Назад
Company hidden
7 дней назад

Staff Software Engineer (PHP)

Формат работы
remote (только USA)
Тип работы
fulltime
Грейд
senior
Английский
b2
Страна
US
Вакансия из списка Hirify.GlobalВакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:
/

TL;DR

Staff Software Engineer (PHP): Designing and building a next-generation greenfield permissions service to securely control access across the platform with an accent on AuthN/AuthZ patterns and identity management at scale. Focus on creating a policy evaluation engine, defining API contracts for scoped authorization, and driving organization-wide token strategies.

Location: Remote (Must be based in the state of Utah)

Company

A people intelligence platform that transforms HR and enables employees to do great work.

What you will do

  • Architect and deliver a new permission service from initial design to production, including the data model and policy engine.
  • Define organization-wide AuthN/AuthZ standards, authentication flows, and scoped authorization patterns.
  • Design the API contract for the permission service and drive token strategy (JWT issuance, rotation, and revocation).
  • Partner with product, platform, security, and compliance teams to implement zero-trust and least-privilege requirements.
  • Set the technical bar for the team by mentoring engineers, leading RFCs, and performing architectural reviews.

Requirements

  • 10+ years of software engineering experience, with at least 3 years at Staff or Principal level.
  • Deep expertise in identity protocols (OAuth 2.0, OIDC, SAML) and authorization models (RBAC, ABAC, ReBAC).
  • Proven experience designing and building scalable AuthN/AuthZ systems from the ground up.
  • Strong backend fundamentals with comfort working in a PHP monolith using modern architectural patterns.
  • Ability to drive org-wide architectural decisions through RFCs and consensus building.
  • Employment is contingent on passing both a background and credit check.

Nice to have

  • Experience building Zanzibar-style or OPA-based authorization frameworks.
  • Familiarity with Okta, Auth0, or similar identity platforms.
  • Background in multi-tenant SaaS focusing on tenant isolation and role inheritance.
  • Experience with secrets management and zero-trust architecture principles.

Culture & Benefits

  • Comprehensive health, life, and disability insurance.
  • Generous leave policy including 4 weeks of vacation and 12 company holidays.
  • 401k plans with up to 6% company match.
  • $2000 Paid-Paid Vacation bonus.
  • Mental health support through Headspace (EAP).

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →