identity tools (e.g., Okta, CyberArk).
• Promote and enforce least privilege and zero-trust principles through scalable access controls and policy automation.
• Mentor junior engineers and serve as a technical lead for IAM-related projects.
• Collaborate with Security, DevOps, and Infrastructure teams to embed IAM controls across the engineering lifecycle.
• Stay ahead of emerging trends and continuously refine IAM strategy based on evolving cloud threats and compliance requirements.

Who You Are

• A minimum of 8 years related experience with a Bachelor’s degree; or 5 years and a Master’s degree; or a PhD with 3 years’ experience; or equivalent combination of related education and work experience.
• Strong experience with IAM tools (e.g., Okta, CyberArk, Ping, SailPoint).
• Deep knowledge of IAM in cloud-native environments, especially AWS IAM, roles, policies, permissions boundaries, and federation.
• Proficiency in infrastructure-as-code (e.g., Terraform, CloudFormation).
• Familiarity with authentication and authorization protocols (SAML, OAuth2, OpenID Connect, Kerberos).
• Strong grasp of directory services like Active Directory, LDAP, and cloud-based alternatives.
• Hands-on skills in scripting (e.g., Python, PowerShell) to automate IAM operations.
• Solid understanding of compliance standards: NIST, SOC 2, PCI DSS, etc.
• Proven experience integrating IAM into CI/CD pipelines, secrets management, and DevOps workflows.
• Excellent communication skills and ability to influence and lead cross-functional teams.

Nice to have

• Relevant certifications such as CISSP, CISM, or IAM-specific credentials (e.g., CIAM/CAMS, CyberArk Certified, Okta Certified Consultant).
• Experience with AWS technologies such as Lambda, S3, DynamoDB, RDS, Aurora, SNS, SQS, CloudTrail, CloudWatch, Code Pipeline, AWS Developer Tools, and IAM roles and permissions
• Experience with DevOps tools and practices, including secrets management and CICD pipelines

Manager

• Sandeep Chotwani

Recruiter for this role

• Kayla Osuna

Compensation and Benefits

Marqeta is a Flex First company which allows you to choose your best working environment, whether that be from home or at a company office. To support Flex First, we calibrate pay to a competitive value according to working location. 

When determining salaries, we consider several factors including, but not limited to, skills, prior experience, and work location. The new-hire base salary range for this position, reflected in CAD, is: 136,800 - 171,000

We also believe in recognizing the contributions of our people. That's why we award annual bonuses to eligible employees, rewarding both individual performance and the success of the entire company.

Along with monetary compensation, Marqeta offers

• Multiple health insurance options
• Flexible vacation time
• Retirement savings program with company contribution
• Equity in a publicly-traded company 
• Monthly stipend to support our remote work model
• Annual “development dollars” to support our people growth and development
• Family-forming benefits and up to 20 weeks of Parental Leave

We’re seeking an experienced Senior Security Engineer with a strong passion for Identity and Access Management(IAM) and proven expertise in cloud-native environments, particularly AWS. In this role, you’ll help shape and implement modern identity strategies to secure access across all of Marqeta’s systems and services—100% cloud-based, with no data center footprint.

Join us in building a secure, scalable, and frictionless IAM program where you’ll play a crucial part in:

• Building and evolving our Identity Governance and Administration (IGA) capabilities.
• Implementing & Operating Privileged Access Management (PAM) in a cloud-first (AWS-focused) environment.
• Designing and architecting a Certificate Lifecycle Management solution that supports cloud-native workloads.
• Driving integration of IAM across AWS services, SaaS platforms, and developer/DevOps pipelines.
• Designing identity and access controls to protect AI/ML systems—ensuring secure access to training data, models, and inference APIs.

The Impact You’ll Have

• Develop and lead implementation of robust IAM strategies aligned with cloud-native architecture and security principles.
• Expand and operationalize the IAM program across IGA, PAM, SSO, MFA, access management, secrets management, and certificate lifecycle.
• Automate identity provisioning, de-provisioning, and access reviews using AI tools and infrastructure-as-code.
• Design IAM integrations for AWS-native services (Lambda, EC2, S3, IAM, etc.), SaaS platforms, and third-party identity tools (e.g., Okta, CyberArk).
• Promote and enforce least privilege and zero-trust principles through scalable access controls and policy automation.
• Mentor junior engineers and serve as a technical lead for IAM-related projects.
• Collaborate with Security, DevOps, and Infrastructure teams to embed IAM controls across the engineering lifecycle.
• Stay ahead of emerging trends and continuously refine IAM strategy based on evolving cloud threats and compliance requirements.

Who You Are

• A minimum of 8 years related experience with a Bachelor’s degree; or 5 years and a Master’s degree; or a PhD with 3 years’ experience; or equivalent combination of related education and work experience.
• Strong experience with IAM tools (e.g., Okta, CyberArk, Ping, SailPoint).
• Deep knowledge of IAM in cloud-native environments, especially AWS IAM, roles, policies, permissions boundaries, and federation.
• Proficiency in infrastructure-as-code (e.g., Terraform, CloudFormation).
• Familiarity with authentication and authorization protocols (SAML, OAuth2, OpenID Connect, Kerberos).
• Strong grasp of directory services like Active Directory, LDAP, and cloud-based alternatives.
• Hands-on skills in scripting (e.g., Python, PowerShell) to automate IAM operations.
• Solid understanding of compliance standards: NIST, SOC 2, PCI DSS, etc.
• Proven experience integrating IAM into CI/CD pipelines, secrets management, and DevOps workflows.
• Excellent communication skills and ability to influence and lead cross-functional teams.

Nice to have

• Relevant certifications such as CISSP, CISM, or IAM-specific credentials (e.g., CIAM/CAMS, CyberArk Certified, Okta Certified Consultant).
• Experience with AWS technologies such as Lambda, S3, DynamoDB, RDS, Aurora, SNS, SQS, CloudTrail, CloudWatch, Code Pipeline, AWS Developer Tools, and IAM roles and permissions
• Experience with DevOps tools and practices, including secrets management and CICD pipelines

Manager

• Sandeep Chotwani

Recruiter for this role

• Kayla Osuna

Compensation and Benefits

Marqeta is a Flex First company which allows you to choose your best working environment, whether that be from home or at a company office. To support Flex First, we calibrate pay to a competitive value according to working location. 

When determining salaries, we consider several factors including, but not limited to, skills, prior experience, and work location. The new-hire base salary range for this position, reflected in CAD, is: 136,800 - 171,000

We also believe in recognizing the contributions of our people. That's why we award annual bonuses to eligible employees, rewarding both individual performance and the success of the entire company.

Along with monetary compensation, Marqeta offers

• Multiple health insurance options
• Flexible vacation time
• Retirement savings program with company contribution
• Equity in a publicly-traded company 
• Monthly stipend to support our remote work model
• Annual “development dollars” to support our people growth and development
• Family-forming benefits and up to 20 weeks of Parental Leave

The PAM Team

Ever wonder how large organizations make sure the right people can access their most critical systems? That's the problem the Okta Privileged Access Management (PAM)  team solves.

Our solution controls who can reach sensitive servers, databases and cloud resources and grants access only when it's needed. It is the security layer between people (and non-human-identities) and the systems they need to do their jobs.

The Staff Backend Engineer Opportunity

We're looking for a Backend Software Engineer who wants to work on hard problems: distributed systems and building software where getting it right really matters. You'll ship code that protects real infrastructure for real organizations. You’ll build foundations that multiple feature teams depend on. When you make something faster, more reliable, or easier to use, it multiplies across the entire product.

This is a role for someone who likes thinking about how systems fit together. You'll need strong opinions about what makes a good abstraction, and the flexibility to evolve those abstractions as the product grows.

What you’ll be doing 

• Be deeply involved in evolving the core architecture of PAM.
• Work in our product development teams to build scalable, composable components of our platform.
• Be responsible for designing and implementing scalable architecture patterns.
• Design and build APIs with OpenAPI Specification that customers rely on for access to production infrastructure.
• Work on backend systems written in Go
• Participate in the rotational on-call activities with SRE and product development teams

What you’ll bring to the role

• 8+ years of experience as a SWE 
• Are an experienced software engineer with a background in Golang (other languages are also acceptable)
• Experienced working with relational databases like PostgreSQL or similar RDBMS technologies.
• Have the ability to design database models and backend APIs.
• Have experience working with cloud services like Caching, Queues, NoSQL Databases etc. 
• Experienced working with any cloud provider such as AWS, GCP or Azure.
• Thrive in a collaborative environment built on end-to-end ownership.
• Love thinking about distributed systems, and the reliability, availability, and performance implications of the decisions made in their design.
• Enjoy deep-diving into production metrics, and familiarity with monitoring tools like Splunk, DataDog etc.
• Think in terms of systems, services, and APIs

(P24959_3414026)

#LI-Hybrid 

#BB1

Backend Software Engineer — Okta Privileged Access Management (PAM)

Ever wonder how large organizations make sure the right people can access their most critical systems? That's the problem we solve.

Our team builds the infrastructure that controls who can reach sensitive servers, databases, and cloud resources, grants access only when it's needed. It is the security layer between people (and non-human-interfaces) and the systems they need to do their jobs.

We're looking for a Backend Software Engineer who wants to work on hard problems: distributed systems and building software where getting it right really matters. You'll ship code that protects real infrastructure for real organizations. You’ll build foundations that multiple feature teams depend on. When you make something faster, more reliable, or easier to use, it multiplies across the entire product.

This is a role for someone who likes thinking about how systems fit together. You'll need strong opinions about what makes a good abstraction, and the flexibility to evolve those abstractions as the product grows.

The Okta Privileged Access Management (PAM) is an identity-centric approach to a common and critical privileged access use case. Our elegant Zero Trust architecture is purpose-built for the modern cloud and helps customers solve challenging security and operations pain points at scale. 

We are looking for a Backend Software Engineer to join our fast-growing team with a focus on scalability, reliability, and enhancing the building blocks of the product.

In this role you will:

• Be deeply involved in evolving the core architecture of PAM.
• Work in our product development teams to build scalable, composable components of our platform.
• Be responsible for designing and implementing scalable architecture patterns.
• Design and build APIs with OpenAPI Specification that customers rely on for access to production infrastructure.
• Work on backend systems written in Go
• Participate in the rotational on-call activities with SRE and product development teams.

You might be a good fit if you:

• Are an experienced software engineer with a background in Golang (other languages are also acceptable)
• Experienced working with relational databases like PostgreSQL or similar RDBMS technologies.
• Have the ability to design database models and backend APIs.
• Have experience working with cloud services like Caching, Queues, NoSQL Databases etc. 
• Experienced working with any cloud provider such as AWS, GCP or Azure.
• Thrive in a collaborative environment built on end-to-end ownership.
• Love thinking about distributed systems, and the reliability, availability, and performance implications of the decisions made in their design.
• Enjoy deep-diving into production metrics, and familiarity with monitoring tools like Splunk, DataDog etc.
• Think in terms of systems, services, and APIs.

Required education and experience:

• 8+ years working as a software engineer.
• Experience working with production systems.
• Bachelors in CS, or equivalent

#LI-LSS1

#LI-Remote

requisition ID- P24957_3415623

Awesome tech is made by awesome people, and we’re always looking for new team members who bring energy, passion, commitment, and collaboration. These qualities have made Okta the great company it is today.

So, what do we build exactly? Auth0 is an authentication and authorization platform designed by developers for developers. Basically, we make users' logins safe, secure, and seamless. Our mission is to secure the world’s identities so innovators can innovate, but it’s a big mission that requires a lot of teamwork.

We are looking for a Senior Software Engineer to join our high-caliber Extensibility Engineering team to help us continue to improve our ultra-low latency, secure, and scalable platform for untrusted code execution. In this role, you will have the opportunity to significantly contribute to the foundation of Auth0's Ecosystem, realizing a huge impact for our customers and partners.

As a member of Developer Experience - Extensibility Platform, you will: 

• Design, architect, and document large-scale distributed systems.
• Implement features across different layers of the stack using technologies such as Go, MongoDB, PostgreSQL, AWS, Azure, and Kubernetes.
• Lead team discussions, mentor other engineers to become senior and improve the team’s productivity.
• Contribute to improving Auth0's architecture, performance, observability, security controls, and best practices.
• Collaborate with Product and Security teams to define and continually improve Auth0’s Extensibility platform and architecture.
• Participate in our on-call rotations for troubleshooting production issues.

Key Qualifications:

• 5+ years of experience in software development, building distributed systems using Go.
• Strong experience in API-driven applications using REST and/or gRPC.
• Experience with packaging and distributing containerized applications using Docker and Kubernetes.
• Experience with sandboxing untrusted code or tenant isolation (both preferred but not required).
• A high bar for both code quality as well as quality of user experience.
• Proven ability to collaborate with others to drive initiatives forward.

Nice To Haves:

• Solid hands-on experience with Node.js in building scalable backend services

#LI-HYBRID

#LI-SH1
P-3247_3396333

The PAM Team

Ever wonder how large organizations make sure the right people can access their most critical systems? That's the problem the Okta Privileged Access Management (PAM)  team solves.

Our solution controls who can reach sensitive servers, databases and cloud resources and grants access only when it's needed. It is the security layer between people (and non-human-identities) and the systems they need to do their jobs.

The Staff Backend Engineer Opportunity

We are seeking a world-class Staff Engineer to help us architect and build the high-performance core of our non-human identity platform.

Your work, in close collaboration with our principal engineers and architects, will be the foundation of our strategy for managing privileged access in the modern enterprise. If you are a systems programmer who thrives on influencing the design of high-performance, concurrent, and resilient security software, this is the role for you.

What you’ll be doing 

• Contribute to Core Architecture: Partner with principal engineers and architects to design and implement a low-latency, high-throughput secrets engine for non-human identities
• Solve for Massive Scale: Write highly concurrent, performance-critical code capable of handling millions of machine-to-machine authentication and authorization requests
• Shape Technical Strategy: Play a key role in defining the long-term technical roadmap for scalability and performance, ensuring our platform can meet the demands of the largest enterprises
• Mentor and Elevate: As a senior engineer on the team, you will work with junior engineers to help them advance their SDLC expertise.
• On-Call: Participate in the rotational on-call activities with SRE and product development team

What you’ll bring to the role

• Required Experience:
  • 8+ years of professional software engineering experience, with a heavy focus on backend or systems-level development
  • Bachelor’s or Master’s degree in Computer Science, or equivalent practical experience
• Core Technical Expertise:
  • Deep, hands-on expertise in multi-platform Go development and building high-performance, concurrent applications
  • Experience designing or operating distributed systems
  • Experience with secure systems (authn/authz, encryption, TLS, token handling, PKI, CAs, diagnosing TLS issues)
  • Deep expertise in distributed storage systems, with a focus on replication, backup, and restore, and data management. (Postgres, etc.)
  • Direct experience designing, building, or contributing to a secrets management, service mesh, or machine identity platform
  • Expert-level at ergonomic API design (gRPC/openAPI), and building for reliability at scale
  • Deep knowledge of cloud-native infrastructure

And extra credit if you have experience in any of the following! 

• Experience at a leading Cybersecurity or Infrastructure-as-Code company
• Contributions to open-source projects in the identity, security, or infrastructure space

(P24956_3414025)

#LI-Hybrid 

#BB-1

The Team

Okta’s Workforce Identity Cloud Security Engineering group embraces innovation and paves the way to transform bright ideas into excellent security software solutions that help run large-scale, mission-critical software. Our Security engineering team has a niche skill-set that combines security domain expertise with the ability to design, implement and rollout security features and functionalities without adding friction to product functionality or performance. We are responsible for the ever-growing need to improve our customer safety and privacy by providing security services that are coupled with the core Okta product.

The Role

Okta’s Workforce Identity Cloud Security Engineering group is looking for an experienced and passionate Staff Software Security Engineer to join a team focused on designing and developing Security solutions to harden our frameworks & infrastructure. We encourage you to prescribe defense-in-depth measures, industry security standards, and enforce the principle of least privilege to help take our Security posture to the next level.

This is a high-impact role in a security-centric, fast-paced organization that is poised for massive growth and success. You will act as a liaison between the Security org and the engineering org to build technical leverage and influence the security roadmap and direction. You will focus on engineering security and privacy aspects of the systems used across our services while working on a weekly release cadence. You will be empowered to propose  stimulating new projects for our roadmap and rewarded with projects using  emerging technologies. Join us and be part of a company that is about to change the cloud computing landscape forever.

What you’ll be doing 

• Act as a liaison between the engineering and security org to develop innovative requirements for the security roadmap
• Evangelize security best practices across the engineering org
• Research, design, implement and own security oriented frameworks and features with the common goal of protecting Okta’s customers
• Routinely participate in cross-vertical code reviews with emphasis on Security
• Break down complex problems into sub-tasks while prototyping rapidly and iteratively contributing to security initiatives using agile practices
• Coach and mentor junior engineers in the team

What you’ll bring to the role

• 8+ years of development experience in designing and implementing software systems in Java, building highly reliable and mission-critical software
• 4+ years of work experience in designing and implementing security solutions for applications and distributed systems
• Work experience and excellent understanding in mitigating OWASP Top 10 attacks on applications, Application Security, Cryptography, Authentication, Authorization using Role-Based and Attribute-Based access controls
• Strong understanding of concepts such as Test-Driven development, Secure SDLC, Secure code reviews and the ability to identify and mitigate threat vectors and vulnerabilities in code and infrastructure
• Good understanding and experience in using cloud service providers such as AWS and GCP
• Good understanding of 'AI Secure by Design' practices throughout the development lifecycle, ensuring secure coding for AI-powered applications and validating the integrity of training datasets
• Engineer and implement AI-based security solutions (e.g., automated threat analysis) that enhance application and infrastructure security
• Developing and maintaining technical documentation such as cookbooks, design and architecture docs
• Troubleshooting and fixing production issues to ensure reliability, security and performance
• Work experience in using RDBMS like MySQL, good grasp of concepts such as  replication and clustering along with familiarity in data stores such as Redis and Elasticsearch
• Excellent grasp of software engineering principles coupled with strong written and verbal communication skills
• B.S or M.S in Computer Science or related fields

#LI-SM1

#LI-Hybrid

P12002_3360981

Join Okta’s Defensive Cyber Engineering team as a Staff Engineer responsible for safeguarding Okta’s environments. You’ll work closely with the Security, Business Technology Engineering and Product teams to implement and manage security solutions and ensure that core infrastructure applications are protecting our workforce, endpoints, and corporate data. 

A strong desire to make tools and people work together to solve complex security problems is central to this role. This approach mandates an engineering-first approach: maximizing the utility of existing security tools before strategically building or buying new solutions to address any remaining security gaps. 

To execute this vision, you will combine your enterprise security expertise with your hands-on engineering skills, leveraging automation, policy-as-code, and cloud-native technologies to deliver scalable, resilient, and secure solutions. Your work will ultimately set standards for security best practices across the organization and influence the architecture of business-critical systems.

What you bring:

• Hands on experience with enterprise security tools such as Okta, Crowdstrike and Palo Alto suite covering EDR (Endpoint Detection and Response), CASB (Cloud Access Security Broker), DLP (Data Loss Prevention), MDM (Mobile Device Management), SASE (Secure Access Service Edge), and SSPM (SaaS Secure Posture Management) capabilities.
• Strong coding and scripting skills are required for building automation and custom tooling. Python experience is preferred, but proficiency in other languages (e.g., Bash, PowerShell, Go) is a plus.
• Proven track record automating security controls and workflows using a cloud-first approach
• Experience with Terraform and other infrastructure-as-code tools to orchestrate security infrastructure
• Familiarity with CI/CD pipelines for security automation and drift management
• Strong communication skills across technical staff, support teams, executive leadership, and external vendors.

What you’ll be doing

• Serve as a security subject matter expert (SME) for solution engineering, architecture reviews, security assessment, and vulnerability mitigation
• Lead technical efforts evaluating, designing, and implementing new enterprise security systems and feature enhancements
• Build, maintain, and enhance custom automation and cloud infrastructure using Terraform or similar tools to support team workflows and the enforcement of security controls
• Develop integrations with APIs, cloud platforms (AWS, GCP, Azure), and security infrastructure to improve detection, response, and remediation
• Collaborate with cross-functional teams to tackle global technology and security challenges
• Write and maintain scripts and automation to streamline security operations, with an emphasis on Python-based solutions
• Establish monitoring and alerting for security posture, misconfigurations, and threats across endpoints, SaaS, and cloud workloads
• Proactively identify and remediate security gaps; stay updated on emerging threats, solutions, and tooling across the industry

And extra credit if you have experience in any of the following!

• Working with advanced identity management technologies (MFA, SAML, OAuth, OIDC, WebAuthn)
• Deep understanding of Okta's ecosystem, including advanced configuration and integrations
• Experience with continuous compliance solutions (e.g., policy-as-code, automated evidence gathering)
  
  

What you can look forward to as an Full-Time Okta employee!

World-class benefits, flexibility, and growth opportunities

The chance to shape the security posture of a global leader in identity

Opportunities to make a social Impact through technology and innovation

Ready to join Okta and make security the foundation of our innovation? Apply today!

#LI-HYBRID

P24217

The PAM Team

Ever wonder how large organizations make sure the right people can access their most critical systems? That's the problem the Okta Privileged Access Management (PAM) team solves.

Our solution controls who can reach sensitive servers, databases and cloud resources and grants access only when it's needed. It is the security layer between people (and non-human-identities) and the systems they need to do their jobs.

The Staff Backend Software Engineer Role

We're looking for a Staff Backend Software Engineer who wants to work on hard problems: distributed systems and building software where getting it right really matters. You'll ship code that protects real infrastructure for real organizations. You’ll build foundations that multiple feature teams depend on. When you make something faster, more reliable, or easier to use, it multiplies across the entire product.

This is a role for someone who likes thinking about how systems fit together. You'll need strong opinions about what makes a good abstraction, and the flexibility to evolve those abstractions as the product grows. 

What you’ll be doing 

• Be deeply involved in evolving the core architecture of PAM
• Work in our product development teams to build scalable, composable components of our platform
• Be responsible for designing and implementing scalable architecture patterns
• Design and build APIs with OpenAPI Specification that customers rely on for access to production infrastructure
• Work on backend systems written in Go
• Participate in the rotational on-call activities with SRE and product development teams

What you’ll bring to the role

• 8+ years of experience as a SWE
• Are an experienced software engineer with a background in Golang (other languages are also acceptable)
• Experience working with relational databases like PostgreSQL or similar RDBMS technologies
• Ability to design database models and backend APIs
• Experience working with cloud services like Caching, Queues, NoSQL Databases etc.
• Experience working with cloud providers such as AWS, GCP or Azure
• Thrive in a collaborative environment built on end-to-end ownership
• Love thinking about distributed systems, and the reliability, availability, and performance implications of the decisions made in their design
• Enjoy deep-diving into production metrics, and familiarity with monitoring tools like Splunk, DataDog etc.
• Think in terms of systems, services, and APIs.

Required education and experience:

• 8+ years of professional software engineering experience, with a demonstrated track record of technical leadership and increasing scope.
• Experience working with production systems.
• Bachelors in CS, or equivalent

Must be able to work onsite from our Toronto office.

#LI-SM1

#LI-Hybrid

P24958_3402708

We are looking for a Staff Software Engineer to join our high-caliber Extensibility Engineering team to help us continue to improve our ultra-low latency, secure, and scalable platform for untrusted code execution. In this role, you will have the opportunity to significantly contribute to the foundation of the Customer Identity Ecosystem, realizing a huge impact for our customers and partners.

As a member of Developer Experience - Extensibility, you will: 

• Lead, Design, architect, and document large-scale projects using technologies such as  Node.js, Golang, MongoDB, PostgreSQL, AWS, Azure, and Kubernetes.
• Mentors others by coaching and delegating responsibilities to others. Collaborates with Engineering Manager on buy-in and direction.
• Contribute to improving Auth0's architecture, performance, observability, security controls, and best practices.
• Collaborate with Product and Security teams to define and continually improve Auth0’s Extensibility platform and architecture.
• Participate in our on-call rotations for troubleshooting production issues.

Key Qualifications:

• 8+ years of experience in software development building distributed systems (Node.js and/or Go).
• Strong experience in API-driven applications using REST and/or gRPC.
• Experience with packaging and distributing containerized applications using Docker and Kubernetes.
• Experience with sandboxing untrusted code or tenant isolation (both preferred but not required).
• A high bar for both code quality as well as quality of user experience.
• Proven ability to collaborate with others to drive initiatives forward.

Nice To Haves:

• Frontend application development in React/Angular (or other JavaScript frameworks) is a plus.
• An understanding of evergreen infrastructure and CI/CD best practices

#LI-HYBRID

#LI-SH1
P20120_3431986

Staff Security Infrastructure Engineer, Red Team

Within the Product Security team, our Red Team delivers robust security assurance for Okta's products, services, and infrastructure.  You will be the team's dedicated infrastructure and tooling engineer, the first person in this role for a small team of operators. You will work alongside operators but not report through an operator chain; you'll collaborate as a peer focused on a different discipline.

We seek a Staff Security Infrastructure Engineer to own the engineering backbone that enables our operations. This is not a traditional operator role but a dedicated infrastructure, tooling, and automation engineering position embedded within the Red Team.  You will design, build, maintain, and continuously improve the platforms, infrastructure, and custom tooling that our operators depend on to execute engagements.

Your work directly enables the team to operate at a higher maturity level: faster infrastructure deployment, more resilient and OPSEC-aware architecture, automated workflows, and reliable custom tooling, freeing operators to focus on the mission.  Your role will also extend to cultivating stakeholder collaboration and elevating our company’s security posture through strategic engagement and proactive measures.  As the team matures, this role can evolve toward platform leadership, custom capability development, or a hybrid operator/engineer path.

What You Will Do

• Infrastructure Engineering & Automation:
• Own the full lifecycle of red team infrastructure: design, provisioning, configuration, maintenance, and teardown
• Build and maintain Infrastructure-as-Code (IaC) using Terraform (or equivalent) to automate deployment of C2 servers, redirectors, phishing infrastructure, payload-delivery systems, and supporting services.
• Resource and asset lifecycle management through tracking domains, certificates, cloud accounts, recurring expenses, and infrastructure resources; managing acquisition, rotation, and retirement.
• Tooling Development & Maintenance:
• Develop, maintain, and improve custom tools, scripts, and automation to support red team operations (e.g., payload generation pipelines, log aggregation, C2 profile management, infrastructure health checks), providing on-demand infrastructure/tooling support when issues or gaps arise.
• Collaborate closely with operators during engagement planning to understand infrastructure requirements, OPSEC constraints, and operational timelines.
• Building and maintaining a representative test environment for pre-operation validation of tools and tradecraft against a security stack similar to the target.
• Maintaining the team's source code repository with merge/pull request processes, documentation, and code quality standards.
• Ensuring engagement evidence, infrastructure logs, and operational data are centrally collected and accessible for reporting and after-action reviews.
• Contribute to and maintain metrics that demonstrate infrastructure maturity, operational efficiency, and readiness (e.g., deployment time, rebuild time, infrastructure availability during engagements).
• Security & OPSEC:
• Design infrastructure with OPSEC as a first-class requirement: network segmentation, traffic separation between operations, credential management, and access controls 
• Implement and manage secure access to red team infrastructure
• Create and update operational runbooks, infrastructure documentation, and SOPs for the team.
• Maintain clear records of infrastructure ownership and attribution to support deconfliction processes.

What You Bring

Required

• 8+ years of professional experience in infrastructure engineering, DevOps, platform engineering, or a similar role with significant automation responsibilities
• Strong familiarity with Terraform (or equivalent IaC tooling) for multi-cloud infrastructure provisioning and management
• Experience operating in cloud-native, SaaS, or identity-focused environments
• Strong proficiency with configuration management tools (Ansible, or equivalent)
• Proficiency in at least one systems programming or scripting language (Python, Go, Bash) with disciplined development practices (version control, code review, testing, documentation)
• Solid understanding of Linux systems administration, networking fundamentals (DNS, HTTP/S, TCP/IP, proxying, TLS), and cloud platforms (AWS, GCP, or Azure)
• Understanding of OPSEC principles as they apply to offensive infrastructure — you know why redirector chains, domain categorization, traffic separation, and certificate management matter.

Strongly Preferred

• Experience building and maintaining CI/CD pipelines (GitHub Actions, GitLab CI, Jenkins, or similar)
• Familiarity with containerization and orchestration (Docker, Kubernetes) as applicable to tooling and lab environments
• Familiarity with C2 frameworks (Cobalt Strike, Mythic, Sliver, or similar) from an infrastructure and deployment perspective — you don't need to operate them, but you need to understand what operators need from the infrastructure
• Familiarity with detection evasion concepts as they relate to infrastructure (e.g., traffic shaping, hosting provider reputation, certificate transparency)

Nice to Have

• Working knowledge of Blue Team operations and related technologies
• Experience with security tool development (implant development, payload engineering, evasion tooling) — this role can grow in that direction
• Familiarity with Red Team maturity models and how infrastructure/tooling capabilities map to organizational maturity 

Note: This is not an operator role. You will not be the person running hands-on-keyboard engagements as your primary function. While you may participate in operations to understand requirements or provide support, your core mission is ensuring the team's infrastructure, workflows, tooling, and automation are reliable, repeatable, and mature. You are the engineering foundation the operators build on.

#LI-TM

#LI-Hybrid

(P22302_3403905)

About the Role

As a Staff Detection & Response Engineer at Okta, you will occupy a high-impact leadership role within our Security Operations organization. This is not just a technical role; it is a strategic one. You will influence security decisions across multiple teams, drive innovation in our defense-in-depth strategies, and act as a force multiplier for our global security posture.

You will be responsible for leading complex threat hunts, managing major security incidents, and architecting the detection frameworks that protect Okta’s infrastructure and customers. You will serve as a bridge between executive leadership and technical teams, ensuring our security objectives align with broader business trends and strategic goals.

What You’ll Do

Technical Leadership & Innovation

• Threat Hunting: Lead complex, hypothesis-driven threat hunts based on vague intelligence, and develop refined methodologies for the broader team to follow.
• Detection Engineering: Write novel detections and solve complex querying challenges. You will establish the frameworks and standards for detection engineering across the entire security organization.
• Architectural Influence: Design and validate the effectiveness of preventative control chains and influence the selection and architecture of new security solutions.
• Incident Response: Serve as the technical lead for major incidents, including investigating threats in "foreign" or uncommon environments by leveraging frameworks and your professional network.

Global Mindset: While Okta maintains a 24x7posture, there is a requirement to be available in a crisis out of (your business) hours, and as a thought leader, to interface with colleagues globally. 

Strategic Execution

• Project Ownership: Own multi-quarter objectives and drive them to success, developing project plans that align with Okta’s strategic VMTs (Vision, Metrics, and Targets) and budget.
• Problem Solving: Navigate issues of diverse scope, analyzing data against current business trends to provide innovative solutions.
• Innovation: Secure resources for and drive innovation initiatives across multiple teams, facilitating cross-functional workshops to generate new security solutions.

Team Advocacy & Mentorship

• Culture Building: Foster an inclusive, collaborative environment by sharing wins, rewarding team efforts, and encouraging diverse perspectives.
• Mentorship: Act as an advisor to junior colleagues, providing actionable feedback and helping others align their career goals with organizational objectives.
• Consensus Driving: Drive consensus and resolve issues within cross-functional teams, ensuring all stakeholders are aligned on security priorities.

Who You Are

• Expert Investigator: You have a deep understanding of threat actor TTPs and can navigate complex systems even when documentation is sparse.
• Effective Communicator: You can translate complex technical problems for any audience, from executive leadership to junior analysts.
• Resilient Leader: You have a "bottom-line" orientation, persisting through obstacles and setbacks to achieve results.
• Self-Aware & Empathetic: You proactively seek feedback, know your limits, and lead with empathy and compassion.
• Collaboratively Minded: You prioritize the development of others and establish internal and external networks of coaches and mentors.

Qualifications

• Proven experience in a high-growth SaaS or security-focused environment.
• Expertise in querying languages, detection frameworks (e.g., MITRE ATT&CK), and modern IR toolsets.
• Experience managing communications during crises or major security incidents.
• Demonstrated ability to lead project teams and manage budget/resource requirements.
• Strong background in automating response workflows and refining preventative controls.

Why Okta? Okta is the World’s Identity Company. We are building a world where anyone can safely use any technology. As a Staff Engineer, you will play a pivotal role in ensuring that vision remains a reality.

#LI-HYBRID 

P6513_3323862

About the Role

As a Staff Detection & Response Engineer at Okta, you will occupy a high-impact leadership role within our Security Operations organization. This is not just a technical role; it is a strategic one. You will influence security decisions across multiple teams, drive innovation in our defense-in-depth strategies, and act as a force multiplier for our global security posture.

You will be responsible for leading complex threat hunts, managing major security incidents, and architecting the detection frameworks that protect Okta’s infrastructure and customers. You will serve as a bridge between executive leadership and technical teams, ensuring our security objectives align with broader business trends and strategic goals.

What You’ll Do

Technical Leadership & Innovation

• Threat Hunting: Lead complex, hypothesis-driven threat hunts based on vague intelligence, and develop refined methodologies for the broader team to follow.
• Detection Engineering: Write novel detections and solve complex querying challenges. You will establish the frameworks and standards for detection engineering across the entire security organization.
• Architectural Influence: Design and validate the effectiveness of preventative control chains and influence the selection and architecture of new security solutions.
• Incident Response: Serve as the technical lead for major incidents, including investigating threats in "foreign" or uncommon environments by leveraging frameworks and your professional network.

Global Mindset: While Okta maintains a 24x7posture, there is a requirement to be available in a crisis out of (your business) hours, and as a thought leader, to interface with colleagues globally. 

Strategic Execution

• Project Ownership: Own multi-quarter objectives and drive them to success, developing project plans that align with Okta’s strategic VMTs (Vision, Metrics, and Targets) and budget.
• Problem Solving: Navigate issues of diverse scope, analyzing data against current business trends to provide innovative solutions.
• Innovation: Secure resources for and drive innovation initiatives across multiple teams, facilitating cross-functional workshops to generate new security solutions.

Team Advocacy & Mentorship

• Culture Building: Foster an inclusive, collaborative environment by sharing wins, rewarding team efforts, and encouraging diverse perspectives.
• Mentorship: Act as an advisor to junior colleagues, providing actionable feedback and helping others align their career goals with organizational objectives.
• Consensus Driving: Drive consensus and resolve issues within cross-functional teams, ensuring all stakeholders are aligned on security priorities.

Who You Are

• Expert Investigator: You have a deep understanding of threat actor TTPs and can navigate complex systems even when documentation is sparse.
• Effective Communicator: You can translate complex technical problems for any audience, from executive leadership to junior analysts.
• Resilient Leader: You have a "bottom-line" orientation, persisting through obstacles and setbacks to achieve results.
• Self-Aware & Empathetic: You proactively seek feedback, know your limits, and lead with empathy and compassion.
• Collaboratively Minded: You prioritize the development of others and establish internal and external networks of coaches and mentors.

Qualifications

• Proven experience in a high-growth SaaS or security-focused environment.
• Expertise in querying languages, detection frameworks (e.g., MITRE ATT&CK), and modern IR toolsets.
• Experience managing communications during crises or major security incidents.
• Demonstrated ability to lead project teams and manage budget/resource requirements.
• Strong background in automating response workflows and refining preventative controls.

Why Okta? Okta is the World’s Identity Company. We are building a world where anyone can safely use any technology. As a Staff Engineer, you will play a pivotal role in ensuring that vision remains a reality.

#LI-HYBRID 

P6513_3323862

At Lyft, our purpose is to serve and connect. We aim to achieve this by cultivating a work environment where all team members belong and have the opportunity to thrive. 

Our core corporate functions (Finance, Supply Chain) are critical to Lyft's success. The health and sustainability of our applications, systems, tooling, and processes are critical for daily operations and for Lyft's ability to grow. This Business Systems Engineer is primarily a functional role with an experience in the Oracle Fusion Record to Report (R2R) process domain, complemented by a working exposure to technical tools that support and extend those functional capabilities. This engineering role provides support for Lyft’s Corporate systems, managing their enhancements and incidents, implementing effective monitoring and alerting tools, creating automated workflows, building customer solutions, configuring applications, providing end user training and protecting all system related information.

To effectively support our business stakeholders, candidates for this role must be proactive, detail oriented, highly subject oriented, analytical, service focussed and possess the ability to execute the following skills.

Responsibilities:

• Serve as a skilled Oracle Fusion Record to Report (R2R) Techno-Functional professional, acting as bridge between business and technical teams to support and continuously enhance ERP Financial modules within Oracle Fusion Cloud Applications.
• Possess functional experience across core Financial modules including General Ledger (GL), Sub-ledger Accounting (SLA), Account Reconciliations, Fixed Assets, Cash Management, Fusion Accounting Hub (FAH), Account Payables and Receivables.
• Configure and maintain Oracle Fusion GL components including Chart of Accounts (COA), Accounting Calendars, Ledgers, Legal Entities, and Business Units to support Lyft's financial reporting structure.
• Experienced in configuring new Sub-ledger Accounting (SLA) rules, journal entry rule sets, and accounting method configurations to ensure accurate and compliant financial postings from all sub-ledgers (AP, AR, Fixed Assets, Projects, Third-Party).
• Hands-on knowledge of Cash Management, including bank account configuration, configuring new rules, bank statement reconciliation, and period-close activities.
• Experienced in Fixed Assets, including asset creation, categorization, depreciation methods, mass additions, asset retirements, and reconciliation of the Fixed Assets sub-ledger to the General Ledger to ensure accurate capital reporting.
• Partner with Finance stakeholders to gather, document, and translate business requirements into functional Oracle Fusion configurations and process designs.
• Must be able to quickly engage in calls with the Business and stakeholders to provide immediate support during critical periods, such as the month-end close process or any other high-priority task.
• Leverage SQL, PL/SQL, BI, OTBI reporting tools to drive data-driven insights and reporting solutions.
• Develop simple custom financial reports, dashboards, and analytics using OTBI and BI Publisher to meet the reporting and analytics needs of Finance and Accounting teams.
• Maintain good level knowledge of Accounting and Basic Business Process Flows, with solid exposure to data migration using FBDI (File-Based Data Import).
• Conduct functional testing (FUT), user acceptance testing (UAT), develop test scripts, and validate end-to-end scenarios for patches, quarterly updates, and new feature releases.
• Coordinate and manage design, development, and testing activities across project phases to ensure timely and high-quality delivery
• Support SOX compliance by documenting key controls, preparing audit evidence, and ensuring system configurations adhere to internal control requirements.
• Work with Oracle Support by raising and managing Service Requests (SRs), driving through to timely resolution.
• Show interest in Technology Innovation by staying ahead of emerging trends including Generative AI and Agentic AI to proactively identify and implement opportunities that drive system performance and operational efficiency.
• Create configuration workbooks, BR100, Functional Specifications, maintain thorough, up-to-date documentation of system configurations, SLA rules, integrations, and business process flows.
• Proficient in applying both Agile and Waterfall project methodologies across development, testing, and release activities, with the ability to adapt to the delivery model best suited to the project requirements.

Experience:

• 4 - 5 years of work experience in IT systems with domain expertise in Record to Report processes within Oracle Fusion Cloud, demonstrating a strong command of functional and exposure to technical aspects of the saas platform.
• Enthusiastic about learning new technologies and staying current with emerging tools
• Strong problem-solving and troubleshooting skills with the ability to exercise mature judgment in complex and ambiguous situations. 
• Collaborative team player who thrives in cross-functional environments, fosters a culture of knowledge sharing, and contributes positively to team dynamics and collective success.
• Self-motivated and driven professional with a strong sense of ownership, proactively identifying opportunities for improvement and seeing them through to completion with minimal supervision.
• Good understanding of the software development lifecycle (SDLC) with solid familiarity across development, support, and release management activities.
• Should be comfortable enough to report to a Senior level Business Systems Engineer.

Benefits:

• Extended health and dental coverage options, along with life insurance and disability benefits
• Mental health benefits
• Family building benefits
• Child care and pet benefits
• Access to a Lyft funded Health Care Savings Account
• RRSP plan with company match to help save for your future
• In addition to provincial observed holidays, salaried team members are covered under Lyft's flexible paid time off policy. The policy allows team members to take off as much time as they need (with manager approval). Hourly team members get 15 days paid time off, with an additional day for each year of service 
• Lyft is proud to support new parents with 18 weeks of paid time off, designed as a top-up plan to complement provincial programs. Biological, adoptive, and foster parents are all eligible.
• Subsidized commuter benefits and Lyft ride credits

Lyft is committed to creating an inclusive workforce that fosters belonging. Lyft believes that every person has a right to equal employment opportunities without discrimination because of race, ancestry, place of origin, colour, ethnic origin, citizenship, creed, sex, sexual orientation, gender identity, gender expression, age, marital status, family status, disability, pardoned record of offences, or any other basis protected by applicable law or by Company policy. Lyft also strives for a healthy and safe workplace and strictly prohibits harassment of any kind.  Accommodation for persons with disabilities will be provided upon request in accordance with applicable law during the application and hiring process. Please contact your recruiter if you wish to make such a request.

Lyft highly values having employees working in-office to foster a collaborative work environment and company culture. This role will be in-office on a hybrid schedule — Team Members will be expected to work in the office at least 3 days per week, including on Mondays, Wednesdays, and Thursdays. Lyft considers working in the office at least 3 days per week to be an essential function of this hybrid role. Your recruiter can share more information about the various in-office perks Lyft offers. Additionally, hybrid roles have the flexibility to work from anywhere for up to 4 weeks per year. #Hybrid

The expected base pay range for this position in the Toronto area is CAD $102,000 - CAD $127,500, not inclusive of potential equity offering, bonus or benefits. Salary ranges are dependent on a variety of factors, including qualifications, experience and geographic location. Your recruiter can share more information about the salary range specific to your working location and other factors during the hiring process.

Lyft may use artificial intelligence to screen applicants, however, Lyft employees make the ultimate selection and hiring decisions.

This job fills an existing vacancy.

Location

This role requires working from our downtown Toronto office 4 days/week (Mon, Tues, Thurs, Fri). Candidates must be based within a 50-mile commuting distance of the office.

About the Role

At Opendoor, AI isn’t a side project - it’s how we work. Across the company, teams default to AI to solve problems, ship faster, and remove friction from everything we do. You will help define the future of how we work by building AI powered workflows, automation, and experiences that drive leverage across Finance — spanning month-end close, SEC Reporting, FP&A, Technical Accounting, Tax, Procurement, Accounts Payable, and Payroll. This is high agency work in high ambiguity - turning messy problems into clean solutions, prototyping fast, and shipping.

You'll make systems design and tooling decisions that affect how our Finance operations scale – so we need people who think critically about what and why they build, the impact it will have on our team, and how to measure success. 

We're looking for AI-native builders who know how to automate complex operational workflows. The accounting and finance domain knowledge can be learned — what matters most is that you're wired to build, that you default to AI in how you approach problems, and that you can map messy business processes into clean, automated systems. 

Why Join Us

• Build AI automation for our Financial Operations from the ground up
• Work on cutting-edge systems directly impacting key Finance processes in a public company 
• Collaborate with talented engineers and finance team members
• Access to enterprise AI tools — Claude Code, Cursor, and LLM APIs. We invest heavily in AI infrastructure so you can build and experiment.

What You'll Do

This is a hands-on individual contributor role. You will design, build, and ship automations — not just evaluate tools or write strategy decks.

• Turn complex Accounting and Finance problems into clear system designs, experiments, and implementation plans
• Build and maintain AI-powered automation that improves operational efficiency, accuracy, and scale across Finance functions
• Automate workflows (journal entries, reconciliations, flux analysis) using SQL, Python, and agentic AI
• Maintain clean, auditable data throughout automated workflows, with dashboards and controls that support both operational and compliance needs
• Partner with the internal SOX team and external auditors to ensure automated processes meet compliance standards and are well-documented
• Build and scale AI literacy across the Finance team through runbooks, documentation, best practices, and hands-on training 

What You'll Bring

• At least 5+ years of work experience building automation, operational workflows, or data systems in any industry. 
• Familiarity with LLM deployment, context engineering and comfortable writing SQL or Python code
• Understanding of machine learning lifecycle concepts: training, evaluation, deployment, monitoring

Systems Thinking: You understand how data flows through operational systems. You can look at a business process, identify the inputs, outputs, dependencies, and failure modes, and design automation around it.

System Design: You take complex, messy problems and reduce them to simple, durable architecture. 

Communication: Articulate problems clearly to both technical and non-technical audiences. You write clean documentation, build dashboards that tell a story, and can walk a stakeholder through your design rationale.

AI Alchemy: You have high agency and a tinkering mindset. You default to experimenting, running variations with new tools and methods - LLMs, automation platforms, coding assistants until you can transmute data into high quality results. You're comfortable writing SQL code, working with APIs, and stitching tools together to ship solutions fast.

Impact Driven: You optimize for impact over novelty, choosing the right tools for the job and ensure performance, scalability and resiliency.

Bonus if you have:

• Experience in Accounting or Finance 
• Comfort working in regulated or compliance-sensitive environments

Tools and Technologies

You'll work across a range of tools and we expect this list to evolve. Ideal candidates will have experience with the following tech stack:

• AI coding assistants: Claude Code, Cursor, or similar 
• Workflow automation: Gumloop or similar platforms
• MCP integrations
• Agentic AI frameworks or building automation flows 
• Data / ERP platforms: Snowflake, NetSuite, Ramp or similar 

Note: Opendoor provides enterprise-level access to all AI tools listed above. Our engineers currently consume billions of AI tokens per month across the company and are not constrained by token limits or personal account restrictions.

Compensation

Our compensation plan consists of a base salary and Opendoor equity  in addition to a comprehensive package of benefits including paid time off, paid holidays, medical/dental/vision insurance, basic life insurance, and 401(k) to eligible employees.  All compensation parameters are based on experience.

 #LI-DM

#LI-Onsite

As a Senior Cloud Security Engineer at 7shifts, you won't just maintain our security posture, you'll raise it. Working closely with engineering squads, infrastructure, and every team in between, you'll automate what's manual, secure what's growing fast, and help us build security into the way we work rather than bolting it on after. Reporting to our Director of Information Security and Privacy, you'll own meaningful work across cloud security, SOC 2, and the AI tooling frontier, at a company that actually moves fast enough to make it interesting.

What you’ll do:

• Replace manual SOC 2 evidence collection with automated drift detection by building Security-as-Code directly into our GCP/GKE environment
• Partner with engineering squads to embed security into the Definition of Done, so it ships with the feature, not after
• Engineer and tune Datadog SIEM detections to cut noise, surface what matters, and route high-fidelity alerts straight to #secops
• Reduce PII exposure in real troubleshooting workflows by building masking and synthetic data tooling that developers actually want to use
• Own vulnerability management end-to-end, from identifying risks to implementing mitigations across the org
• Lead incident response when it counts and run tabletop exercises so the team is ready before it does
• Evaluate and onboard new security tooling by running POCs, gathering requirements, and making calls that move us forward without slowing teams down
• Assist with execution and deliverables pertaining to Information Security roadmap
• React promptly, decisively, and independently in high-stress situations

What you bring:

• 5+ years implementing security controls and operations in a SaaS environment
• Hands-on with Google Cloud Platform (GCP) and Google Kubernetes Engine (GKE), and comfortable securing the CI/CD pipelines and GitHub Actions workflows that engineering teams actually ship through
• Real experience seeing a SOC 2 audit through to completion, not just participating in one
• Actively using AI tooling in your work today, with the judgment to help teams adopt it quickly and the instinct to know where it introduces risk
• Know your way around Infrastructure-as-Code and can spot a misconfiguration before it becomes a problem
• Understand how modern software gets built, including PR processes, and can work within them without slowing anyone down
• A strong communicator who can translate complex security tradeoffs clearly to engineers, executives, and everyone in between
• A creative problem solver who figures things out even when the resources, the team, or the playbook aren't there yet

It’d be even cooler if you had:

• Proficient in Python or Go for security automation, with the ability to read and understand code,  experience with PHP or Elixir is a significant advantage in our environment
• Deep familiarity with security technologies, including SIEM, and hands-on experience with Datadog for observability-driven security
• Solid grounding in application security, threat and risk assessments, and security risk management, with exposure to bug bounty programs as a plus

This role is an existing vacancy and is part of our current hiring plan 

Compensation

The base compensation range for this position is $130,000-$160,000 annually. This range reflects the full growth path for the role, from building core skills to accomplished performance, through to role mastery. We typically target the accomplished level when hiring externally. At this level, individuals bring relevant experience in the role, demonstrate strong job-related skills, operate with confidence and consistency, and are able to deliver impact with limited ramp-up while still having meaningful opportunity to grow.

Compensation at 7shifts is performance and growth-driven. As you develop your skills and expand your impact over time, your compensation grows with you. Your specific placement within this range is based on your job-related skills, knowledge, and experience, as well as our internal equity assessment. We are always happy to discuss our approach throughout the hiring process.

As a Senior Cloud Security Engineer at 7shifts, you won't just maintain our security posture, you'll raise it. Working closely with engineering squads, infrastructure, and every team in between, you'll automate what's manual, secure what's growing fast, and help us build security into the way we work rather than bolting it on after. Reporting to our Director of Information Security and Privacy, you'll own meaningful work across cloud security, SOC 2, and the AI tooling frontier, at a company that actually moves fast enough to make it interesting.

What you’ll do:

• Replace manual SOC 2 evidence collection with automated drift detection by building Security-as-Code directly into our GCP/GKE environment
• Partner with engineering squads to embed security into the Definition of Done, so it ships with the feature, not after
• Engineer and tune Datadog SIEM detections to cut noise, surface what matters, and route high-fidelity alerts straight to #secops
• Reduce PII exposure in real troubleshooting workflows by building masking and synthetic data tooling that developers actually want to use
• Own vulnerability management end-to-end, from identifying risks to implementing mitigations across the org
• Lead incident response when it counts and run tabletop exercises so the team is ready before it does
• Evaluate and onboard new security tooling by running POCs, gathering requirements, and making calls that move us forward without slowing teams down
• Assist with execution and deliverables pertaining to Information Security roadmap
• React promptly, decisively, and independently in high-stress situations

What you bring:

• 5+ years implementing security controls and operations in a SaaS environment
• Hands-on with Google Cloud Platform (GCP) and Google Kubernetes Engine (GKE), and comfortable securing the CI/CD pipelines and GitHub Actions workflows that engineering teams actually ship through
• Real experience seeing a SOC 2 audit through to completion, not just participating in one
• Actively using AI tooling in your work today, with the judgment to help teams adopt it quickly and the instinct to know where it introduces risk
• Know your way around Infrastructure-as-Code and can spot a misconfiguration before it becomes a problem
• Understand how modern software gets built, including PR processes, and can work within them without slowing anyone down
• A strong communicator who can translate complex security tradeoffs clearly to engineers, executives, and everyone in between
• A creative problem solver who figures things out even when the resources, the team, or the playbook aren't there yet

It’d be even cooler if you had:

• Proficient in Python or Go for security automation, with the ability to read and understand code,  experience with PHP or Elixir is a significant advantage in our environment
• Deep familiarity with security technologies, including SIEM, and hands-on experience with Datadog for observability-driven security
• Solid grounding in application security, threat and risk assessments, and security risk management, with exposure to bug bounty programs as a plus

This role is an existing vacancy and is part of our current hiring plan 

Compensation

The base compensation range for this position is $130,000-$160,000 annually. This range reflects the full growth path for the role, from building core skills to accomplished performance, through to role mastery. We typically target the accomplished level when hiring externally. At this level, individuals bring relevant experience in the role, demonstrate strong job-related skills, operate with confidence and consistency, and are able to deliver impact with limited ramp-up while still having meaningful opportunity to grow.

Compensation at 7shifts is performance and growth-driven. As you develop your skills and expand your impact over time, your compensation grows with you. Your specific placement within this range is based on your job-related skills, knowledge, and experience, as well as our internal equity assessment. We are always happy to discuss our approach throughout the hiring process.

Who we are

About Stripe

Stripe is a financial infrastructure platform for businesses. Millions of companies—from the world’s largest enterprises to the most ambitious startups—use Stripe to accept payments, grow their revenue, and accelerate new business opportunities. Our mission is to increase the GDP of the internet, and we have a staggering amount of work ahead. That means you have an unprecedented opportunity to put the global economy within everyone’s reach while doing the most important work of your career.

About the team

The Supportability Evaluation team acts as stewards of the financial ecosystem. Our mission is to protect Stripe’s reputation with our global financial partners by architecting highly precise, automated supportability controls. We develop the AI/ML models and systems that detect and action supportability violations in real-time. We're responsible for building high-fidelity detection engines that ensure our merchants remain compliant across the globe, balancing the scale of millions of users with the surgical precision required by the world’s largest financial institutions.

What you’ll do

As a Machine Learning Engineer in Supportability, you will be responsible for designing, building, training, evaluating, deploying, and owning AI/ML models in production. You will work closely with software engineers, machine learning engineers, product managers, and data scientists to operate Stripe’s ML powered systems, features, and products. You will also have the opportunity to contribute to and influence AI/ML architecture at Stripe and be a part of a larger community.

Responsibilities

• Design state-of-the-art AI/ML models and large scale systems for detection and decisioning for Stripe products based onAI/ML principles, domain knowledge, and engineering constraints
• Drive the expansion of Stripe's largest LLM-based system, scaling its usage and integrating new capabilities through agentic approaches or supervised learning.
• Rapidly prototype new AI/ML-based approaches to achieve key business goals.  
• Develop processes to train and evaluate models in offline and online environments
• Integrate models into production systems and ensure their scalability and reliability
• Collaborate with product and strategy partners to propose, prioritize, and implement new product features
• Engage with the latest developments in AI/ML and take calculated risks in transforming innovative ideas into productionized solutions
• Explore cutting-edge AI/ML techniques and evaluate their potential to solve business problems

Who you are

We are looking for ML Engineers who are passionate about building AI/ML and AI systems that touch the lives of millions. You have experience building and evaluating advanced AI/ML models, and deploying them to production. You are comfortable with ambiguity, love to take initiative, have a bias towards action, and thrive in a collaborative environment.

Minimum requirements

• 2+ years of industry experience building and shipping AI/ML systems in production
• Proficient with AI/ML libraries and frameworks such as PyTorch, TensorFlow, XGBoost, as well as Spark 
• Knowledge of various AI/ML algorithms and model architectures
• Hands-on experience in designing, training, and evaluating machine learning models
• Hands-on experience in productionizing and deploying models at scale
• Experience rigorously evaluating model performance, including cleaning data, and working with data-generating processes to improve signal and reduce noise in high-noise datasets.
• Proficiency in creatively applying modern machine learning techniques and Generative AI models to solve complex business problems.

Preferred qualifications

• MS/PhD degree in AI/ML or related field (e.g. math, physics, statistics)
• Experience with DNNs including the latest architectures such as transformers and LLMs
• Experience working in Java or Ruby codebases
• Proven track record of building and deploying AI/ML systems that have effectively solved ambiguous business problems
• Experience with online experimentation such as A/B testing or multi-armed bandits.
• Experience with model calibration

About the Role:  

Veeam, following its acquisition of Securiti AI - the leader in AI-powered data security posture management (DSPM) - is seeking a Senior Sales Engineer to drive technical leadership in our sales team, focusing on the Securiti AI portfolio. 

You will guide customers from needs assessment to solution design, delivering hands-on demos and proof-of-concepts to showcase value. Success in this role requires strong technical skills and the ability to build trust with clients.
You’re already a technical leader trusted at executive levels when the conversation shifts from “we need to secure our data” to “we need to enable safe, compliant AI at scale.” 
You’re already an expert on data/AI security and a proven enterprise sales engineer. Now it’s time to join the home of Data and AI Trust. 
You’ve already seen our new release of Agent Commander, but you haven’t seen what’s coming next. After the acquisition of Securiti AI, Veeam is even further into the forefront of data resilience, protection, trust, and the acceleration of safe AI at scale.
Are you ready for an exciting new challenge at enterprise scale?

What You’ll Do: 

• Serve as the primary technical data protection expert for Securiti AI and Veeam solutions throughout the pre-sales cycle.
  
• Lead discovery to translate risk, architecture, and business goals into a practical solution approach.
  
• Design and deliver tailored demos and hands-on proof-of-concepts that prove value in the customer’s environment.
  
• Drive technical conversations on AI Trust, Data Discovery, DSPM, Data Access & Governance, and Compliance (including GDPR, HIPAA, PCI-DSS).
  
• Provide solution guidance across AWS, Azure, and GCP, including cloud security best practices and identity/access concepts.
  
• Partner cross-functionally with sales, product, engineering, and customer success to ensure clean technical handoff and customer confidence post-sale.
  
• Hone your professional development through hands-on experimentation, team collaboration, robust onboarding, and more.
  
• Work ~80% remote, with client-facing travel usually 1-2 short trips per month.

What You’ll Bring (Required): 

• Extensive enterprise sales experience in data protection, cloud security, networks, and AI.
  
• Proven ability to quickly develop trust and credibility with both technical and business stakeholders.
  
• Strong technical leadership foundation in enterprise data protection, cloud security, networks, and AI.
  
• Hands-on experience with AWS, Azure, or GCP (multi-cloud exposure strongly valued).
  
• Deep working knowledge of data privacy/security and compliance programs, especially GDPR, HIPAA, and PCI-DSS, plus data governance and access controls.
  
• Ability to build and run compelling demos and POCs while earning trust as a customer-facing technical lead.
  
• Practical technical fluency with areas such as Linux, Kubernetes/containerized environments, and modern cloud/data architectures.
  
• Strong expertise with DSPM, DLP, data discovery approaches (e.g., patterns/keywords/dictionaries/regex/exact matching) and with common cloud/data systems (e.g., object storage and enterprise databases/warehouses).
  

Preferred (strong differentiators): 

• Experience applying or discussing GenAI security in real enterprise contexts, including RAG (Retrieval-Augmented Generation) concepts and vector databases / indexing approaches.
  Exposure to CASB / SASE / DLP technologies and how customers operationalize them.
  Relevant certifications (CISSP, CISM, AWS/Azure/GCP).
  

#LI-JC3

What We Need

We’re looking for a Senior AI Engineer to design and build production-grade agent and RAG systems that power intelligent, reliable automation across our platform. This role combines hands-on engineering with system-level thinking—owning everything from architecture and evaluation to scalability, observability, and reliability in production. The ideal candidate thrives in ambiguity, moves quickly from prototype to production, and brings a strong focus on quality, safety, and real-world impact.

What You'll Do

Agent Platform & Architecture

• Design and build core agent platform capabilities, including orchestration patterns (e.g., ReAct, Plan-and-Execute), tool execution layers, memory/context management, and guardrails
• Develop reusable agent skills and a standardized tool ecosystem aligned with platform conventions
• Implement enterprise-grade controls for agent execution, including human-in-the-loop workflows, permissioning, and policy enforcement

Retrieval & AI Systems

• Design and implement RAG services, including hybrid retrieval, reranking, embeddings, and citation behavior
• Define evaluation frameworks and quality metrics to ensure grounded, reliable outputs

Production Engineering & Reliability

• Build automated evaluation and regression pipelines to maintain quality at scale
• Establish observability (tracing, metrics, alerting) and optimize systems for latency, throughput, and cost
• Define best practices and incident response processes to ensure production readiness

Applied Research & Technical Strategy

• Prototype and productionize emerging approaches (e.g., GraphRAG, knowledge graphs, MCP integrations)
• Evaluate AI frameworks and infrastructure (e.g., LangChain, LangGraph, AutoGen, LlamaIndex) and guide platform decisions

Technical Execution

• Diagnose and resolve complex AI system issues (retrieval quality, hallucinations, prompt regressions, agent failures)
• Lead system design and drive technical decisions through hands-on prototyping and benchmarking

What You Bring

• BS in Computer Science, AI, Electrical Engineering, or related field (advanced degree preferred or equivalent experience)
• 5+ years of software engineering experience, including building and deploying production-grade LLM, agent, or RAG systems
• Proven track record of shipping and supporting AI-powered features in production
• Strong Python skills (API design, testing, error handling, environment management)
• Working proficiency in C# or C++
• Deep understanding of RAG system design and evaluation methodologies
• Experience building evaluation frameworks (test sets, metrics, regression pipelines)
• Understanding of LLM security risks (prompt injection, data leakage, agent misuse)
• Experience with graph databases, knowledge graphs, or GraphRAG preferred
• Experience designing human-in-the-loop systems and execution controls preferred
• Experience with agent frameworks (e.g., LangChain, LangGraph, AutoGen, LlamaIndex)
• You are willing and able to commute to our Toronto, ON office on a hybrid (once a week) schedule
• Manual Dexterity: Repetitive motion of wrists, hands and fingers for using a computer.
• Stationary Tasks: Sitting for extended periods, remaining in a stationary position.

What We Offer

Our comprehensive compensation package is vital in how we recognize our people for the impact they make on us reaching our goals as a company.

For this role, the estimated base is CAD $130,000 - CAD $165,000 + Bonus. The actual salary may vary based on a range of factors, including market and individual qualifications objectively assessed during the interview process.

The range listed above is a guideline and may be modified. People Experience offers a comprehensive benefits package in addition to cash compensation that includes but is not limited to RRSP and medical/dental coverage. Speak with your Recruiter for more details on our Total Rewards philosophy.

Required:

• 3+ in Windows desktop application development using Windows App SDK, WinUI (or similar), C#, XAML — and ideally additional experience with native Windows code (C++, Win32/WinRT/COM).
• Deep understanding of Windows application architecture, including interop between managed code (.NET) and native code.
• Proven track record of designing, building, and shipping production-quality desktop applications, with an emphasis on reliability, performance, scalability, and maintainability.
• Strong experience with accessibility APIs on Windows (e.g. Microsoft UI Automation or similar), and a dedication to building accessible and inclusive software.
• Excellent software engineering fundamentals: OOP, design patterns, data structures, algorithms, memory management, multi-threading or asynchronous programming (where relevant).
• Experience leading technical design, mentoring other engineers, conducting code reviews, and making architecture-level decisions.
• Strong communication skills; ability to articulate tradeoffs, collaborate with cross-functional teams, and drive consensus.
• A user-centric mindset: focus on building polished, intuitive, and accessible experiences for end users.

Preferred / Bonus:

• Experience with writing automated tests for UI — unit tests, integration tests, UI automation tests; familiarity with relevant testing frameworks.
• Experience with performance optimization for desktop apps (memory usage, startup time, rendering performance, high-DPI support, responsiveness under load).
• Experience with localization/globalization, right-to-left UI support, internationalization, accessibility for multiple regions.
• Familiarity with telemetry, analytics, crash reporting, logging, and error monitoring in desktop applications.
• Previous experience in shaping CI/CD workflows, release pipelines, and deployment strategies for desktop applications.
• Demonstrated ability to take ownership of feature areas or modules and drive them long-term, including maintenance, refactoring, and technical debt management.

What we offer

• A high-impact role: you will define architecture, shape the future of our Windows product, and directly influence what millions of users see and experience.
• A collaborative, flat-structure engineering culture — you are not just a coder, but a builder and a decision-maker.
• Opportunities to lead — mentor others, steer technical direction, and grow into broader technical leadership (e.g. Tech Lead, Architect).
• Flexibility, autonomy, and responsibility: you define how to solve problems, own features end-to-end, and contribute to long-term product vision.
• A purpose-driven mission: building software that’s reliable, accessible, and user-centered — making a real difference for people.                  

Think you’re a good fit for this job? 

Tell us more about yourself and why you're interested in the role when you apply.
And don’t forget to include links to your portfolio and LinkedIn.

Not looking but know someone who would make a great fit? 
Refer them! 

Speechify is committed to a diverse and inclusive workplace. 
Speechify does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status.

About the team + role

We are building an elite team, applying frontier technologies to the world’s biggest financial problems. We’re looking for bold thinkers. Sharp problem-solvers. Builders who are wired to make an impact. Robinhood isn’t a place for complacency, it’s where ambitious people do the best work of their careers. We’re a high-performing, fast-moving team with ethics at the center of everything we do. Expectations are high, and so are the rewards. 

The Threat Intelligence team reduces organizational risk by rapidly detecting, understanding, and disrupting adversary activity. We research criminal ecosystems targeting our brand, customers, and infrastructure, and work with partners to translate that intelligence into detections, controls, and customer protections. Our work enables Security, Engineering, Trust & Safety, and executive leaders to focus resources where risk is highest. We operate with a strong sense of ownership, clear communication, and a commitment to protecting customers so they can confidently participate in the financial system!

As a Staff Security Analyst, Threat Intelligence, you will operate at the forefront of advanced and evolving threats targeting Robinhood and our customers. You will actively hunt for emerging phishing, scam, impersonation, fraud, and infrastructure abuse campaigns while building scalable systems that turn intelligence into action. This role combines hands-on investigation, program design, mentorship, and stakeholder engagement. Your work will shape proactive controls, influence product and security decisions, and strengthen our overall threat defense strategy.

This role is based in our Toronto, Canada office(s), with in-person attendance expected at least 3 days per week. 

At Robinhood, we believe in the power of in-person work to accelerate progress, spark innovation, and strengthen community. Our office experience is intentional, energizing, and designed to fully support high-performing teams.

What you’ll do

• Proactively hunt and map criminal ecosystems targeting Robinhood and its customers, then translate intelligence into scalable systems and coordinated defenses that disrupt adversaries before they cause harm.
• Build and operationalize a comprehensive “Universe of Threats” by identifying, tracking, and prioritizing adversaries across phishing, scams, impersonation, fraud, and infrastructure abuse.
• Establish and mature a proactive threat intelligence lifecycle by developing industry partnerships, collaborating with trusted peers and federal authorities, and cultivating online personas to generate early warning capabilities that protect Robinhood’s business operations.
• Investigate attacker infrastructure across domains, DNS, certificate transparency logs, cloud providers, and telecom platforms, and convert findings into concrete detections, controls, and customer protections.
• Coordinate threat actor infrastructure takedowns with hosting providers, domain registrars, cloud platforms, and other infrastructure partners to disrupt adversary operations at scale.
• Design and automate intelligence workflows using OSINT tooling, enrichment pipelines, data analysis tools, and case management systems to scale analysis and reporting.
• Partner directly with Detection & Response, Automation, Customer Trust & Safety (Fraud and Financial Crimes), Security Engineering, Corporate Security, Risk, and executive leaders to prioritize threats based on measurable business risk.

What you bring

• 8–12+ years of total experience, including 3–5+ years operating at a senior or staff-level scope in threat intelligence, brand protection, or cyber investigations.
• Hands-on experience tracking criminal ecosystems tied to phishing, scams, impersonation, fraud, and infrastructure abuse, and the ability to move from isolated indicators to campaign- and actor-level analysis.
• Deep familiarity with domain registration patterns, DNS and certificate transparency analysis, cloud and hosting abuse across providers (e.g., AWS, GCP, Azure, VPS), and attacker monetization methods.
• Experience using OSINT tooling, SQL, Python, notebooks, SIEM or SOAR platforms, OpenCTI, and case management systems to analyze data and automate workflows.
• Ability to translate complex technical threats into clear business risk for technical teams and executive audiences through strong written and verbal communication.
• Experience mentoring others or leading initiatives across teams, with a high level of accountability and sound risk judgment in ambiguous situations.

Nice to have

• Experience with crypto investigations or on-chain analysis.
• Background in highly regulated industries such as fintech, financial services, payments, crypto, healthcare, or government.

About the team + role

We are building an elite team, applying frontier technologies to the world’s biggest financial problems. We’re looking for bold thinkers. Sharp problem-solvers. Builders who are wired to make an impact. Robinhood isn’t a place for complacency, it’s where ambitious people do the best work of their careers. We’re a high-performing, fast-moving team with ethics at the center of everything we do. Expectations are high, and so are the rewards. 

The Red Team team’s mission is to proactively identify and simulate real-world threats against Robinhood’s platforms, properties, and people. Through red teaming and adversarial simulations, the team evaluates security controls, uncovers vulnerabilities, and helps continuously strengthen Robinhood’s overall security posture in close partnership with Detection & Response, Physical Security, and Engineering.

As a Staff Offensive Security Engineer, you will take a hands-on role in designing and executing stealthy adversarial simulations to validate assumptions and uncover gaps in detection and response. You’ll leverage threat modeling, penetration testing, and research-driven techniques to emulate sophisticated attackers, while collaborating cross-functionally to improve defenses and shape more secure systems.

This role is based in our Toronto, Canada office(s), with in-person attendance expected at least 3 days per week. 

At Robinhood, we believe in the power of in-person work to accelerate progress, spark innovation, and strengthen community. Our office experience is intentional, energizing, and designed to fully support high-performing teams.

What you’ll do

• Plan and execute red team operations, adversarial simulations, and penetration tests across applications, infrastructure, networks, offices, and internal processes.
• Perform threat modeling for new and existing services, clearly articulating security risks and tradeoffs to engineering and risk stakeholders.
• Conduct vulnerability research, exploit development, and testing using both custom tooling and public proof-of-concept techniques.
• Partner with detection and response teams to simulate realistic attack scenarios and evaluate monitoring and incident response readiness.
• Write and maintain tooling to automate and scale offensive security assessments.
• Serve as a subject matter expert by documenting findings, recommending remediation strategies, and supporting teams through fixes.
• Mentor teammates and contribute to shared knowledge through internal documentation, presentations, and external talks or blog posts.

What you bring

• 8+ years of hands-on experience in red teaming, offensive security, or penetration testing.
• Demonstrated experience mentoring or guiding other security engineers.
• Strong understanding of threat modeling methodologies and the MITRE ATT&CK framework.
• Experience testing modern environments, including cloud platforms (AWS, GCP), containerized systems (Docker, Kubernetes), CI pipelines, and identity systems.
• Working knowledge of defensive security tools such as IDS/IPS, EDR, packet capture, and network monitoring, including common evasion techniques.
• Proficiency in Python, Go, or JavaScript for exploit development, tooling, or automation.
• Clear written and verbal communication skills, with the ability to explain technical findings to both engineers and senior leaders.
• Experience collaborating with distributed teams and documenting work through tools such as Slack, Jira, GitHub, and email.

Bonus points:

• Experience working in financial technology or regulated environments.
• Prior experience serving as a technical lead on security initiatives.

What we offer

• Challenging, high-impact work to grow your career
• Performance driven compensation with multipliers for outsized impact, bonus programs, and equity ownership
• Top tier benefits to fuel your work, including supplemental health insurance, ancillary insurance, and mental health support programs
• Lifestyle wallet - a highly flexible employer-paid benefits spending account expenses beyond traditional benefits such as wellness, childcare, learning, and more.
• Time off to recharge including company holidays, paid time off, sick time, paid volunteer time off, parental leave, and more!
• Exceptional office experience with catered meals, events, and comfortable workspaces. 
• Monthly commuter stipend to help offset in-office commuting costs

Our team is committed to providing an inclusive and welcoming interview experience for all candidates. If you require a specific accommodation during the application or interview process due to a physical or mental condition, please complete this Applicant Accommodation Form to notify our team. The form should only be completed if you need a specific accommodation.

AI Usage Disclosure: Robinhood uses artificial intelligence (AI) tools to support parts of our recruiting process. These tools enhance the efficiency and consistency of our hiring process; however, all hiring decisions are made by our hiring teams.

Vacancy Notice: This job posting represents an existing vacancy that we are actively seeking to fill.

About the team + role

We are building an elite team, applying frontier technologies to the world’s biggest financial problems. We’re looking for bold thinkers. Sharp problem-solvers. Builders who are wired to make an impact. Robinhood isn’t a place for complacency, it’s where ambitious people do the best work of their careers. We’re a high-performing, fast-moving team with ethics at the center of everything we do. Expectations are high, and so are the rewards. 

The Red Team team’s mission is to proactively identify and simulate real-world threats against Robinhood’s platforms, properties, and people. Through red teaming and adversarial simulations, the team evaluates security controls, uncovers vulnerabilities, and helps continuously strengthen Robinhood’s overall security posture in close partnership with Detection & Response, Physical Security, and Engineering.

As a Staff Offensive Security Engineer, you will take a hands-on role in designing and executing stealthy adversarial simulations to validate assumptions and uncover gaps in detection and response. You’ll leverage threat modeling, penetration testing, and research-driven techniques to emulate sophisticated attackers, while collaborating cross-functionally to improve defenses and shape more secure systems.

This role is based in our Toronto, Canada office(s), with in-person attendance expected at least 3 days per week. 

At Robinhood, we believe in the power of in-person work to accelerate progress, spark innovation, and strengthen community. Our office experience is intentional, energizing, and designed to fully support high-performing teams.

What you’ll do

• Plan and execute red team operations, adversarial simulations, and penetration tests across applications, infrastructure, networks, offices, and internal processes.
• Perform threat modeling for new and existing services, clearly articulating security risks and tradeoffs to engineering and risk stakeholders.
• Conduct vulnerability research, exploit development, and testing using both custom tooling and public proof-of-concept techniques.
• Partner with detection and response teams to simulate realistic attack scenarios and evaluate monitoring and incident response readiness.
• Write and maintain tooling to automate and scale offensive security assessments.
• Serve as a subject matter expert by documenting findings, recommending remediation strategies, and supporting teams through fixes.
• Mentor teammates and contribute to shared knowledge through internal documentation, presentations, and external talks or blog posts.

What you bring

• 8+ years of hands-on experience in red teaming, offensive security, or penetration testing.
• Demonstrated experience mentoring or guiding other security engineers.
• Strong understanding of threat modeling methodologies and the MITRE ATT&CK framework.
• Experience testing modern environments, including cloud platforms (AWS, GCP), containerized systems (Docker, Kubernetes), CI pipelines, and identity systems.
• Working knowledge of defensive security tools such as IDS/IPS, EDR, packet capture, and network monitoring, including common evasion techniques.
• Proficiency in Python, Go, or JavaScript for exploit development, tooling, or automation.
• Clear written and verbal communication skills, with the ability to explain technical findings to both engineers and senior leaders.
• Experience collaborating with distributed teams and documenting work through tools such as Slack, Jira, GitHub, and email.

Bonus points:

• Experience working in financial technology or regulated environments.
• Prior experience serving as a technical lead on security initiatives.

What we offer

• Challenging, high-impact work to grow your career
• Performance driven compensation with multipliers for outsized impact, bonus programs, and equity ownership
• Top tier benefits to fuel your work, including supplemental health insurance, ancillary insurance, and mental health support programs
• Lifestyle wallet - a highly flexible employer-paid benefits spending account expenses beyond traditional benefits such as wellness, childcare, learning, and more.
• Time off to recharge including company holidays, paid time off, sick time, paid volunteer time off, parental leave, and more!
• Exceptional office experience with catered meals, events, and comfortable workspaces. 
• Monthly commuter stipend to help offset in-office commuting costs

Our team is committed to providing an inclusive and welcoming interview experience for all candidates. If you require a specific accommodation during the application or interview process due to a physical or mental condition, please complete this Applicant Accommodation Form to notify our team. The form should only be completed if you need a specific accommodation.

AI Usage Disclosure: Robinhood uses artificial intelligence (AI) tools to support parts of our recruiting process. These tools enhance the efficiency and consistency of our hiring process; however, all hiring decisions are made by our hiring teams.

Vacancy Notice: This job posting represents an existing vacancy that we are actively seeking to fill.

About the team + role

We are building an elite team, applying frontier technologies to the world’s biggest financial problems. We’re looking for bold thinkers. Sharp problem-solvers. Builders who are wired to make an impact. Robinhood isn’t a place for complacency, it’s where ambitious people do the best work of their careers. We’re a high-performing, fast-moving team with ethics at the center of everything we do. Expectations are high, and so are the rewards.

The Cloud Security team is focused on protecting Robinhood’s AWS cloud and providing engineers with foundational security capabilities. It is a major contributor to the company’s least privilege objective to manage network traffic and reduce the level of access that employees have or could obtain through escalation.

A Senior Security Engineer on the Cloud Security team is a well-rounded technologist and a deep subject matter expert in cloud security and building security controls on Amazon Web Services (AWS). The ideal candidate for this role will embody and exemplify our Safety First value.

This role is based in our Bellevue, WA offices, with in-person attendance expected at least 3 days per week.

At Robinhood, we believe in the power of in-person work to accelerate progress, spark innovation, and strengthen community. Our office experience is intentional, energizing, and designed to fully support high-performing teams.

What you’ll do

• As a Senior Security Engineer you will be part of a team which owns the security posture for cloud infrastructure on which all Robinhood products are built
• You will build and operate solutions that protect foundational infrastructure and make it easier for Robinhood developers to protect their applications
• Protect Robinhood’s AWS cloud environment and provide engineers with foundational security capabilities
• Build, configure and set up systems with a safety first approach

What you bring

• Securing enterprise applications on AWS by building software, services, and automation that provide safe defaults, paved roads, and intuitive capabilities to other developers
• Proficiency with Golang (preferred) or Python and Infrastructure-as-Code (IaC) using Terraform
• Strong command of industry best practices like the AWS Well-Architected framework and CIS Benchmarks and have expert level knowledge of AWS security services like Identity & Access Management (IAM), Service Control Policies (SCPs), AWS WAF, and AWS Network Firewall

What we offer

• Challenging, high-impact work to grow your career
• Performance driven compensation with multipliers for outsized impact, bonus programs, equity ownership, and 401(k) matching
• Best in class benefits to fuel your work, including 100% paid health insurance for employees with 90% coverage for dependents
• Lifestyle wallet - a highly flexible benefits spending account for wellness, learning, and more
• Employer-paid life & disability insurance, fertility benefits, and mental health benefits
• Time off to recharge including company holidays, paid time off, sick time, parental leave, and more!
• Exceptional office experience with catered meals, events, and comfortable workspaces.

Job Summary

This role is responsible for leading the design and evolution of enterprise-grade cloud infrastructure that underpins a large-scale data platform on AWS. As a Staff Engineer, you will define architectural standards, ensure alignment with security and compliance requirements, and enable multiple teams to build and operate reliable, scalable data systems.

You will work across organizational boundaries to influence platform direction, drive adoption of best practices, and ensure the infrastructure supports high-volume data ingestion, processing, and analytics workloads. The role requires both strategic oversight and hands-on technical leadership in building resilient, cost-efficient, and observable systems in a complex enterprise environment.

Roles & Responsibilities

• This role is responsible for leading the design and evolution of enterprise-grade cloud infrastructure that underpins a large-scale data platform on AWS.
• As a Staff Engineer, you will define architectural standards.
• Ensure alignment with security and compliance requirements.
• Enable multiple teams to build and operate reliable, scalable data systems.
• You will work across organizational boundaries to influence platform direction, drive adoption of best practices, and ensure the infrastructure supports high-volume data ingestion, processing, and analytics workloads.
• The role requires both strategic oversight and hands-on technical leadership in building resilient, cost-efficient, and observable systems in a complex enterprise environment.

Required Qualifications

• Deep expertise in AWS services (e.g., S3, EKS/ECS, Lambda, RDS, Redshift, IAM, VPC) and enterprise cloud architecture
• Strong experience designing and operating large-scale data platforms (data lakes, lakehouses, batch and streaming systems)
• Advanced proficiency with Infrastructure as Code (Terraform, CloudFormation) and automation practices
• Solid understanding of distributed systems, scalability, and performance optimization
• Experience with containerization and orchestration (Kubernetes/EKS) in production environments
• Experience designing and operating API gateway, ingress, and service-to-service communication patterns in AWS environments, including authentication, authorization, throttling, routing, observability, and security controls.

Preferred Qualifications

• Strong knowledge of cloud security, identity (IAM), networking, and compliance frameworks (e.g., ISO, SOC2)
• Experience implementing observability (monitoring, logging, tracing) and reliability engineering practices
• Experience with Kong API Gateway or similar API gateway platforms is a plus
• Proficiency in at least one programming language (e.g., Python, Go, Java)
• Experience with CI/CD pipelines and platform engineering approaches for self-service infrastructure
• Ability to influence architecture across teams and operate effectively in a large, matrixed enterprise environment
• Strong communication skills, with the ability to engage both technical and non-technical stakeholders
• Mentorship and technical leadership experience, guiding engineers and setting engineering standards

About Behavox

Behavox is a cloud-native AI company providing an integrated controls platform for global banks, asset managers, hedge funds, private equity firms, insurance businesses, and commodity firms. The platform unifies communications and trade surveillance, compliant archiving, policy management as well as front-office analytics on a single, AI-native technology stack, delivered as a globally scalable SaaS-based cloud service.

At Behavox, our engineering culture is built around speed, experimentation, and technical excellence, following agile principles and rapid iteration. We constantly test and adopt the latest cloud technologies and AI tooling, optimising for fast feedback loops and execution. We look for people who can move fast, challenge conventional wisdom, and who want to work at the frontier of modern AI, SaaS platforms, and distributed systems.

Behavox is a high-performance organisation with a strong bias toward delivery, ownership, and responsibility. We commit, and we execute. We are building systems that are complex, mission-critical, and global in scale; systems that many consider too large or too difficult. To do that, we seek the smartest, most technically capable engineers and technologists who take end-to-end responsibility and want to win by building what others cannot.

Founded in 2014 and backed by SoftBank Vision Fund, Behavox is headquartered in London, with offices worldwide, including New York City, Montreal, Seattle, Singapore, and Tokyo.

About the Role

The Software Engineer (Java) operates at a senior engineer level, driving technical direction across core product domains. The role combines deep hands-on Java engineering with architectural ownership — from high-level system design and technology selection to leading delivery of critical, cross-cutting platform capabilities.

At this level, engineering excellence extends beyond implementation: the engineer determines the right approach to complex problems, communicates technical decisions across functions, participates in hiring, and is accountable for the long-term health of the systems they own. This level demands sound judgment on technology and business trade-offs and the ability to act as a technical lead. A defining expectation is mastery of AI-assisted engineering — leveraging agentic AI tools as force multipliers while retaining full ownership of architecture, quality, and technical outcomes.

What You'll Bring

• Expert Java engineering: Deep understanding of Java internals — GC tuning, Collections Framework, advanced concurrency (java.util.concurrent, multithreading), NIO/NIO2, performance profiling, and heap-dump analysis. Mastery of Spring Framework (IoC/DI, bean lifecycle, Spring Boot). SOLID principles, Clean Code practices, and GoF design patterns
• Software architecture and design patterns: Expertise in monolith and microservices architectural styles — including migration patterns and domain-driven decomposition. Inter-process communication design (REST, gRPC, messaging), transaction management in distributed systems (Sagas, 2PC), CQRS, Event Sourcing, and external API design focused on scalability, security, and documentation
• Cloud-native platforms and infrastructure: Experience designing high-availability and high-load systems on GCP (preferred), AWS, and Azure. Cloud security best practices: IAM, VPC, data encryption, JWT/JWS/JWE. Infrastructure as Code (Terraform or equivalent) and Twelve-Factor App methodology
• Observability, reliability and deployment: Implementing full observability stacks: structured logging, distributed tracing, metrics, and alerting. SLI/SLO/SLA frameworks. Deployment strategies: Rolling Updates, Blue/Green Deployments, Canary Releases
• AI-assisted engineering: Practitioner-level command of agentic AI tools applied to software engineering — encompassing prompt engineering techniques, AI context management and its limitations, sub-agents, skills and plugins, multi-agent orchestration, and team-of-agents architectures. Experience with Claude Code (Anthropic), Codex (OpenAI), or equivalent is mandatory

What You'll Do

• Architecture and technology leadership: Lead high-level design for complex, cross-service features. Evaluate and select appropriate technologies, frameworks, and architectural patterns before delegating implementation. Produce and maintain architecture documentation: design docs, ADRs, tech specs, and wiki pages
• Advanced Java feature implementation: Own and implement critical product components — including prototyping, architecture validation, and production-grade code. Ensure correctness, performance, and long-term maintainability with comprehensive test coverage (unit, integration, contract, component)
• Technical roadmap contribution: Drive the engineering agenda for assigned product areas. Proactively identify gaps in requirements, architectural limitations, and technical risks. Contribute to product roadmap planning and delivery estimation. Participate in hiring processes
• Cross-functional technical communication: Drive technical communication across engineering, product, DevOps, and ML teams. Communicate technical decisions clearly to non-technical stakeholders. Produce design documents and participate in tech talks and knowledge-sharing sessions
• AI-augmented engineering: Direct agentic AI tools (Claude Code, Codex, or equivalent) across the full engineering workflow — code generation, testing, refactoring, debugging, and documentation. Demonstrated ability to apply advanced prompt engineering, manage AI context limitations, compose multi-agent orchestration workflows, and critically evaluate AI-generated outputs for correctness, security, and quality. Ability to establish guardrails and improve agent configurations to raise the quality bar. AI proficiency amplifies — it does not replace — deep engineering judgment and technical accountability

What We Offer

• The opportunity to work on a global, mission-critical AI platform alongside the best engineers and technologists across multiple geographies
• A role with real ownership and impact, building complex systems at scale in an environment that values speed, experimentation, and technical excellence
• A highly attractive benefits package, including competitive cash compensation, an equity award aligned with long-term value creation, and comprehensive health insurance for employees and their families
• Modern, comfortable offices in Montreal/ Toronto downtown, with an expectation of working from the office 1 day per week, reflecting our belief in strong in-person collaboration, while remaining flexible to accommodate remote work for candidates who live in other Canadian cities
• A generous time-off policy of 30 days annually, plus public holidays and sick leave, recognising the importance of sustained high performance

About Our Process

Our selection process is designed to rigorously assess a candidate’s depth of technical knowledge, problem-solving ability, and alignment with Behavox’s mission and core values.

As part of the process, candidates will first participate in a series of interviews focused on evaluating their technical expertise and engineering judgment. Candidates who successfully progress through these interviews will then be invited to complete a live technical exercise. The purpose of this live technical assessment is to validate the candidate’s stated technical competencies and assess their ability to solve complex problems with speed, accuracy, and sound engineering judgment. Note that whenever possible, we aim to conduct interviews in person at our offices.

We recognise and respect the time candidates invest in this process. In return, Behavox commits significant time and resources to ensure that those who join us have the capability, judgment, and alignment required to operate at the speed and level of complexity our work demands. We value efficiency and clarity on both sides; if at any point we determine that a candidate is not a fit, we reserve the right to immediately conclude the interview or the technical assessment.

Please note the following:

• A core objective of the process is to objectively assess individual knowledge and competencies. The use of AI tools or external assistance during live interviews or technical exercises is strictly prohibited (unless explicitly instructed otherwise) and will result in immediate disqualification.
• Interviews and technical sessions may be recorded for internal review to support fairness, consistency, and collaborative decision-making within the hiring team.

Location: This role can be based at our office in Bothell, WA (US) or in Oxford, England (UK).
Travel: Twice per year
Job ID: 1453

The Role

As a Staff Software Engineer for Developer Tools, you will be responsible for delivering the next generation of quantum compiler tools and features, with the focus of integration into quantum software applications, overall developer experience, documentation and developer tooling. Your work will involve setting high-level technical standards, mentoring senior engineers and scientists, and providing deep expertise to solve the most challenging problems in quantum compilation, optimization, and hardware interfaces. You will drive the adoption and enhancement of critical, user-facing compiler infrastructure, ensuring our tools are aligned with cutting-edge quantum research (e.g., advanced error mitigation, novel compiler optimization techniques). You will work across organizational boundaries, Compiler, QEC, Applications, and Engineering, to support scientific breakthroughs and define the technical strategy for packaging, documentation, and release processes for major components of IonQ’s developer tooling ecosystem.

The Developer Tools team builds the critical software layer for IonQ’s quantum software tools. In this Staff role, you will be a key driver in shaping the future of this ecosystem, and bridging the gap between critical parts of our engineering and computing organizations. Your impact will be measured by the successful delivery of critical, cross-functional projects and the elevation of technical execution across the entire team.

As a Staff Software Engineer, your influence extends beyond a single project; you define the technical bedrock upon which IonQ's developer ecosystem is built. The compiler is the critical interface where quantum algorithms are realized on hardware, and your architectural decisions will dictate the performance ceiling and accessibility of our systems. You will lead the charge in making advanced quantum techniques, from sophisticated hardware-aware compilation to state-of-the-art error mitigation, seamlessly available to every developer. This role offers the unique opportunity to leverage your deep experience to solve fundamental technical challenges, mentor the next generation of quantum software leaders, and accelerate the global adoption of quantum computing.

Responsibilities

• Define the technical strategy and roadmap for major components of the compiler toolchain, optimization suite, and developer interfaces, ensuring long-term maintainability and performance.
• Serve as the primary architect and technical lead for large, complex engineering projects spanning multiple teams (e.g., integrating a new compilation paradigm or full-stack error mitigation strategy).
• Drive the design and implementation of highly scalable and robust interfaces for hardware-specific compilation features, including advanced pulse-level control and system diagnostics.
• Establish best practices and mentor engineers on software architecture, design patterns, testing methodologies, and maintainership.
• Collaborate closely with research teams to evaluate, prototype, and productize novel quantum algorithms and compilation techniques, bridging the gap between research and production.
• Oversee the comprehensive documentation, examples, tutorials, and packaging strategy for all compiler-related developer tools to ensure ease of adoption and a world-class user experience.
• Act as a key technical resource for the Applications Engineering team, providing deep expertise to employ compilation techniques to solve customer-specific challenges and gather requirements for new features.
• Champion continuous improvement in software engineering processes, automated testing, CI/CD, and validation standards across the Developer Tools organization.

Requirements:

• Bachelor's degree in Computer Science, Engineering, Physics, or a related field, or equivalent training, fellowship, or work experience.
• 10+ years of professional software engineering experience, with a significant portion spent in a technical leadership or architectural role.
• Deep expertise in Python and experience designing and maintaining large-scale, performance-critical software systems.
• Expert-level understanding of quantum computing principles, quantum circuits, optimization techniques, and compiler fundamentals.
• Proven track record of driving complex, cross-functional engineering projects from concept to production delivery.
• Experience in system-level architecture and design, translating high-level requirements into clear, actionable technical specifications and implementation plans.
• A history of mentorship and elevating the technical capabilities of a multi-level engineering team.
• Familiarity with Agentic AI coding tools and techniques, and experience integrating them into modern software development workflows.
• Exceptional written and verbal communication skills, with a track record of authoring impactful technical papers, specifications, and external documentation.

Preferred Qualifications:

• An advanced degree (PhD or Master's) in Physics, Computer Science, or a related field with a focus on quantum computing or compiler technologies.
• Direct experience in compiler development (classical or quantum), particularly with optimization passes, intermediate representations, or static analysis tools.
• Deep expertise in system-level programming (C++, Rust) for high-performance computing or hardware interaction.
• Significant contributions to open-source software, especially in the quantum computing ecosystem (e.g., Qiskit, Pennylane, Cirq, ucc, jeff).
• Experience with low-level hardware control, pulse-level programming, dynamic circuits, or systems programming.
• A strong background in applied quantum error correction (QEC) or advanced quantum error mitigation techniques.
• A demonstrated ability to influence technical direction across organizational boundaries and secure buy-in for strategic initiatives.

The approximate base salary range for this position is $167,808 - $219,704 (USD). The total compensation package includes base, bonus, equity, and a range of benefit options found on our career site.

We are looking for a Senior Quantum Field Engineer. As a Senior Quantum Field Engineer, you’ll be part of a team whose mission is to lead IonQ on its journey to build the world’s best quantum solutions and solve the world’s most complex problems.  Field Engineering sits at the intersection of customers, markets, products and product teams, algorithms, applications, innovation and strategy - this is the team where ideas become applied and have impact.

Join a nimble team of scientists, engineers, salespeople, marketers, business developers, and product managers to drive an entirely new quantum computing business. We’re seeking versatile engineers and architects skilled in technical sales, technical demos and customer interactions who feel energized to deliver IonQ’s quantum computing products and quantum applications. 

Responsibilities:

• Inspire prospective clients by explaining IonQ’s strategy, portfolio and answering technical questions about quantum portfolio (compute, network, security, sensing and space) and quantum applications.
• Lead and shepherd client discussions, inspiring them to see how quantum applications can be implemented in their business domain.
• This includes working through business needs and mapping Quantum Algorithms (financial services, bioscience, chemistry and materials, optimization, generative AI, and other domains) into application code and executing Proof-of-Concepts together with the IonQ Application team.
• Share insights from clients with the IonQ Product Management and Engineering teams such that client feedback is incorporated into our products.
• Navigate competitive objection handling
• Translate business needs expressed by our clients into technical work projects in collaboration with other team members.
• Create assets to explain features of our quantum applications and other IonQ quantum products.
• Move dialogs from initial ideation to focused exploration domain through to proof-of-concept and ultimately into production workflows.
• Lead client discovery sessions for business oriented use cases that uncover potential overlap with development of useful quantum algorithms together with the IonQ Application team
• Partner with marketing, developer relations and business development to grow awareness of IonQ in the world at large.
• Attend industry conferences, as needed, to talk to client and support our booth activities.
• Some travel expected in the US (20%) but opportunities for global travel are available as well for client meeting and IonQ conference activities.
• This is a technical customer-facing role with the appropriate balance of compensation acceleration for success and a base salary to ensure that credibility and technical correctness always comes first.

You’d be a good fit with:

• 5 years of experience in technical customer-facing roles or equivalent capacity.  The ability to communicate (at the various context-appropriate levels of depth) and persuade clearly, have strong EQ, and other customer facings skills are critical.
• Bachelor’s degree or above in Computer Science, Machine Learning, Data Science, or other STEM field, such as Chemistry, Physics or Engineering
• Motivated learner with a strong interest in quantum computing.

You’d be a great fit with: 

• Masters or PhD in a STEM field, perhaps adjacent to quantum computing.
• Time on the customer side in various verticals included leadership roles - this provides customer empathy
• Hands-on experience with Qiskit, Cirq or other quantum computing SDK.
• Proficient in Python and Jupyter Notebooks.
• Expert architecture skills across various technologies (“full stack skills”)
• Experience leading technical events.

Location: This position can work onsite or hybrid from our office in Toronto or remote in Canada
Travel: 20% travel domestically and globally
Job ID: 1310

We are looking for a Senior Quantum Field Engineer. As a Senior Quantum Field Engineer, you’ll be part of a team whose mission is to lead IonQ on its journey to build the world’s best quantum solutions for the Bioscience vertical and solve the world’s most complex problems.  Field Engineering sits at the intersection of customers, markets, products and product teams, algorithms, applications, innovation and strategy - this is the team where ideas become applied and have impact.

Join a nimble team of scientists, engineers, salespeople, marketers, business developers, and product managers to drive an entirely new quantum computing business. We’re seeking versatile engineers and architects skilled in technical sales, technical demos and customer interactions who feel energized to deliver IonQ’s quantum computing products and quantum applications. 

Responsibilities:

• Inspire prospective clients by explaining IonQ’s strategy, portfolio and answering technical questions about quantum portfolio (compute, network, security, sensing and space) and quantum applications.
• Lead and shepherd client discussions, inspiring them to see how quantum applications can be implemented in their business domain.
• This includes working through business needs and mapping Quantum Algorithms (strong focus on biosciences, but also chemistry and materials, optimization, generative AI, and other domains) into application code and executing Proof-of-Concepts together with the IonQ Application team.
• Share insights from clients with the IonQ Product Management and Engineering teams such that client feedback is incorporated into our products.
• Navigate competitive objection handling
• Translate business needs expressed by our clients into technical work projects in collaboration with other team members.
• Create assets to explain features of our quantum applications and other IonQ quantum products.
• Move dialogs from initial ideation to focused exploration domain through to proof-of-concept and ultimately into production workflows.
• Lead client discovery sessions for business-oriented use cases that uncover potential overlap with the development of useful quantum algorithms, together with the IonQ Application team.
• Partner with marketing, developer relations and business development to grow awareness of IonQ in the world at large.
• Attend industry conferences, as needed, to talk to clients and support our booth activities.
• Some travel is expected in the US (20%) but opportunities for global travel are available as well for client meetings and IonQ conference activities.
• This is a technical customer-facing role with the appropriate balance of compensation acceleration for success and a base salary to ensure that credibility and technical correctness always comes first.

You’d be a good fit with:

• 5+ years of experience in the Biosciences industry, leading technology initiatives and innovation (or equivalent capacity).  The ability to communicate (at the various context-appropriate levels of depth) and persuade clearly, have strong EQ, and other customer-facing skills are critical.
• Bachelor’s degree or above in Biology, Chemistry, Computer Science, Machine Learning, Data Science, or other STEM field, such as Physics or Engineering
• Motivated learner with a strong passion for applied Quantum Mechanics (computing, network, security, sensing and other domains).

You’d be a great fit with: 

• Master's or PhD in a STEM field, perhaps adjacent to quantum computing.   This can enable quicker client trust and confidence.
• 5+ years of experience in a technical customer-facing role or equivalent capacity.  This isn’t a pre-requisite, but helps in transitioning to customer-facing roles.
• Hands-on experience with Qiskit, Cirq or other quantum computing SDK.
• Proficient in Python and Jupyter Notebooks.
• Expert architecture skills across various technologies (“full stack skills”)
• Experience leading technical events.

Location: This position can work onsite or hybrid from one of our offices or fully remote in the US or Canada
Travel: Up to 20% travel domestically and globally
Job ID:  1308

The approximate base salary range for this position is $192,979 - $252,659 USD. The total compensation package includes base, bonus, and equity.

About the team + role

We are building an elite team, applying frontier technologies to the world’s biggest financial problems. We’re looking for bold thinkers. Sharp problem-solvers. Builders who are wired to make an impact. Robinhood isn’t a place for complacency, it’s where ambitious people do the best work of their careers. We’re a high-performing, fast-moving team with ethics at the center of everything we do. Expectations are high, and so are the rewards. 

We’re excited to invite talented and motivated Android Developers to join our award-winning team to help expand Robinhood’s mobile experience for our customers.

The Margins team powers the experience that lets Robinhood customers responsibly borrow against their portfolios and trade with leverage. They own the end-to-end margin platform—eligibility, real-time margin calculations, interest, risk controls, and liquidation logic—so customers can access buying power while the firm stays safe in a highly regulated, high-stakes environment.

As an Android Engineer on Margins, you’ll turn complex trading and risk concepts into clear, trustworthy mobile experiences. You’ll partner closely with backend, product, design, and risk to ship performant features in Kotlin and modern Android tooling, designing flows that explain margin clearly, surface risk intuitively, and meet Robinhood’s high bar for safety, quality, and user experience.

The role is based in our Toronto, Canada office, with in-person attendance expected at least 3 days per week.

At Robinhood, we believe in the power of in-person work to accelerate progress, spark innovation, and strengthen community. Our office experience is intentional, energizing, and designed to fully support high-performing teams. 

What you’ll do

• Work with a fast-growing team to revolutionize finance at speed and scale
• Build smooth, stable, and elegant products with Kotlin and the newest Android APIs
• Own features from inception to design, implementation, and launch
• Work cross-functionally with Product Designers, Product Managers, Backend Developers, and Data team
• Work with Kotlin, Android SDK & Jetpack Compose, MVVM, Coroutines & Flow (preferred) OR RxJava, and Retrofit & Room

What you bring

• 3+ years of professional Android development experience building consumer Android applications at scale, preferably in Kotlin and Compose
• Attention to detail, passion for writing clean, readable and maintainable code
• Proficiency in Kotlin or Java, and Jetpack
• Desire to improve Robinhood's app and codebase to ensure outstanding quality for our all users
• Strong product sense and ability to collaborate with Product Managers and Designers
• Excellent communication skills and passion for solving technical challenges
• Bachelor’s degree in Computer Science or a related field preferred; equivalent training or work experience also acceptable

What we offer

• Challenging, high-impact work to grow your career
• Performance driven compensation with multipliers for outsized impact, bonus programs, and equity ownership
• Top tier benefits to fuel your work, including supplemental health insurance, ancillary insurance, and mental health support programs
• Lifestyle wallet - a highly flexible employer-paid benefits spending account expenses beyond traditional benefits such as wellness, childcare, learning, and more.
• Time off to recharge including company holidays, paid time off, sick time, paid volunteer time off, parental leave, and more!
• Exceptional office experience with catered meals, events, and comfortable workspaces. 
• Monthly commuter stipend to help offset in-office commuting costs

Our team is committed to providing an inclusive and welcoming interview experience for all candidates. If you require a specific accommodation during the application or interview process due to a physical or mental condition, please complete this Applicant Accommodation Form to notify our team. The form should only be completed if you need a specific accommodation.

AI Usage Disclosure: Robinhood uses artificial intelligence (AI) tools to support parts of our recruiting process. These tools enhance the efficiency and consistency of our hiring process; however, all hiring decisions are made by our hiring teams.

Vacancy Notice: This job posting represents an existing vacancy that we are actively seeking to fill.

As Marqeta’s Principal Software Engineer on the Core Issuing & Processing team, you will work across the entire domain to stand up and drive high-impact projects for our customers from inception to completion. You will take on highly technical initiatives that optimize our issuing and processing engines, own the technical roadmap for the core platform, and partner with engineering leaders to drive engineering and operational excellence throughout the organization.

We work Flexible First. This role can be performed remotely anywhere within Ontario or British Columbia, Canada. We’d love for you to join

The Core Issuing and Processing team owns the foundational stack that powers Marqeta's core business. We develop and maintain the systems that span six critical domains: Onboarding, Issuing, Digital Wallets, Authorization & Clearing, Transaction Controls, and Ledger. Together, these systems form the backbone of Marqeta's card issuing and payment processing platform.

The Impact You’ll Have

• Own the technical roadmap and author system designs that enable scalable, secure, and operationally efficient card issuing and payment processing products for our customers.
• Spend significant time in the codebase – writing, reviewing, and optimizing code across the issuing and processing stack.
• Identify and drive high-impact technical initiatives that improve the performance, reliability, and cost-efficiency of our core processing engines.
• Collaborate with Product Managers to analyze requirements and provide technical recommendations across onboarding, issuing, digital wallets, authorization & clearing, transaction controls, and ledger.
• Mentor and guide technical leads, influence stakeholders, and establish success metrics to drive organization-wide technical excellence.
• Apply and evangelize modern best practices in your software designs and implementations to increase the platform's resiliency and scalability.

Who You Are

• 12+ years of hands-on software engineering experience.
• Demonstrated passion for software engineering excellence, including design principles, fault tolerance practices, scalability, cost, security & privacy considerations, and test-driven development.
• Experience partnering with product teams to ideate and bring innovative solutions to market.
• Experience developing and scaling microservices using modern cloud technologies, preferably AWS.
• Experience working with high volume / low latency data infrastructures.
• Solid understanding of security engineering best practices and demonstrable experience in designing solutions that adhere to those standards.
• Passion for non-functional challenges, namely: Scale, Cost, Reliability, Performance, High Availability.
• Experience building systems running in multiple regions.
• Team-oriented approach – can effectively lead a project, participate as an influential team member, and work cross-functionally with other organizations.
• Experience with our tech stack, namely Java, Springboot, Kubernetes, Terraform, Helm, Kafka, JPOS, and AWS services.
  
  

Nice-To-Haves

• Master's degree in Software Engineering.
• Experience in payment processing, card issuing, or the payments industry.
• Domain experience in authorization, clearing, settlement, tokenization, or ledger systems.

Your Manager

• Arash Afrooze, Sr Director, Software Engineering

Recruiter For This Role

• Prashant

Typical Process

• Application Submission
• Recruiter phone call
• Hiring manager video call
• Virtual “Onsite” consisting of 4-5, 45 min calls

Compensation and Benefits

Marqeta is a Flex First company which allows you to choose your best working environment, whether that be from home or at a company office. To support Flex First, we calibrate pay to a competitive value according to working location. 

When determining salaries, we consider several factors including, but not limited to, skills, prior experience, and work location. The new-hire base salary range for this position, reflected in CAD,  is: 207,600 - 259,500

We also believe in recognizing the contributions of our people. That's why we award annual bonuses to eligible employees, rewarding both individual performance and the success of the entire company.

Along with monetary compensation, Marqeta offers

• Multiple health insurance options
• Flexible vacation time
• Retirement savings program with company contribution
• Equity in a publicly-traded company 
• Monthly stipend to support our remote work model
• Annual “development dollars” to support our people growth and development
• Family-forming benefits and up to 20 weeks of Parental Leave

Principal Engineer, Identity- Job Description 

Company overview  

Kaseya is the category leader in a fast-growing MSP market but still early in realizing its full potential. Over the last decade, Kaseya has built a powerful product portfolio through an aggressive M&A strategy. Today, that portfolio spans IT Management, Cybersecurity, and Cyber Resilience, powering more than 45,000 Managed Service Providers (MSPs) and protecting over 50 million endpoints worldwide. Yet the company is still in the early innings of its full potential. With the right strategy, we see a path to becoming an essential software platform for MSPs (and the SMBs they serve) and Internal IT teams at MMEs (mid-market enterprises)—defined by world-class innovation, and customer love at scale delivering a sustained 20–25% growth. 

Role overview 

This is a foundational leadership role; the work here impacts how every product, customer, and partner experiences Kaseya. Role will be responsible for building and executing the Identity and API strategy for Kaseya's platform.  

This position demands deep technical expertise in Identity platforms combined with strategic product thinking and cross-functional collaboration. This role will work closely with product, security, legal, sales, and marketing teams across the organization to build foundational capabilities that become force multipliers for the entire platform. This role shapes the core platform layer that enables engineering teams to build, automate, and operate software and AI-enabled systems reliably at scale.  

What will you do 

What You'll Do As a Principal Engineer, you will be the technical north star for our IAM and Control Plane strategy. Your role transcends individual features; you will be responsible for the long-term health and architectural evolution of our identity systems. Own the end‑to‑end technical design of IAM services, including identity lifecycle management, authentication, authorization, SSO, and privileged access controls, ensuring they are secure, scalable, and highly available. 

• Architectural Leadership: Lead the design and evolution of a secure, high-throughput, low-latency IAM systems that power both customer-facing and internal service APIs. Lead design and implementation of IAM integrations for SaaS, on‑prem, and cloud platforms, including federation (SAML, OIDC, OAuth), MFA, and Passwordless capabilities. 

• Technical Strategy: Define the roadmap for migrating or scaling our legacy authentication and authorization systems into modern, distributed architectures. 

• Cross-Functional Influence: Work closely with Product, Security, and UX teams to translate complex business requirements into robust, secure technical specifications. 

• Mentorship & Excellence: Set the standard for engineering excellence through deep code reviews, technical design documents, and mentoring senior engineers. 

• Operational Stewardship: Oversee the reliability of a platform under constant load, ensuring observability and resilience are baked into the core of the system.  

Required Experience (Must-Have Skills)  

• Extensive Experience: 10+ years of professional experience building and managing software applications at a massive scale (with at least 5 years at Sr Staff or Principal level). 

• Identity Domain Expertise: Deep understanding of IAM protocols (OAuth2, OIDC, SAML), RBAC/ABAC models, and the security implications of session management at the edge. Experience with Active Directory and extensive experience implementing federation protocols (SAML, OIDC, OAuth2). 

• Experience in Data Security or related areas and expertise in following--Authentication, Network, Kubernetes Security, Web Security, Governance, Privacy, Trust, Safety, Identity Management, Access Control, Key Management, Inter-Service Authentication, Secure Application Frameworks, Detection & Response. Experience building systems at large scale internet companies is a huge plus. 

• Distributed Systems Mastery: Proven track record in designing, architecting, and debugging large-scale distributed systems that handle global traffic. 

• Language Proficiency: Deep knowledge of Go, Java, TypeScript, Rust, or similar is highly valued. 

• API Stewardship: Significant experience designing and versioning public-facing APIs that are used by millions of developers.  

• Recruit and mentor top-tier engineering talent to scale our security infrastructure. 

Desirable Skills & Experience  

• Observability Advocate: A passion for building "observable" systems using Prometheus, Grafana, and Kibana to proactively identify failures. 

• Infrastructure as Code: Experience with modern containerized deployment (Docker & Kubernetes), Terraform, and infrastructure automation. 

• Security Mindset: A background in security engineering or formal verification of protocol implementations. 

• Strategic Delivery: A history of leading multi-quarter projects from conception to global rollout in partnership with product owners.  

Role: Senior DevOps/ Infrastructure Engineer 

Type: Remote working EST hours 

Must be eligible for Secret Security Clearance 


Job Overview

We are seeking a Senior Infrastructure Engineer with a deep specialization in Security Design to lead the evolution of our cloud-native ecosystem. In this role, you will be responsible for architecting, building, and maintaining highly available AWS infrastructure while ensuring that security is not an afterthought, but a core component of the design. You will bridge the gap between systems engineering and cyber defense, building resilient platforms that are "secure by design."

Key Responsibilities

• Lead the design and implementation of secure AWS infrastructure, ensuring VPC patterns, peering, and transit gateways follow strict security segmentation.
• Architect and manage production-grade EKS clusters using Docker and Kubernetes, implementing advanced security controls including OPA/Gatekeeper and workload identity.
• Design and maintain secure automation pipelines using GitHub Actions, ensuring security checks are integrated into the deployment lifecycle.
• Build and maintain central identity and access systems using Keycloak, integrating OIDC/OAuth and LDAP across the enterprise.
• Develop modular, reusable Terraform templates and YAML configurations that incorporate automated compliance checks and security best practices.
• Manage and secure Postgres DB instances, including encryption strategies and secret management workflows (AWS KMS) to ensure zero-trust data handling.
• Develop custom Python-based tooling to automate infrastructure audits, remediation of drift, and security response workflows.

Must-Have Qualifications

• 10+ years in Infrastructure or Systems Engineering with a proven track record of designing secure large-scale environments.
• Expert-level mastery of AWS, Kubernetes, and Docker.
• Mandatory proficiency in Python for infrastructure automation and security tool development.
• Hands-on experience building and managing pipelines with GitHub Actions.
• Expert-level Terraform experience and mastery of YAML for configuration management.
• Practical experience designing and deploying Keycloak and OIDC/OAuth protocols.
• Experience managing and securing Postgres relational databases.

Nice to Have

• Experience with Jenkins, Azure DevOps (ADO), or Ruby scripting.
• Proficiency in Bash or Shell for system-level maintenance.
• AWS Certified Solutions Architect or AWS Certified Security - Specialty.
• Experience designing for compliance frameworks such as SOC2, ISO 27001, or NIST.

Use of Artificial Intelligence in Hiring: The Company may use artificial intelligence (AI) enabled tools to assist with certain aspects of the recruitment process, such as resume screening and candidate matching. All employment decisions are made by human reviewers. The Company uses AI responsibly and in compliance with applicable employment, privacy, data protection, and human rights laws of Ontario.

Job Summary

The Principal Software Engineer - Cloud Native and SASE focused will lead the design and implementation of a cloud-native, multi-tenant SASE solution and its interaction with a globally distributed customer network. This is a hands-on architecture role responsible for defining how customer traffic is managed across regions and gateways, while shaping scalable, resilient, and cost-efficient platform capabilities. The role is critical to delivering production-grade distributed systems that improve performance, availability, multi-tenancy, and operational efficiency.

Roles & Responsibilities

• Lead the architecture and technical design of SASE control-plane services that manage tenant configuration, policy, routing, lifecycle, and per-tenant usage across regions.
• Define and implement orchestration patterns for configuration, telemetry, and lifecycle management across a distributed gateway fleet.
• Design scalable and highly available cloud-native systems that support dynamic gateway scaling, failover, multi-AZ deployment, and multi-region traffic management.
• Evaluate and design multi-tenancy models, including siloed, pooled, containerized, and hybrid approaches, with clear trade-off analysis across scale, isolation, performance, and cost.
• Partner closely with data-plane teams to define APIs, traffic flows, and policy enforcement mechanisms for tunnels, routing, roaming, private-network connectivity, and gateway interactions.
• Establish deployment methodologies and engineering standards for CI/CD, infrastructure as code, observability, rollouts, and resilience in partnership with DevOps and SRE teams.
• Provide technical leadership by breaking architecture into executable roadmaps, writing and reviewing code, mentoring senior engineers, and influencing technical direction across multiple teams.
• Drive platform efficiency and COGs optimization through architecture decisions, resource utilization improvements, and operational scale strategies.

Required Qualifications

• 10+ years of experience building large-scale distributed systems in SaaS, networking, or security platform environments.
• 3+ years of experience in a Staff, Principal, or Architect-level role with end-to-end ownership of architecture and delivery.
• 5+ years of experience working with SASE, SSE, SD-WAN, secure web gateway, cloud firewall, VPN, or ZTNA technologies, including large-scale gateway or concentrator deployments.
• 3+ years of hands-on experience designing or supporting multi-tenant architectures, including tenant-aware configuration, telemetry, usage controls, and resource isolation models.
• 3+ years of production experience with containers, Kubernetes, cloud-native service design, autoscaling, resilience patterns, and multi-region deployments.

Preferred Qualifications

• 3+ years of experience working with data plane concepts such as IPSec, WireGuard, TLS-based tunnels, routing, policy enforcement, and private-network connectivity.
• 3+ years of experience with CI/CD pipelines, infrastructure-as-code tools such as Terraform or CloudFormation, and observability frameworks for distributed systems.
• 3+ years of experience with private or public cloud platforms such as AWS, OCI, or similar cloud environments.
• Strong hands-on experience with backend engineering languages such as Go, Java, C++, Rust, or similar systems languages.
• Experience with distributed systems technologies including Kafka, Redis, Cassandra, ELK stack, or similar messaging, data, and observability platforms.
• Demonstrated ability to mentor senior engineers, influence architecture across multiple teams, and translate complex technical strategy into executable delivery roadmaps.

Who We Are

At Momentum Financial Services Group, we help people move forward by reimagining how money works for those who need it most. With more than 40 years of experience, we’re the team behind Money Mart—Canada’s largest non-bank branch network—and a leader in financial solutions for underserved communities.

From short-term loans to money transfers and prepaid cards, we power the products, technology, and operations that connect over a million customers a year to the money they need, when they need it.

At MFSG, we come together across teams and departments to create something bigger than ourselves: solutions that remove barriers and give people access to money they might not get anywhere else. Whether you're solving problems, building systems, or shaping strategy, your work fuels real support for real people.

We’ve Got You Covered

Compensation Philosophy: We regularly review industry standards to ensure our total rewards package is competitive and fair. This commitment helps us attract and retain talented individuals who share our purpose.

Discretionary Annual Bonus: Enjoy the opportunity for a discretionary bonus based on individual performance and company success.

Comprehensive Benefits: Our benefits include health and dental plans with 100% of the premiums covered. We also offer an Employee Assistance Program to support your mental well-being and provide resources for personal challenges.

Retirement Plans: Plan for your future with our robust retirement savings options, ensuring you’re set for the long haul.

Hybrid Work Environment: Experience the best of both worlds with our hybrid work model, allowing you to balance remote work with in-office.

Perks and Rewards: Enjoy reimbursement for tuition assistance and professional development, discounts through Perkopolis and participate in our rewards and recognition programs to celebrate your contributions.

The Job: Senior Cloud Engineer

We’re looking for a Senior Cloud Engineer to act as a senior technical expert within our IT Infrastructure team. This is a hands-on role focused on Microsoft 365, Entra ID, and hybrid cloud environments, with a strong emphasis on automation, infrastructure-as-code, and cloud-native engineering.

You’ll lead complex infrastructure initiatives, shape architectural decisions, and help standardize how infrastructure is built, secured, and operated across the organization.

What You’ll Do

Infrastructure Design & Engineering

• Design and implement infrastructure across on-premises, Azure, and AWS environments
• Build scalable, secure systems using modern hybrid and cloud-native architectures
• Architect and govern identity solutions across hybrid environments (Entra ID, SSO, directory sync)
• Develop CI/CD pipelines, golden images (AMI), patching strategies, and monitoring frameworks

Identity, M365 & Endpoint Management

• Administer Microsoft 365 services including Exchange Online, SharePoint, Teams, OneDrive, Intune, and Defender
• Implement identity security controls such as Conditional Access, PIM, RBAC, and Zero Trust
• Manage endpoint solutions (Intune, Autopilot, device compliance, SCCM co-management)
• Automate identity lifecycle and access management processes

Cloud & Infrastructure Automation

• Design and manage Azure and AWS environments (IaaS/PaaS)
• Build and enforce infrastructure-as-code practices using Terraform, Bicep, and CloudFormation
• Automate provisioning, configuration, and operations using PowerShell and APIs
• Support enterprise-wide cloud adoption and ensure consistent, compliant infrastructure standards

Operations & Lifecycle Management

• Manage storage, backups, monitoring, and disaster recovery across environments
• Support VDI environments and overall infrastructure reliability and performance
• Coordinate vendor support for system lifecycle management and optimization

Leadership & Collaboration

• Provide technical leadership and act as an escalation point for complex issues
• Collaborate with DevOps, Security, and IT Operations teams on cross-functional initiatives
• Represent infrastructure in architectural discussions and ensure smooth transition to operations

What You’ll Bring to the Table

• Strong experience in infrastructure engineering across hybrid and cloud environments
• Deep expertise in Microsoft 365, Entra ID, and identity management
• Hands-on experience with Azure and AWS in enterprise environments
• Strong background in infrastructure automation and infrastructure-as-code
• Experience building CI/CD pipelines and cloud-native infrastructure solutions
• Strong problem-solving and troubleshooting capabilities
• Ability to influence technical decisions and work across teams

Education + Experience

• Bachelor’s degree in Computer Science, Information Technology, or related field
• 7+ years of experience in IT infrastructure engineering, with strong focus on cloud and identity in recent years
• Extensive experience with M365, Entra ID, Intune, Windows Server, and cloud platforms
• Strong hands-on experience with Terraform and automation tools
• Experience designing secure AWS environments in multi-account setups is an asset
• Relevant certifications (Microsoft, AWS, ITIL, etc.) are preferred

Ready to lead

If you’re passionate about building modern, automated, and secure infrastructure—and want to play a key role in driving cloud transformation—this is an opportunity to make a significant impact.

Committed to Equal Opportunity:

MFSG is committed to accommodating applicants up to the point of undue hardship during the recruitment, assessment and selection process. If you are selected for an interview, please notify MFSG if you require accommodation in respect of the materials or procedures used at any time during this process. If you require accommodation, MFSG will work with you to determine how to meet your needs.

Please note: The salary range for this position is between C$145k to C$160k.

This will be a remote role to start, with plans to transition to hybrid in-office 2x/week located in downtown Toronto at 134 Peter Street.

As a Senior Frontend Engineer on the Availability Planning & Experiences team, you'll build the tools that power how restaurants run on OpenTable.

Availability Planning is the engine behind OpenTable for Restaurants. It's where restaurants set their schedules, define shifts, arrange tables, and fine-tune how those tables can be booked. You'll work on challenging problems that balance precision and flexibility, giving restaurants powerful controls while keeping the experience intuitive.

You'll also help shape our Experiences, which lets restaurants create unique events and offerings. You'll influence how restaurants design, manage, and showcase these experiences to guests.

On the engineering side, you'll work in a modern frontend stack:

• JavaScript + TypeScript
• React + Redux
• React Testing Library, Jest, Cypress for robust testing

Requirements

• You are humble and enjoy working with developers, designers and product owners of all career levels
• You have 5 or more years of full-time professional experience as a software developer in a team environment, including extensive experience with React
• You have strong communication skills, especially the ability to represent the technical trade-offs between different potential solutions 
• You can drive projects from technical planning all the way to production
• You write code that is readable and maintainable. You create abstractions and find opportunities for code reuse.
• You carefully test your work for bugs while ensuring consistency with requirements and designs. You also build automated tests and understand how to use them properly.
• You have experience implementing designs and collaborating with designers using tools like Figma
• You are comfortable providing feedback to others via a code review process, and receiving feedback others have provided to you via this process
• You adopt emerging AI technologies like Copilot and ChatGPT to enhance your workflow, while also taking ownership of the results produced by these technologies and carefully checking them for accuracy.

Benefits:

• Generous paid vacation + time off for your birthday
• Work from (almost) anywhere for up to 20 days per year
• Focus on mental health and well-being:
  • Company-paid therapy sessions through SpringHealth
  • Company-paid subscription to Headspace
  • Annual company-wide week off a year - the whole team fully recharges (and returns without a pile-up of work!)
• Paid parental leave
• Paid volunteer time
• Focus on your career growth:
  • Development Dollars
  • Leadership development
  • Access to thousands of on-demand e-learnings
• Travel Discounts
• Employee Resource Groups
• Private health and dental insurance
• Life and Disability insurance

The expected compensation range for this Toronto, Canada based role is $155,000 - $175,000 CAD. There are a variety of factors that go into determining a compensation range, including but not limited to external market benchmark data, geographic location, and years of experience sought/required.

We offer a competitive base salary and benefits including: health benefits; flexible spending account; retirement benefits; life insurance; paid time off (including PTO, paid sick leave, medical leave, bereavement leave, floating holidays and paid holidays); and parental leave benefits. This role is eligible to be considered for an annual bonus and equity grant.

Work Environment & Flexibility

At OpenTable, we pride ourselves on fostering a global and dynamic work environment. As a team member with us, you will benefit from a schedule tailored to accommodate a global workforce operating across multiple time zones. While the majority of your responsibilities may align with conventional business hours, there will be instances where you are expected to manage communications - via calls, Slack messages, or emails - outside of regular working hours to effectively collaborate with international colleagues, respond to restaurant partners, and/or address urgent matters. OpenTable will always abide by and consider local laws and regulations.

Inclusion

We’re committed to creating a workplace where everyone feels they belong and can thrive. We know the best ideas come when we bring different voices to the table, so we're building a team as dynamic as the diners and restaurants we serve—and fostering a culture where everyone feels welcome to be themselves.

If you need accommodations during the application or interview process, or on the job, we’re here to support you. Please reach out to your recruiter to request any accommodations.

As a Senior Engineer on the Data Platform team at Movable Ink, you will help design and build the systems that power how data flows through the organization. You will play a key role in developing and operating the unified data platform responsible for ingesting, processing, and exposing large volumes of data that drive Movable Ink’s products. Working closely with teammates across engineering, analytics, and infrastructure, you will build scalable ingestion pipelines and backend services that integrate data from a variety of sources while ensuring reliability, governance, and high availability across the platform. You will help evolve legacy pipelines toward modern data architectures, and help drive the unification of our products and services in how they access data. Your work will directly impact the growth and maturity of Movable Ink’s products and services.

Responsibilities:

• Support the design and delivery of data ingestion pipeline and infrastructure
• Assist in the successful migration of legacy data lifecycle management to new platform without disrupting existing data consumers
• Establish and maintain SLIs and SLOs for new ingestion and data platform with dashboards and alerting to track performance
• Build flexible data storage layer supporting a variety of use cases, e.g., transactional, analytic, and machine learning workloads
• Implement comprehensive monitoring, observability, and incident response practices for all event data pipelines and services
• Collaborate with product engineering, analytics, and machine learning teams to define contracts, functional requirements, and standards
• Design and implement a semantic metadata layer that classifies and labels data assets across both products, enabling consistent data discovery, exposure policies, and identification of cross-product data reuse opportunities
• Architect and deliver a multi-tenant data model that supports secure data sharing and isolation across clients, with controls designed to meet regulatory and government compliance requirements

Qualifications:

• Deep understanding of data governance principles and data lifecycle management, including data quality, lineage, retention, and access control
• Strong familiarity with database backend technologies (OLAP vs. OLTP) and when to apply each, with hands-on experience using data warehouse technologies (Databricks, Clickhouse, Redshift, etc) at production scale
• Strong familiarity with SQL with the ability to write and optimize queries
• Skill at building complex systems and identifying core primitives and how to apply them to meet changing business needs and future roadmap requirements.
• Experience designing and operating data systems on a major cloud provider (AWS or GCP) and working in a multi-cloud deployment environment
• Proficiency with containerization and orchestration technologies, including Docker and Kubernetes
• Proven ability to integrate systems, connecting legacy platforms with modern architectures through well-designed interfaces and migration strategies
• Effective communicator who can facilitate system design discussions, document architectural decisions, and work across team boundaries
• (Nice to have) Familiarity with Elixir for building concurrent, fault-tolerant data services
• (Nice to have) Experience with data pipeline and streaming technologies such as Airflow, Kafka, Apache Flink, or similar
• (Nice to have) Hands-on experience with columnar/OLAP databases such as Databricks or ClickHouse
• Experience designing and operating data systems on AWS; GCP experience is a plus
• Strong collaboration and communication skills, comfortable leading design discussions, writing technical specs, and working across team boundaries
• Experience with Infrastructure-as-Code (IaC) tools such as Terraform, CloudFormation, or similar

The base pay range for this position is $145,000-$185,000/year, which can include additional bonus depending on the position ultimately offered, in addition to a full range of medical, financial, and/or other benefits. The base pay offered may vary depending on job-related knowledge, skills, and experience.

Who We Are

At Momentum Financial Services Group, we help people move forward by reimagining how money works for those who need it most. With more than 40 years of experience, we’re the team behind Money Mart—Canada’s largest non-bank branch network—and a leader in financial solutions for underserved communities.

From short-term loans to money transfers and prepaid cards, we power the products, technology, and operations that connect over a million customers a year to the money they need, when they need it.

At MFSG, we come together across teams and departments to create something bigger than ourselves: solutions that remove barriers and give people access to money they might not get anywhere else. Whether you're solving problems, building systems, or shaping strategy, your work fuels real support for real people.

We’ve Got You Covered

Compensation Philosophy: Our strategy is designed to attract and retain top talent by offering competitive, fair, and performance-driven rewards. We benchmark against the market, recognize strong performance and continuously evolve to meet the needs of our people and our business.

Discretionary Annual Bonus: Enjoy the opportunity for a discretionary bonus based on individual performance and company success.

Comprehensive Benefits: Our benefits include health and dental plans with 100% of the premiums covered. We also offer an Employee Assistance Program to support your mental well-being and provide resources for personal challenges.

Retirement Plans: Plan for your future with our robust retirement savings options, ensuring you’re set for the long haul.

Hybrid Work Environment: Experience the best of both worlds with our hybrid work model, allowing you to balance remote work with in-office.

Perks and Rewards: Enjoy reimbursement for tuition assistance and professional development, discounts through Perkopolis and participate in our rewards and recognition programs to celebrate your contributions.

The Job: Senior IAM Engineer

We’re looking for a Senior IAM Engineer to design, implement, and manage identity and access management solutions across the organization. This role will play a critical part in securing systems, enabling seamless access for users, and ensuring compliance across internal and customer-facing platforms.

What You’ll Do

IAM Architecture & Engineering

• Design, implement, and maintain IAM solutions across platforms such as Azure Entra ID, AWS IAM, Active Directory, and Okta
• Support the rollout and optimization of centralized IAM platforms
• Partner with security, infrastructure, and application teams to strengthen IAM architecture

Access Lifecycle Management

• Manage end-to-end user lifecycle including provisioning, de-provisioning, and access reviews
• Implement role-based access controls and enforce least privilege and zero-trust principles
• Ensure secure and efficient access for both internal and external users

Governance, Risk & Compliance

• Define and enforce IAM policies, standards, and procedures
• Conduct access reviews and support audit readiness (e.g., SOX, GDPR, ISO)
• Monitor IAM environments for compliance and control effectiveness

Security Monitoring & Incident Response

• Monitor IAM logs and alerts to detect suspicious activity
• Support investigation and resolution of access-related security incidents

Integration & Collaboration

• Integrate IAM solutions with enterprise applications and systems
• Collaborate with IT, cybersecurity, and business teams to improve identity security posture

Automation & Continuous Improvement

• Automate IAM processes using scripting and APIs
• Improve operational efficiency and reduce manual intervention

Documentation & Knowledge Sharing

• Maintain clear and up-to-date documentation of IAM systems and processes
• Support knowledge sharing and training across teams

What You’ll Bring to the Table

• Strong experience in Identity and Access Management within complex environments
• Hands-on expertise with Azure Entra ID, AWS IAM, Active Directory (On-Prem), and Okta (SSO, MFA, Provisioning, Federation).
• Deep understanding of IAM concepts including RBAC, PAM, authentication, and authorization
• Experience implementing zero-trust and least privilege access models
• Familiarity with compliance frameworks and security standards
• Strong problem-solving skills and ability to work across technical and business teams
• Experience with automation and scripting (e.g., PowerShell, Python)

Education + Experience

• Bachelor’s degree in Computer Science, Information Security, or related field (or equivalent experience)
• 5+ years of experience in Identity & Access Management
• Experience working in regulated environments (e.g., financial services) is an asset
• Relevant certifications (e.g., Microsoft Identity, Okta, or security certifications) are preferred

Ready to lead

If you’re passionate about securing identities, improving access controls, and building scalable IAM solutions, this is an opportunity to make a critical impact on enterprise security.

Committed to Equal Opportunity:

MFSG is committed to accommodating applicants up to the point of undue hardship during the recruitment, assessment and selection process. If you are selected for an interview, please notify MFSG if you require accommodation in respect of the materials or procedures used at any time during this process. If you require accommodation, MFSG will work with you to determine how to meet your needs.

Please note: The salary range for this position is between C$ 125,000 to C$ 135,000.

Software Engineer, Financial Systems

Team: IT, Security, and Corporate Engineering
Location: Toronto

About the Role

At Opendoor our goal is to build the biggest, most trusted housing platform and set a new standard for how people move. We've combined our deep, proprietary data and operational expertise with the power of artificial intelligence to make online home selling and buying radically simple.

We are eliminating the manual work that slows down operations.  We’re building AI-driven automation that closes the books faster, eliminates repetitive workflows, and gives Finance teams real-time insights without human intervention.  You’ll architect the systems that power thousands of real estate transactions monthly with audit-ready precision while enabling Finance to move fast and operate efficiently.

What You'll Do

• Build intelligent automation that eliminates manual financial workflows, from journal entries to reconciliations to month-end close processes, using AI agents and workflow orchestration.
• Design and own integrations connecting enterprise resource planning (ERP), spend management, banking, and data warehouse systems that power real-time financial operations.
• Partner with Finance, Procurement, Accounting, Accounts Payable and Capital Markets stakeholders to understand their workflows, identify automation opportunities, and deliver software solutions that increase their speed and efficiency.
• Implement observability, monitoring, and reliability practices for production financial data systems that process millions of transactions daily.
• Apply software engineering best practices (CI/CD, Infrastructure as Code, automated testing, code review) to financial systems traditionally managed through manual configuration.

Tech Stack

• Financial Platforms: NetSuite (ERP), Ramp (spend management), bank APIs
• Data & Analytics: Snowflake, dbt, Airflow/Dagster, Quicksight
• Languages: Python, Go, SQL, TypeScript/Node.js
• Infrastructure: AWS, Terraform, Docker, GitHub Actions
• AI & Automation: LLMs (Claude, OpenAI), agent frameworks, workflow orchestration

What You'll Need

• Deep conviction that AI and automation should eliminate manual work humans shouldn't be doing anyway. You're excited to eliminate manual work by replacing spreadsheets and close processes with automated systems.
• 8+ years of software engineering experience with strong skills in Python, Go, or similar languages, including API design, systems integration, and automation.
• Experience with modern data platforms (Snowflake or similar), SQL, and building reliable data pipelines.
• Strong experience with cloud platforms (AWS preferred) including CI/CD, Infrastructure as Code, and running production services.
• Proven problem-solving ability to understand complex business workflows, identify automation opportunities, and design elegant technical solutions
• Humility and genuine curiosity. You're as excited to automate journal entries as you are to architect distributed systems, and you see eliminating mundane work as deeply meaningful engineering. You genuinely enjoy understanding user needs, partnering with non-technical stakeholders, and building software that makes their work easier.

Bonus Points For

• Experience with financial/ERP systems (NetSuite, Oracle, SAP, Workday) or fintech platforms.
• Understanding of financial concepts (General Ledger, Accounts Payable, month-end close, Sarbanes-Oxley controls).
• Track record building AI-powered automation, workflow orchestration, or internal tools.
• M.S. in Computer Science.

Compensation

Our compensation plan consists of a base salary, Opendoor equity and a comprehensive package of benefits including paid time off, paid holidays, medical/dental/vision insurance, basic life insurance, and 401(k) to eligible employees.  All compensation parameters are based on experience.

#LI-RO

About this role:

Faire operates at serious scale — a global marketplace handling real money movement, sensitive business data, and the financial futures of hundreds of thousands of independent retailers and brands. Security here isn't a compliance checkbox. It's a core part of how we build, and how we grow.

We've built solid security foundations. Now we're looking for someone to take them to the next level — designing the architecture and automation that lets product engineers build securely by default, without friction. If you're energized by the challenge of making security invisible to developers while making it impossible to skip, this role was written for you.

Our Engineering organization owns the software that makes our marketplace work. Our Product Security team enables product engineering teams to develop and deploy secure software that makes that happen. We care about good engineering practice and love to write software that is secure, tested, easy to maintain, and can scale to millions of users. We build scalable, reusable frameworks; consult with product teams; listen to the data; and iterate.

As a Senior Staff Software Engineer, Product Security, you'll be the technical lead for the Product Security domain — owning the long-term direction for how security is designed, built, and automated across Faire's entire application stack. You will partner closely with Platform and Product Engineering teams to identify and mitigate security risks, lead major security initiatives, and mentor engineers across the company to raise the bar on secure engineering practices.

You will also drive cross-functional programs to ensure security is deeply integrated into our architecture, pipelines, and developer experience — reducing risk while maintaining velocity.

Why now:

Faire has spent the last few years scaling fast — expanding globally, growing to hundreds of thousands of retailers and brands, and building the infrastructure to match. Security has kept pace, but we've reached an inflection point. The foundations are in place. What's next requires a different kind of thinking: less reactive, more architectural. Less manual review, more automation baked into every pipeline and framework from day one.

At the same time, this is a role with room to grow. We're hiring at Senior Staff — a level above what currently exists on the team — because we need someone who can elevate the technical bar across the board and, over time, extend that leadership into infrastructure security as well. The person who takes this seat won't just be joining a team. They'll be defining what the team becomes.

What you'll own:

• Set the long-term technical direction for application security at Faire, establishing scalable, developer-friendly frameworks and principles that enable secure development across all product areas. This role also provides the candidate the opportunity to expand technical leadership scope to infrastructure security.
• Lead the design and implementation of high-impact, reusable frameworks for security use cases such as authentication, authorization, secrets management, and data protection.
• Architect and automate security controls within our development and deployment pipelines — enabling proactive prevention, detection, and remediation of vulnerabilities at scale.
• Partner with senior engineering and platform leaders to influence system design, threat models, and architecture decisions that strengthen Faire's overall security posture.
• Drive strategic cross-functional initiatives, collaborating with Platform, Infrastructure, Risk, and Compliance teams to integrate security deeply into our technical and operational foundations.
• Mentor and guide engineers across the organization, raising the bar for secure software design, technical rigor, and security-first thinking.
• Lead complex investigations and incident response efforts, ensuring rapid, effective remediation and continuous improvement of our security systems.
• Stay ahead of emerging threats and technologies, incorporating modern security practices and automation into Faire's engineering ecosystem.

What you bring:

• Deep expertise in software security architecture and engineering, with a proven ability to design and scale security frameworks across a large, distributed system.
• Strong programming skills and experience in multiple languages (e.g., Kotlin, Python, TypeScript, Java, or Go), with the ability to influence engineering design through code and review.
• A track record of technical leadership — driving company-wide or cross-organizational initiatives that improved security posture, developer experience, or system resilience.
• Experience building and deploying security automation at scale, including CI/CD integrations, vulnerability management pipelines, and automated testing or remediation frameworks.
• Hands-on experience with cloud environments and modern infrastructure (AWS, OCI, GCP), including Kubernetes, Terraform, and container security.
• A deep understanding of application security principles and practices, including authentication, authorization, data protection, and common web application vulnerabilities (OWASP Top 10).
• A strategic mindset — you can balance risk reduction with engineering velocity and developer enablement.
• Excellent communication and collaboration skills, with the ability to influence senior leaders and guide engineering teams across multiple domains.
• A passion for mentoring others and cultivating a security-first engineering culture through partnership, guidance, and empathy.

Technologies we use and teach:

• Kotlin, TypeScript, Python
• AWS, OCI, Terraform, Kubernetes
• HTTP, JSON, and Protocol Buffers
• MySQL, DynamoDB, CockroachDB

Salary range:

Canada: The pay range for this role is $216,000 - 297,000 per year.

This role will also be eligible for equity and benefits. Actual base pay will be determined based on permissible factors such as transferable skills, work experience, market demands, and primary work location. The base pay range provided is subject to change and may be modified in the future.

About this role:

Faire operates at serious scale — a global marketplace handling real money movement, sensitive business data, and the financial futures of hundreds of thousands of independent retailers and brands. Security here isn't a compliance checkbox. It's a core part of how we build, and how we grow.

We've built solid security foundations. Now we're looking for someone to take them to the next level — designing the architecture and automation that lets product engineers build securely by default, without friction. If you're energized by the challenge of making security invisible to developers while making it impossible to skip, this role was written for you.

Our Engineering organization owns the software that makes our marketplace work. Our Product Security team enables product engineering teams to develop and deploy secure software that makes that happen. We care about good engineering practice and love to write software that is secure, tested, easy to maintain, and can scale to millions of users. We build scalable, reusable frameworks; consult with product teams; listen to the data; and iterate.

As a Senior Staff Software Engineer, Product Security, you'll be the technical lead for the Product Security domain — owning the long-term direction for how security is designed, built, and automated across Faire's entire application stack. You will partner closely with Platform and Product Engineering teams to identify and mitigate security risks, lead major security initiatives, and mentor engineers across the company to raise the bar on secure engineering practices.

You will also drive cross-functional programs to ensure security is deeply integrated into our architecture, pipelines, and developer experience — reducing risk while maintaining velocity.

Why now:

Faire has spent the last few years scaling fast — expanding globally, growing to hundreds of thousands of retailers and brands, and building the infrastructure to match. Security has kept pace, but we've reached an inflection point. The foundations are in place. What's next requires a different kind of thinking: less reactive, more architectural. Less manual review, more automation baked into every pipeline and framework from day one.

At the same time, this is a role with room to grow. We're hiring at Senior Staff — a level above what currently exists on the team — because we need someone who can elevate the technical bar across the board and, over time, extend that leadership into infrastructure security as well. The person who takes this seat won't just be joining a team. They'll be defining what the team becomes.

What you'll own:

• Set the long-term technical direction for application security at Faire, establishing scalable, developer-friendly frameworks and principles that enable secure development across all product areas. This role also provides the candidate the opportunity to expand technical leadership scope to infrastructure security.
• Lead the design and implementation of high-impact, reusable frameworks for security use cases such as authentication, authorization, secrets management, and data protection.
• Architect and automate security controls within our development and deployment pipelines — enabling proactive prevention, detection, and remediation of vulnerabilities at scale.
• Partner with senior engineering and platform leaders to influence system design, threat models, and architecture decisions that strengthen Faire's overall security posture.
• Drive strategic cross-functional initiatives, collaborating with Platform, Infrastructure, Risk, and Compliance teams to integrate security deeply into our technical and operational foundations.
• Mentor and guide engineers across the organization, raising the bar for secure software design, technical rigor, and security-first thinking.
• Lead complex investigations and incident response efforts, ensuring rapid, effective remediation and continuous improvement of our security systems.
• Stay ahead of emerging threats and technologies, incorporating modern security practices and automation into Faire's engineering ecosystem.

What you bring:

• Deep expertise in software security architecture and engineering, with a proven ability to design and scale security frameworks across a large, distributed system.
• Strong programming skills and experience in multiple languages (e.g., Kotlin, Python, TypeScript, Java, or Go), with the ability to influence engineering design through code and review.
• A track record of technical leadership — driving company-wide or cross-organizational initiatives that improved security posture, developer experience, or system resilience.
• Experience building and deploying security automation at scale, including CI/CD integrations, vulnerability management pipelines, and automated testing or remediation frameworks.
• Hands-on experience with cloud environments and modern infrastructure (AWS, OCI, GCP), including Kubernetes, Terraform, and container security.
• A deep understanding of application security principles and practices, including authentication, authorization, data protection, and common web application vulnerabilities (OWASP Top 10).
• A strategic mindset — you can balance risk reduction with engineering velocity and developer enablement.
• Excellent communication and collaboration skills, with the ability to influence senior leaders and guide engineering teams across multiple domains.
• A passion for mentoring others and cultivating a security-first engineering culture through partnership, guidance, and empathy.

Technologies we use and teach:

• Kotlin, TypeScript, Python
• AWS, OCI, Terraform, Kubernetes
• HTTP, JSON, and Protocol Buffers
• MySQL, DynamoDB, CockroachDB

Salary range:

San Francisco: The pay range for this role is $268,000 - $368,500 per year.

This role will also be eligible for equity and benefits. Actual base pay will be determined based on permissible factors such as transferable skills, work experience, market demands, and primary work location. The base pay range provided is subject to change and may be modified in the future.

Software Engineer, Financial Systems

Team: IT, Security, and Corporate Engineering
Location: Seattle, Washington

About the Role

At Opendoor our goal is to build the biggest, most trusted housing platform and set a new standard for how people move. We've combined our deep, proprietary data and operational expertise with the power of artificial intelligence to make online home selling and buying radically simple.

We are eliminating the manual work that slows down operations.  We’re building AI-driven automation that closes the books faster, eliminates repetitive workflows, and gives Finance teams real-time insights without human intervention.  You’ll architect the systems that power thousands of real estate transactions monthly with audit-ready precision while enabling Finance to move fast and operate efficiently.

What You'll Do

• Build intelligent automation that eliminates manual financial workflows, from journal entries to reconciliations to month-end close processes, using AI agents and workflow orchestration.
• Design and own integrations connecting enterprise resource planning (ERP), spend management, banking, and data warehouse systems that power real-time financial operations.
• Partner with Finance, Procurement, Accounting, Accounts Payable and Capital Markets stakeholders to understand their workflows, identify automation opportunities, and deliver software solutions that increase their speed and efficiency.
• Implement observability, monitoring, and reliability practices for production financial data systems that process millions of transactions daily.
• Apply software engineering best practices (CI/CD, Infrastructure as Code, automated testing, code review) to financial systems traditionally managed through manual configuration.

Tech Stack

• Financial Platforms: NetSuite (ERP), Ramp (spend management), bank APIs
• Data & Analytics: Snowflake, dbt, Airflow/Dagster, Quicksight
• Languages: Python, Go, SQL, TypeScript/Node.js
• Infrastructure: AWS, Terraform, Docker, GitHub Actions
• AI & Automation: LLMs (Claude, OpenAI), agent frameworks, workflow orchestration

What You'll Need

• Deep conviction that AI and automation should eliminate manual work humans shouldn't be doing anyway. You're excited to eliminate manual work by replacing spreadsheets and close processes with automated systems.
• 8+ years of software engineering experience with strong skills in Python, Go, or similar languages, including API design, systems integration, and automation.
• Experience with modern data platforms (Snowflake or similar), SQL, and building reliable data pipelines.
• Strong experience with cloud platforms (AWS preferred) including CI/CD, Infrastructure as Code, and running production services.
• Proven problem-solving ability to understand complex business workflows, identify automation opportunities, and design elegant technical solutions
• Humility and genuine curiosity. You're as excited to automate journal entries as you are to architect distributed systems, and you see eliminating mundane work as deeply meaningful engineering. You genuinely enjoy understanding user needs, partnering with non-technical stakeholders, and building software that makes their work easier.

Bonus Points For

• Experience with financial/ERP systems (NetSuite, Oracle, SAP, Workday) or fintech platforms.
• Understanding of financial concepts (General Ledger, Accounts Payable, month-end close, Sarbanes-Oxley controls).
• Track record building AI-powered automation, workflow orchestration, or internal tools.
• M.S. in Computer Science.

Compensation

The base pay range for this position is $198,000 - $271,000 USD annually, plus RSUs and bonuses. Pay within this range varies by work location and may also depend on your qualifications, job-related knowledge, skills, and experience. We also offer a comprehensive package of benefits including unlimited PTO, medical/dental/vision insurance, life insurance, and 401(k) to eligible employees.

#LI-RO