As we scale out product environments to span both private and public cloud infrastructure, we have an increasingly complex identity and access management challenges. To address these challenges we continue to expand our Identity and Access Management (IAM) team.

As an IAM DevOps Engineer you will collaborate with engineers, developers and technical program managers to deliver high quality software to production. You will design, develop, test, deploy and operate IAM identity lifecycle management solutions end-to-end across complex, secure public and private cloud environments at Salesforce. Your solutions will primarily benefit the technical community inside the company but may also be used as a model for customers with similar identity challenges.

You will deal with Authentication and Authorization challenges for both private & public cloud infrastructure. You closely work with key stakeholders to understand their business, and evolve solutions to facilitate automation of identity lifecycle management and governance for critical Salesforce technical staff on customer facing infrastructure.

Responsibilities:

• Design, development, test and deployment of new IAM services.
• Own quality and drive automated testing and continuous deployments.
• Participate in the architecture and solution design.
• Generate technical specifications/documentation.
• Collaborate with Product Management to create user-centric solutions.
• Participate and support Agile software development process.

• BS/BEng/BTech degree, or equivalent work experience.
• 5+ years experience software development with a structured language.
• 5+ years experience deploying and operating infrastructure at scale.
• Knowledge in at least one programming language.
• Knowledge on Linux OS internals (authZ/authN in particular).
• Strong knowledge of operating systems, network security and open source products.
• Strong verbal and written communication skills.
• Experience managing code through source control, CI/CD pipelines.
• Coding Languages: Python/Go

Desired Skills/Experience:

• Knowledge and experience building applications in Golang.
• Declarative state configuration experience (Puppet, Terraform, etc).
• Industry recognized certifications (RedHat, AWS, etc).
• Working experience with Commercial, and Open Source (OpenLDAP, OpenDJ, etc.) enterprise IAM platforms. Knowledge of Active Directory is a plus.
• Understanding of legacy AuthN/AuthZ architectures and specifications (Kerberos, LDAP, Radius, Tacacs+, etc).
• Experience with service offerings and ideally Identity & Access from major cloud providers (AWS, GCP, Azure etc.), and on-premise/cloud hybrid architectures.