Senior Staff Software Engineer – Identity & Access Management Platform

Why Kaseya?

Join a fast-growing company that’s transforming the IT industry. At Kaseya, you’ll have the opportunity to work with cutting-edge technology, collaborate with a dynamic team, and develop your career in a high impact role.

Join the Kaseya growth rocket ship and see how we are #ChangingLives!

Job Summary

We’re hiring a Senior Staff Software Engineer to lead the design and evolution of Kaseya’s Identity and Access Management (IAM) platform. This role focuses on building a centralized identity foundation supporting authentication, authorization, governance, and compliance across multiple products and business domains. You will provide technical leadership for platform architecture, drive adoption across engineering organizations, and deliver secure, scalable identity services that support customers, employees, partners, APIs, and machine identities.

Roles & Responsibilities

• Define architecture and technical direction for the IAM platform across multiple products and services
• Lead design and implementation of authentication, authorization, and identity governance capabilities
• Build and operate core IAM platform services, APIs, and integrations
• Drive platform adoption and migration initiatives across engineering teams
• Design solutions supporting RBAC, ABAC, delegated administration, and multi-tenant environments
• Partner with Security, Compliance, and Product teams to meet governance and regulatory requirements
• Lead architecture reviews and technical design discussions for identity-related initiatives
• Mentor engineers and establish engineering standards for identity platform development

Required Qualifications

• 10+ years of software engineering experience building distributed systems or platform services
• Experience designing and implementing IAM, authentication, authorization, or identity governance solutions
• Experience with OAuth 2.0, OpenID Connect (OIDC), SAML, JWTs, MFA, and enterprise SSO
• Experience implementing or integrating enterprise IAM platforms (e.g., Zitadel, Keycloak, Authentik, Okta, Auth0, Ping Identity)
• Experience designing secure, scalable services in cloud-based or SaaS environments

Preferred Qualifications

• Experience designing multi-tenant identity platforms or delegated administration models
• Experience with RBAC, ABAC, policy-based authorization, or entitlement management
• Experience integrating enterprise identity providers such as Microsoft Entra ID, Okta, Google Workspace, or Active Directory
• Experience with policy engines such as Open Policy Agent (OPA) or Cedar
• Experience supporting machine identities, secrets management, or workload authentication
• Experience leading large-scale platform migrations or modernization initiatives
• Experience supporting compliance requirements such as SOC 2, ISO 27001, HIPAA, PCI-DSS, or NIST