Key skills
PythonFastAPISAMLSSO
About this role
Role Overview
- Own enterprise sign-on. Deliver SSO across OIDC and SAML so customers onboard with their own identity provider.
- Own authorization and RBAC. Build role-based access control with fine-grained, query-time enforcement across the product.
- Own provisioning and lifecycle. Deliver SCIM provisioning and directory sync so user and group management stays in step with the customer's directory.
- Own delegated and machine identity. Build token exchange, on-behalf-of flows, service accounts, and domain-wide delegation so agents and services act with scoped authority.
- Own access governance. Build the entitlements, session and token management, and controls that keep access clean and auditable at scale.
Requirements
- 4+ years building backend systems, with significant time spent on identity, authentication, or authorization.
- Real depth in OIDC, OAuth2, SAML, token exchange, and multi-tenant RBAC.
- You've built or owned enterprise SSO and identity systems, with a strong grasp of identity-provider architecture and enterprise auth patterns.
- Strong in Python and modern backend frameworks (FastAPI or similar).
- You care about clean, well-architected access control and the experience of the administrators who manage it.
Tech Stack
- Python
Benefits
- Offers Equity