Staff Software Engineer

Overview

At Confluent, we are transforming how data flows and what it empowers in the world. Our platform enables real-time streaming data that helps companies respond swiftly and create smarter, dynamic experiences.

We seek team members who ask insightful questions, provide constructive feedback, and support one another. We're united, without egos or solo endeavors—just a group of intelligent, curious individuals striving toward a greater purpose, together.

About the Role:

We are looking for a Staff Software Engineer to spearhead the technical vision and execution of Internal Access Management at Confluent. This pivotal role necessitates expertise in distributed systems, cloud security, authentication, and policy-driven authorization frameworks.

As the domain owner, you will define how Confluent manages workload identity, enforces least privilege, and ensures secure, auditable authorization processes across all engineering systems. Collaborating with Security, Product, and Engineering teams, you will create a cohesive access strategy.

What You Will Do:

• Lead the architecture and strategic roadmap for Internal Access Management across Kubernetes and multi-cloud environments.
• Design and implement models focused on least privilege, just-in-time access, and zero-trust frameworks within Confluent services.
• Develop scalable access-authority workflows and lifecycle management systems leveraging technologies like OPA, cloud IAM policies, and internal enforcement engines.
• Enhance security boundaries with threat modeling and comprehensive access-auditing capabilities.
• Collaborate with cross-functional teams across Platform, Kafka, and SRE to promote secure identity and access practices.
• Mentor senior engineers, raise engineering standards, and influence architectural decisions organization-wide.
• Effectively communicate complex technical concepts and align stakeholders from various teams.

What You Will Bring:

• Over 10 years of engineering experience, including 4+ years in security, IAM, or distributed systems.
• Expertise in Kubernetes, workload identity, cloud IAM (AWS, GCP, Azure), and zero-trust architectures.
• In-depth knowledge of authentication technologies: IAM, OAuth2, OIDC, and modern zero-trust principles.
• A proven history of leading technical initiatives at a Staff or Senior Staff level.
• Strong understanding of distributed systems, cloud infrastructure, and service orchestration.
• Exceptional communication and stakeholder-influence abilities across security and engineering domains.

What Gives You an Edge:

• Experience leading cross-organizational security platform architecture initiatives.
• A background in constructing developer-centric authentication and authorization platforms.

Ready to shape the future? Join us and take action.

Come As You Are

At Confluent, we believe belonging is fundamental. We embrace diverse backgrounds, knowing that the best ideas come from varied perspectives. We create opportunities for everyone to lead, grow, and challenge the status quo.

We are proud to be an equal opportunity employer. Employment decisions are made based on job-related criteria, without consideration of race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, or any other classification protected by law.

Privacy Statement

Confluent is an IBM subsidiary. By applying, you acknowledge that Confluent will share your personal information with IBM affiliates involved in your recruitment, following IBM's privacy policy.