Role
Neo4j’s managed cloud offering, Aura, brings the power of graph databases to the cloud. We are seeking an experienced Software Engineer – Identity and Access Management to architect, implement, and manage enterprise IAM strategies. This role requires strong technical skills and a keen interest in the identity and access management domain and is a good fit for someone who enjoys working with different teams to build secure, scalable, and compliant IAM solutions for AuraDB.
Responsibilities
- Contribute to shaping the IAM roadmap and design an architecture that brings together the IAM domains across Aura.
- Develop and maintain scalable IAM solutions including identity governance and authentication frameworks.
- Implement and manage tooling for configuring authentication protocols (OAuth2, OIDC, SAML, LDAP, MFA) and lifecycle management (SCIM).
- Integrate with enterprise SSO providers (Okta, Azure AD, Ping Identity, etc).
- Design and implement relevant access control paradigms for differing business use cases (RBAC, ABAC, PBAC, ReBAC, FGA).
- Develop access control policies based on least privilege principles.
- Support various authentication and encryption methods: JWT, service accounts, workload identity including SPIFFE/SPIRE, client credentials, mTLS, request signing.
Security & Compliance
- Apply zero trust principles and secure identity patterns for internal/external systems.
- Assess and manage IAM attack surfaces and ensure compliance with industry standards and regulatory requirements (SOC 2).
- Collaborate with engineering, UX, and business stakeholders using Agile methodologies.
- Mentor team members on IAM technologies and best practices.
- Produce clear, well-structured documentation for technical and non-technical audiences.
Experience
Required
- 7+ years of backend development or software engineering experience.
- Familiarity and exposure to software development with IAM systems (Okta, Auth0, Ping Identity, Oracle Access Manager, AWS IAM, Azure AD/Entra ID).
- Deep understanding of IAM principles, authentication/authorization protocols, and identity lifecycle management.
- Solid grasp of identity security frameworks, protocols, and secure design patterns.
- Experience with Python or GoLang.
- Experience with at least one of the major cloud providers (GCP, AWS, Azure).
Preferred
- 3+ years of professional experience in Identity and Access Management.
- Familiarity with Kubernetes.
Inclusive Hiring
Research shows that members of underrepresented communities are less likely to apply for jobs when they don’t meet all the qualifications. If this is part of the reason you hesitate to apply, we’d encourage you to reconsider and give us the opportunity to review your application. At Neo4j, we are committed to building awareness and helping to improve these issues. One of our central objectives is to provide an inclusive, diverse, and equitable workplace for everyone to develop their potential and have a positive, career-defining experience.
#J-18808-Ljbffr
