Job Overview
Location
Remote
Job Type
Full-time
Category
Backend Engineer
Date Posted
September 29, 2025
Full Job Description
📋 Description
- • Own the architecture, design, and delivery of Veza’s integration layer—the connective tissue that lets Fortune-500 security teams pull identity and access data from 100+ SaaS, IaaS, and on-prem systems in minutes, not months. You will be the technical anchor for a squad that ships high-throughput, low-latency connectors to systems such as Okta, Azure AD, AWS IAM, Snowflake, SAP, and custom in-house directories.
- • Write clean, idiomatic Go and Python services that scale horizontally to ingest and normalize millions of access events per hour while respecting strict rate limits and SLAs of third-party APIs. You will profile, benchmark, and optimize every hot path so that a full scan of a 50 k-employee tenant finishes before the coffee gets cold.
- • Design streaming ETL pipelines that transform sprawling JSON/XML/SAML/CSV payloads into Veza’s canonical graph model. You will choose the right mix of Kafka, Pulsar, or Kinesis, implement exactly-once semantics, and ensure back-pressure never causes an upstream outage.
- • Build resilient retry, circuit-breaker, and idempotency patterns that keep connectors alive when external endpoints hiccup, throttle, or change without notice. You will own the observability stack—Prometheus, Grafana, OpenTelemetry—to surface SLIs that executives can read and on-call engineers can act on.
- • Collaborate daily with Product, Security, and Customer Success to translate gnarly customer requirements into crisp technical specs. You will demo early prototypes to CISOs, absorb feedback, and iterate in weekly sprints so that each release solves a real-world pain point.
- • Champion API-first thinking: every integration you ship is also a reusable micro-service with versioned gRPC/REST contracts, auto-generated SDKs, and OpenAPI docs. Internal teams and external partners can embed your work without ever opening a ticket.
- • Drive the roadmap for connector extensibility—plugin frameworks, declarative YAML manifests, and low-code tooling that let field engineers stand up a new integration in days instead of weeks. You will mentor junior engineers through design reviews and pair-programming sessions.
- • Contribute to Veza’s security posture by baking in least-privilege IAM, secrets management, and zero-trust networking from day one. You will participate in threat-modeling exercises and ensure every connector passes SOC 2 Type II and FedRAMP controls.
- • Keep the bar high for automated testing: unit, property-based, contract, chaos, and load tests run in CI so that releases are boring and rollbacks are rare. You will evangelize TDD and coach the team to maintain >90 % coverage on critical paths.
- • Stay ahead of the curve—evaluate emerging standards such as SCIM 2.0, OAuth 2.1, and OpenID Connect 1.1, and prototype how they can reduce customer friction. You will publish internal tech notes and occasional blog posts that position Veza as a thought leader in identity security.
- • Influence engineering-wide decisions by sitting on the Architecture Review Board. You will balance short-term customer commitments with long-term platform bets, ensuring our integration layer remains the fastest, most reliable in the industry.
🎯 Requirements
- • 7+ years shipping production backend services in Go, Python, or Java, with at least 3 years focused on high-scale data ingestion or SaaS integrations.
- • Expert-level grasp of distributed systems concepts—exactly-once delivery, idempotency, back-pressure, and distributed tracing—and hands-on experience with Kafka, Pulsar, or equivalent streaming platforms.
- • Proven track record designing and maintaining public or partner APIs, including versioning, rate-limiting, and backward compatibility strategies.
- • Deep familiarity with identity protocols (SAML, OAuth 2.0, OpenID Connect, SCIM) and directory services (LDAP, Active Directory, Azure AD, Okta).
- • Nice-to-have: exposure to security compliance frameworks (SOC 2, FedRAMP, ISO 27001) and infrastructure-as-code tools (Terraform, Pulumi).
🏖️ Benefits
- • Fully remote-first culture with quarterly in-person summits in destinations like Lisbon, Austin, or Kyoto.
- • Competitive salary plus equity in a fast-growing Series-C company valued at over $1 B.
- • $2 k annual learning stipend for conferences, courses, or certifications; dedicated 10 % “innovation time” every Friday.
- • Platinum-level medical, dental, and vision coverage for you and dependents, 100 % paid by Veza.
- • 20 days PTO, 10 company holidays, and a 4-week paid sabbatical after four years.
Skills & Technologies
Backend
Senior
Remote
About Veza Systems Inc.
Veza Systems provides an identity-centric data security platform that helps organizations understand, manage, and control access to sensitive data across hybrid and multi-cloud environments. The company’s software correlates identity, permission, and activity data to visualize who can take what action on which resource, enabling security teams to enforce least-privilege policies, detect excessive permissions, and satisfy compliance mandates for systems such as AWS, Azure, GCP, Snowflake, and on-premise databases.
