GitLab2 дня назад

Senior Software Engineer (RoR/Go), SSCS: Authentication

Remote

Обязанности

  • 01Contribute to the team's overall direction and play a direct part in shaping the future roadmap of GATE and GitLab's authentication services
  • 02Design and implement authentication features across the Rails monolith and GATE, including token issuance, validation, and identity services
  • 03Help migrate authentication and token management paths from the monolith into GATE while maintaining reliability across all deployment models
  • 04Build authentication mechanisms from the ground up, such as Workload Identity Federation
  • 05Bolster the security posture of our users and organizations through robust access management and by addressing vulnerabilities reported through our HackerOne program
  • 06Solve technical problems of high scope and complexity across Go and Ruby codebases
  • 07Help define and improve internal standards for style, maintainability, and best practices in a high-scale environment
  • 08Maintain and advocate for these standards through code review
  • 09Represent GitLab and its values in public communication around broader initiatives, specific projects, and contributions from people not working for GitLab Inc
  • 10Ship moderately sized features and improvements with moderate guidance and support from other team members
  • 11Collaborate with the team on larger projects, including the build-out of GATE
  • 12Improve GitLab engineering projects through the maintainer trainee program at your own comfortable pace, while striving to become a project maintainer

Требования

  • 01Professional experience with Go and/or Ruby in scaling or mission-critical software-as-a-service products
  • 02Familiarity with authentication and authorization technologies or techniques such as OAuth, OpenID Connect (OIDC), Security Assertion Markup Language (SAML), single sign-on (SSO), System for Cross-domain Identity Management (SCIM), Lightweight Directory Access Protocol (LDAP), JSON Web Token (JWT), role-based access control (RBAC), or identity and access management (IAM)
  • 03Knowledge of token systems, cryptographic signing, and key management
  • 04Experience building or contributing to a service from concept to production, including proposal, discussion, and execution
  • 05Proficiency in written and verbal English, with the ability to clearly communicate complex problems and solutions in a remote, largely asynchronous work environment
  • 06Experience with performance and optimization problems, and a demonstrated ability to diagnose and prevent these problems
  • 07Experience working in a highly agile, iterative software development process, with the ability to manage your work effectively, stay organized, and follow through on priorities

Условия

  • 01Remote work environment
  • 02Largely asynchronous work environment
  • 03High-performance culture driven by values and continuous knowledge exchange
  • 04Opportunity to collaborate with industry leaders to solve complex problems
  • 05Career acceleration and innovation flourishes environment