GitLab
Senior Software Engineer (RoR/Go), SSCS: Authentication
Remote Sec Engineering role with clear candidate location fit.
PostedRecently added
Eligible countries27 accepted countries
Seniority signalSenior
Work settingRemote
Accepted candidate locations
Role overview
Senior Software Engineer (RoR/Go), SSCS: Authentication
Requirements and responsibilities
Readable role content extracted into sections for faster review.
An overview of this role
- Building GATE as the centralized service for token issuance and validation
- Token consolidation and migration of authentication paths out of the Rails monolith
- Passkeys and passwordless authentication
- Composite identities to merge machine and human authorization for AI
- Service accounts and secure automation improvements
- Security Assertion Markup Language (SAML), Lightweight Directory Access Protocol (LDAP), OpenID Connect (OIDC), and System for Cross-domain Identity Management (SCIM) enhancements for automated user provisioning and single sign-on (SSO)
What you’ll do
- Contribute to the team's overall direction and play a direct part in shaping the future roadmap of GATE and GitLab's authentication services.
- Design and implement authentication features across the Rails monolith and GATE, including token issuance, validation, and identity services.
- Help migrate authentication and token management paths from the monolith into GATE while maintaining reliability across all deployment models.
- Build authentication mechanisms from the ground up, such as Workload Identity Federation.
- Bolster the security posture of our users and organizations through robust access management and by addressing vulnerabilities reported through our HackerOne program.
- Solve technical problems of high scope and complexity across Go and Ruby codebases.
- Help define and improve internal standards for style, maintainability, and best practices in a high-scale environment. Maintain and advocate for these standards through code review.
- Represent GitLab and its values in public communication around broader initiatives, specific projects, and contributions from people not working for GitLab Inc.
- Ship moderately sized features and improvements with moderate guidance and support from other team members.
- Collaborate with the team on larger projects, including the build-out of GATE.
- Improve GitLab engineering projects through the maintainer trainee program at your own comfortable pace, while striving to become a project maintainer.
What you’ll bring
- Professional experience with Go and/or Ruby in scaling or mission-critical software-as-a-service products.
- Familiarity with authentication and authorization technologies or techniques such as OAuth, OpenID Connect (OIDC), Security Assertion Markup Language (SAML), single sign-on (SSO), System for Cross-domain Identity Management (SCIM), Lightweight Directory Access Protocol (LDAP), JSON Web Token (JWT), role-based access control (RBAC), or identity and access management (IAM).
- Knowledge of token systems, cryptographic signing, and key management.
- Experience building or contributing to a service from concept to production, including proposal, discussion, and execution.
- Proficiency in written and verbal English, with the ability to clearly communicate complex problems and solutions in a remote, largely asynchronous work environment.
- Experience with performance and optimization problems, and a demonstrated ability to diagnose and prevent these problems.
- Experience working in a highly agile, iterative software development process, with the ability to manage your work effectively, stay organized, and follow through on priorities.
How GitLab Supports Full-Time Employees
- Benefits to support your health, finances, and well-being
- Flexible Paid Time Off
- Team Member Resource Groups
- Equity Compensation & Employee Stock Purchase Plan
- Growth and Development Fund
- Parental Leave
Similar roles
Keep a backup shortlist.
Computer Vision, Machine Learning 6 accepted countries
Senior Computer Vision EngineerVusionView role Computer Vision, Machine Learning 6 accepted countries
Junior/Middle Computer Vision EngineerVusionView role Data Engineering, DevOps 6 accepted countries
MLOps EngineerVusionView role Eas Build, Expo 5 accepted countries
Senior/Lead Mobile EngineerVox MediaView role Stack
Use these tags to compare similar remote roles.
Location eligibility
Candidates should apply only when their profile country is listed here.
Your profileCountry not setSign in to check your country against this role.
Hiring flow
WithMira shows the role, then sends candidates to the company application.
1Check role fit, stack, and location eligibility in WithMira.
2Open the company application page from the tracked apply link.
3Save the role or subscribe for similar opportunities before leaving.