Senior Security Software Engineer, Identity and Access Management

At Roblox, we’re building the tools and platform that empower our community to bring any experience that they can imagine to life.

Our vision is to reimagine the way people come together, from anywhere in the world, and on any device. We’re on a mission to connect a billion people with optimism and civility, and looking for amazing talent to help us get there.

The following information provides an overview of the skills, qualities, and qualifications needed for this role.

A career at Roblox means you’ll be working to shape the future of human interaction, solving unique technical challenges at scale, and helping to create safer, more civil shared experiences for everyone.

As a Senior Security Software Engineer on the Identity and Access Management (IAM) team at Roblox, your primary responsibility will be to design and implement robust IAM solutions that safeguard our critical production infrastructure.

You'll engineer scalable systems for workload authentication and authorization, manage privileged access, and establish a secure "golden path" for developers.

Your work will directly impact the security posture of our entire production environment, ensuring that only authorized workloads and individuals have access to sensitive resources.

This role is essential for mitigating security risks, maintaining compliance, and fostering a culture of security throughout Roblox's engineering organization.

You Will :

• Engineer Hybrid Production IAM at Scale : You will design and implement scalable IAM solutions specifically tailored for Roblox's hybrid production environment, encompassing both on-premises and cloud infrastructure, ensuring secure and efficient access for workloads and services across the entire ecosystem.
• Develop and Manage Workload Authentication & Authorization : You will develop and manage robust authentication and authorization mechanisms specifically for workloads and services accessing Roblox's production environments, ensuring least privilege and adherence to secure access controls.
• Establish the Secure Golden Path for Development : You will develop and maintain a streamlined, secure "golden path" framework that empowers Roblox developers to easily build tools and services with appropriate IAM controls baked in by default, ensuring security is seamlessly integrated into the development lifecycle.
• Have the independence, opportunity and the end-to-end responsibility to develop security services within the Roblox infrastructure ecosystem.

You Have :

• Familiarity with OPA, Topaz, SPIFFE / SPIRE : You are familiar with open policy agent (OPA), Topaz, and the SPIFFE / SPIRE framework and similar technologies used for policy enforcement, workload attestation, and identity federation in cloud-native environments.
• Experience with Public Key Infrastructure (PKI) : You have hands-on experience with the design, implementation, and maintenance of PKI solutions.
• Experience with Privileged Access Management (PAM) : You have hands-on experience implementing and maintaining PAM solutions to control, monitor, and audit privileged access within production environments, demonstrating your ability to mitigate the risk of unauthorized access or misuse.
• Proficiency in diverse access control models , including Role-Based (RBAC), Attribute-Based (ABAC), and Risk-Based Access Control systems!
• 4+ years of relevant professional experience in building scalable, available, distributed backend applications!
• Proficiency with at least one object oriented programming language (Python, Java, Go C++, C# .NET).
• Knowledge of REST API, design patterns, and scalable containerized systems and microservices.
• Experience mentoring as well as leading the work of junior engineers.

You Are :

• A great technical leader : You have experience with leading the technical work to deliver automation.
• Team-oriented : a collaborative team player who enjoys working with others.
• Passionate about security : You have experience with security, or you are curious about it and you are willing to learn and grow.

J-18808-Ljbffr