Staff Software Engineer - Identity and Access Management

About the Role

Join Kong as a Staff Software Engineer specializing in Identity and Access Management. In this remote role, you will play a pivotal part in shaping the future of API management and identity solutions. As a key member of our team, you will architect and develop Kong Identity's multi-tenant identity platform, ensuring it meets the complex needs of our diverse clients. This is an exciting opportunity to work with a fast-growing, well-funded company that values innovation and collaboration.

What You'll Do

• Design and implement advanced token management systems, including refresh token rotation and real-time revocation capabilities.
• Lead the development of Kong Identity's extensible claims engine, supporting dynamic attribute resolution and complex business logic evaluation.
• Architect global identity infrastructure with edge optimization and intelligent token caching for sub-millisecond authentication latency worldwide.
• Design sophisticated rate limiting and fraud prevention systems to protect against credential stuffing and token abuse.
• Build enterprise identity federation capabilities, including SAML bridge patterns and custom protocol adapters for legacy system integration.
• Drive technical strategy for Kong Identity's developer experience, including SDKs and real-time analytics dashboards.
• Mentor engineering teams on advanced identity concepts, including zero-trust architectures and service mesh integration patterns.

Requirements

• 7+ years of experience building production identity platforms at leading identity providers or enterprise software companies.
• Deep expertise in OAuth 2.0 extensions and OpenID Connect profiles.
• Strong background in cryptographic protocols and advanced JWT patterns.
• Experience with identity platforms that include sophisticated analytics and security event detection capabilities.
• Proven ability to lead technical initiatives in complex, regulated environments while balancing innovation with security and compliance requirements.

Nice to Have

• Familiarity with service mesh identity patterns and workload identity bootstrapping.
• Experience with identity protocol extensions and custom grant flows.
• Knowledge of compliance frameworks such as SOC 2 and GDPR.

What We Offer

• Competitive salary range of CA$163,685 - CA$245,480.
• Remote work flexibility with a focus on work-life balance.
• Opportunities for professional development and mentorship.
• Access to cutting-edge technologies and tools.
• A collaborative and innovative work environment.