Cloud Software Engineer - Identity and Access Management

Details

Join the Platform Auth team to help deliver a unified identity and access management experience across ClickHouse. The team builds authentication, authorization, audit logging, and related developer-facing platforms that provide secure, user-friendly access for customers and internal users.

Responsibilities

• Develop, manage and collaborate with other engineering teams on authentication, authorization, audit logging, and monitoring systems
• Provide secure, user-friendly access solutions including support for SAML, SCIM, MFA and passwordless authentication
• Design and implement authorization models to ensure resources have the appropriate access levels and are easy for engineers and users to understand
• Capture and surface events for analysis for internal teams and customers as appropriate
• Collaborate with engineering teams to understand database access management patterns and provide guidance for security and usability improvements
• Design common integration patterns and platforms for secure management of credentials and third-party system integrations
• Ensure systems comply with relevant security and compliance frameworks (e.g., NIST)
• Create and maintain internal documentation to enable onboarding and integrations with identity & access management systems
• Respond to on-call escalations involving the identity and access management platform

Requirements

• 4+ years of experience as a software engineer with a focus on complex system design and development, working with diverse programming languages (examples listed: C++, TypeScript)
• Bachelor’s or Master’s degree in Computer Science or a related field; or equivalent experience
• Experience implementing authentication and authorization services to standards such as SAML, SCIM, OAuth2, or OIDC
• Direct experience with Auth0, Okta, Cloud IAM (AWS, GCP, Azure) and authorization systems
• Experience implementing access control on web applications, APIs, and databases
• Experience with distributed systems, cloud computing, and scalable architectures
• Strong production debugging skills and experience participating in on-call rotations
• Excellent communication skills and ability to collaborate across engineering teams
• Passion for building secure systems that are easy to use and easy to develop against
• High level of ownership, responsibility, and accountability

Compensation

• Typical starting salary for this role in the United States: $141,000 - $208,000 USD
• Typical starting salary for this role in US Premium Markets (e.g., San Francisco Bay Area, New York City Metro Area): $157,000 - $232,000 USD

Perks / Benefits

• Flexible work environment; ClickHouse is globally distributed and remote-friendly
• Employer contributions towards healthcare
• Stock options for new team members
• Flexible time off in the US and generous entitlement in other countries
• $500 home office setup allowance for remote employees
• Global company-wide gatherings and offsites

Culture & Equal Opportunity

• Early-stage culture influence: as one of the first ~500 employees you will help shape the company culture
• ClickHouse is an equal opportunity employer and prohibits discrimination and harassment

Other

• ClickHouse operates in multiple countries and is remote-friendly; this posting lists United States (remote) as the location.