Sr Engineer, Cloud Native; Auth - AI Detection and Response; AIDR; Hybrid

As a global leader in cybersecurity, Crowd Strike protects the people, processes and technologies that drive modern organizations. Since 2011, our mission hasn’t changed — we’re here to stop breaches, and we’ve redefined modern security with the world’s most advanced AI-native platform. We work on large scale distributed systems, processing almost 3 trillion events per day and this traffic is growing daily.

Our customers span all industries, and they count on Crowd Strike to keep their businesses running, their communities safe and their lives moving forward. We’re also a mission-driven company. We cultivate a culture that gives every Crowd Striker both the flexibility and autonomy to own their careers. We’re always looking to add talented Crowd Strikers to the team who have limitless passion, a relentless focus on innovation and a fanatical commitment to our customers, our community and each other.

Ready to join a mission that matters? The future of cybersecurity starts with you.

Join the AIDR team as a Cloud Native Engineer, specializing in Authentication and Authorization systems. You will be instrumental in designing, developing, and maintaining high-performance, scalable, and secure identity and access management solutions crucial to the AIDR platform.

This role is hybrid, requiring 2-3 days per week on-site at one of the posted locations.

• Successfully developing and maintaining robust, scalable authentication and authorization services that handle high traffic volume reliably.
• Implementing and maintaining modern identity protocols (OAuth 2.1, OIDC) and provisioning standards (SCIM) with impeccable security and compliance.
• Evolving a resilient Relationship-Based Access Control (ReBAC) system for fine-grained access control across the AIDR platform.
• Maintaining secure user login experiences, including Multi-Factor Authentication (MFA), through expertly integrated frontend components.
• Providing key contributions to the design and implementation of new AI Security for Non Human Identities (NHI).

• Design, build, and deploy cloud-native services for Authentication (AuthN) and Authorization (AuthZ) focusing on performance, reliability, and security.
• Implement and manage modern identity standards, including OAuth 2.1 and OpenID Connect (OIDC) flows.
• Develop and maintain user and group provisioning capabilities using the System for Cross-domain Identity Management (SCIM) protocol.
• Engineer and iterate on the Relationship-Based Access Control (ReBAC) system to ensure fine-grained control over access to platform resources and AI Agents, including systems for Non-Human Identities (NHI).
• Implement and maintain frontend integration for user identity features, including login interfaces and Multi-Factor Authentication (MFA) components.
• Participate in code reviews, design discussions, and operational support for core identity services.

• 10+ years of combined experience as a Software Engineer, with a significant focus on cloud-native development.
• 4+ years of experience in designing and implementing highly available Authentication and Authorization services.
• Deep expertise in identity protocols, including mandatory hands‑on experience with OAuth 2.1 and OpenID Connect (OIDC) implementation and best practices.
• Proven experience with implementing sophisticated access control models, such as ReBAC, ABAC, or RBAC, ideally in a large-scale, microservices environment.
• Experience with identity provisioning and synchronization protocols like SCIM.
• Proficiency in at least one major cloud platform (e.g., AWS, Azure, GCP) and containerization technologies (e.g., Docker, Kubernetes).
• Strong command of at least one modern programming language suitable for backend services (e.g., Go, Python).
• Experience integrating identity features into frontend applications (e.g., React, Vue, Angular) and handling secure session management and MFA implementation.
• Kubernetes and Authentication/Authorization expertise.
• Exposure to Auth0, Okta, MS Active Directory and other IDPs.
• Competency in Authentication protocols: OIDC, SAML, OAuth, etc.

• Prior experience working at a…