Senior Software Engineer, IAM

DockerDocker·Remote(Canada)
Software Development
Excel

WFA Digital Insight

As the demand for robust identity and access management solutions grows, companies like Docker are looking for skilled engineers to lead the charge. With the rise of AI and autonomous workflows, the need for secure and trustworthy infrastructure is more pressing than ever. In this remote role, you'll have the chance to work on critical systems used by millions of developers and the world's largest organizations. With a strong background in Go, OAuth2, and OIDC, you'll be well-positioned to succeed in this high-impact role. Before applying, consider your experience with distributed systems, authorization models, and identity services, as well as your ability to participate in an on-call rotation.

Job Description

About the Role

The Senior Software Engineer, IAM role at Docker is a unique opportunity to work on the company's identity backbone, shaping the services that determine user access and governance at scale. As a member of the IAM team, you'll be responsible for designing, building, and operating critical systems used by millions of developers and the world's largest organizations. Your work will have a direct impact on the company's ability to deliver secure and trustworthy infrastructure to its customers.

The IAM team owns Docker's authentication and authorization systems, including access tokens, OIDC, SSO, and SCIM, as well as user and account management systems. You'll work closely with the team to extend OIDC, SSO, SAML, and SCIM integrations, evolve the authorization model, and improve observability, performance, and security posture of identity services.

What You Will Do

  • Design, build, and operate Go services powering authentication, authorization, token handling, and identity lifecycle across Docker
  • Extend OIDC, SSO, SAML, and SCIM integrations, and evolve the authorization model to support fine-grained, cross-product access
  • Improve observability, performance, and security posture of identity services on the hot path of every authenticated request
  • Design for multi-region operation, graceful degradation, and safe rollout of changes to critical auth flows
  • Lead projects end-to-end, contribute to technical design and long-term direction of the IAM platform, and mentor teammates in identity and security domains
  • Partner with Product, Security, and engineering teams to ensure APIs are clear, safe, and easy to adopt
  • Take part in the paid on-call rotation for the team, responding to incidents, debugging production issues, and driving continuous improvement of system reliability
  • Collaborate with the team to strengthen audit logging and improve the overall security posture of the IAM platform
  • Work with the team to expand support for enterprise identity integrations and improve the reliability and observability of systems on the critical request path

What We Are Looking For

  • 6+ years of backend software engineering experience building and operating production services
  • Bachelor's degree in Computer Science, Engineering, or a related field, or equivalent practical experience
  • Strong proficiency in Go, including building and operating services in production
  • Solid working knowledge of PostgreSQL, including schema design, query performance, migrations, and operating Postgres under real load
  • Experience with gRPC and event-driven systems using Kafka or comparable technologies
  • Experience operating on AWS and a strong understanding of core identity and security concepts, including OAuth2, OIDC, SAML, JWT, token lifecycle, and session management
  • Experience with authorization models, including RBAC and ReBAC-style approaches
  • Track record of designing and operating distributed systems where reliability, security, and correctness are first-class concerns
  • Willingness and ability to participate in an on-call rotation for services on the critical request path
  • Proficiency in Excel and experience with Agile development methodologies

Nice to Have

  • Experience with Docker's suite of products, including Docker Desktop, Docker Hub, and Docker Scout
  • Knowledge of cloud-based identity and access management solutions, such as AWS IAM or Google Cloud IAM
  • Experience with security and compliance frameworks, such as SOC 2 or ISO 27001
  • Certification in a relevant field, such as CISSP or CISM

Benefits and Perks

  • Competitive salary and equity package
  • Comprehensive health, dental, and vision insurance
  • Flexible paid time off and holidays
  • Remote work stipend and equipment allowance
  • Professional development opportunities and conference attendance
  • Access to a global network of professionals in the industry
  • Opportunities for career growth and advancement within the company

How to Stand Out

  • Make sure to highlight your experience with Go, OAuth2, and OIDC in your resume and cover letter, as these are key requirements for the role.
  • Be prepared to discuss your experience with distributed systems, authorization models, and identity services in the interview.
  • Show examples of your work with PostgreSQL, including schema design and query performance optimization.
  • Emphasize your ability to participate in an on-call rotation and respond to incidents and production issues.
  • Research Docker's products and services, including Docker Desktop, Docker Hub, and Docker Scout, to demonstrate your knowledge of the company's ecosystem.
  • Prepare to discuss your experience with Agile development methodologies and your proficiency in Excel.
  • Be ready to provide examples of your experience with security and compliance frameworks, such as SOC 2 or ISO 27001.

This is a remote position listed on WFA Digital, the platform for professionals who work from anywhere. Browse more remote jobs across all categories.