Staff Software Engineer – Identity & Access Management

🔥 0 minutes ago

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

Xsolla

WebsiteLinkedInAll Job Openings

201 - 500 employees

Founded 2005

🎮 Gaming

🛍️ eCommerce

☁️ SaaS

Gaming • eCommerce • SaaS

Xsolla is a company specializing in game commerce solutions. It provides tools and services that empower video game developers to monetize, distribute, and fund their games, helping them to increase revenue at any stage of development. Xsolla offers a wide range of solutions such as customizable web shops, payment processing, fraud prevention, and social packages to enhance player engagement. With over 19 years of experience in the video game industry, Xsolla collaborates with developers and publishers globally to manage compliance, taxes, and operational complexities, allowing them to focus on connecting with their players. Their services are designed to work with popular game development platforms like Unity, Unreal, and Cocos Creator, supporting a wide array of local payment methods worldwide.

📋 Description

• Own the technical strategy and architecture of our IAM platform, covering authentication, authorization, and session management at scale. • Design and evolve our OAuth 2.0 / OIDC flows, token lifecycle, and security primitives to meet both product and compliance requirements. • Drive decisions on protocol design, data modeling, and platform reliability, and build buy-in across engineering and security teams. • Identify systemic risks and performance bottlenecks; lead initiatives to resolve them before they become incidents. • Define engineering standards, review critical code and designs, and create leverage for the team through documentation, tooling, and mentorship. • Collaborate with product, security, and infra teams to align on roadmap and translate business needs into well-scoped technical plans. • Serve as the go-to escalation point for complex production issues in the IAM domain.

🎯 Requirements

• Deep understanding of OAuth 2.0, OIDC, and related auth flows: authorization code + PKCE, client credentials, device flow, token introspection, refresh strategies. • Solid grasp of cookie security, CSRF, XSS, token storage, TLS, and secure session management. • Experience designing or operating production-grade IAM or auth systems. • Strong Go (Golang) engineering skills: idiomatic code, concurrency patterns, performance profiling. • Experience with distributed systems and their trade-offs (consistency, availability, failure modes). • PostgreSQL: Schema design, query optimization, migrations at scale. • Kubernetes: Deploying, operating, and debugging services in a k8s environment. • Kafka or NATS: event-driven patterns, consumer groups, at-least-once delivery. • Git and modern CI/CD practices. • Proven ability to lead multi-quarter technical initiatives across teams. • Track record of influencing architecture and standards beyond your immediate team. • Ability to write RFCs and design docs that people actually read.

🏖️ Benefits

• Health insurance • Paid time off • Flexible work arrangements • Professional development opportunities