Senior Engineer (Identity & Access)

emagine is looking for a Senior Identity & Access Engineer to join a fast-scaling product team building an AI-driven application platform used by millions of users worldwide.

Start: ASAP

Length: 6 months with possible extension

Location: Stockholm

About the role
You will own and build the identity layer that secures both the platform itself and every application running on it. This includes authentication flows, authorization models, session handling, and secure multi-tenant isolation.

The role sits at the intersection of security, platform engineering, and product development. You will design a developer-friendly but highly secure identity system that ensures end users can seamlessly and safely access applications at scale. This is a critical component in the platform, as identity is the entry point for every request and user interaction.

Key responsibilities

• Design and build the platform’s identity and access management system

• Implement authentication flows such as OAuth2, OIDC, social login, magic links, MFA, and session management

• Define and implement authorization models including RBAC and fine-grained permissions

• Ensure secure multi-tenancy isolation across applications, users, and data

• Build and manage API key and token systems

• Own secrets management including secure storage, rotation, and access control

• Migrate from existing authentication setup to a modern, composable identity architecture

• Operate identity as a business-critical service with monitoring, alerting, and incident handling

• Work closely with product and engineering teams to ensure secure-by-default solutions

What we are looking for

• Strong experience within identity and access management

• Solid understanding of OAuth2, OIDC, JWT, sessions, and token lifecycles

• Experience building or operating authentication systems in a scalable environment

• Background working with multi-tenant SaaS or platform environments

• Strong security mindset with focus on data protection, isolation, and risk mitigation

• Experience with authorization models like RBAC or ABAC

• Experience working with modern auth providers or identity platforms

• Comfortable working with backend systems and APIs (TypeScript or similar)

• Experience handling migrations of identity systems in production environments

• Strong operational mindset with focus on reliability and performance

Nice to have

• Experience with secrets management tools

• Knowledge of compliance frameworks such as SOC2 or GDPR

• Experience with open-source auth solutions or identity platforms

• Understanding of identity challenges in low-code or generated application environments

• Experience with cloud environments and managed identity services

Tech stack (examples)

• Frontend: React, Typescript

• Backend: Go, Rust

• Cloud: AWS, GCP, Cloudflare

• Data: ClickHouse, BigQuery, Firestore, Spanner

• DevOps: Kubernetes, Terraform, CI/CD, observability tooling