Logo
BD (Tissuemed Ltd)

Sr. Staff Software Engineer (IAM)

BD (Tissuemed Ltd), San Diego

Save Job

Senior Staff Software Engineer – Identity & Access Management (IAM)

5 days ago – Be among the first 25 applicants

Job Description Summary

JG-5 level individual contributor responsible for defining and designing multi-tenant, SaaS applications at BD. The Software Architect acts as a principal architectural and technical advisor, collaborating with experienced and opinionated engineers across the division to continuously evolve product architecture in alignment with business goals. This role demands a strategic mindset, deep technical expertise, and strong leadership in architectural decision‑making.

Responsible for defining and designing secure, multi‑tenant SaaS applications at BD with a strong focus on Identity and Access Management (IAM). Acts as principal architectural advisor with IAM leadership. The Senior Staff Software Engineer collaborates with engineering teams to evolve product architecture in alignment with business goals.

Key Responsibilities

  • Design and implement scalable, secure IAM solutions, including identity federation, SSO, user lifecycle management, and policy‑based access control.
  • Define and evolve architecture for multi‑tenant SaaS applications using microservices, event‑driven, and cell‑based paradigms.
  • Design scalable, secure, resilient, and cost‑effective cloud‑native systems aligned with business and product strategy.
  • Lead architectural initiatives, proof‑of‑concepts, and technology evaluations to guide platform evolution.
  • Collaborate with product managers and engineering teams to refine product vision and ensure architectural alignment.
  • Mentor developers and foster a culture of technical excellence and architectural best practices.
  • Conduct design and code reviews to ensure simplicity, maintainability, and adherence to standards.
  • Continuously assess existing systems against best practices and drive improvements.
  • Ensure seamless system integration, performance optimization, and scalability across distributed services.
  • Promote architectural community development and contribute to shared knowledge and paved paths.

Architecture Skills

  • Experience with Domain‑Driven Design (DDD) and its principles; strong understanding of SOLID principles and the Single Responsibility Principle.
  • Strong experience in designing RESTful APIs.
  • Understanding of Cell‑based architecture and its benefits: scalability, resilience, and simplicity.
  • Experience with Event‑Driven Architecture (EDA) and patterns such as publish‑subscribe, message queuing, and event sourcing.
  • Familiarity with microservices architecture and patterns such as service discovery, API gateways, and service meshes.
  • Experience designing scalable identity and modern authorization systems, including policy‑based access control using frameworks such as Casbin, OPA, or similar.
  • Hands‑on experience with Okta and Auth0 for identity federation, SSO, and user lifecycle management.
  • Exposure to SPIFFE/SPIRE for secure service identity and workload authentication is a plus.

Technical Skills

  • Extensive experience with Identity and Access Management (IAM), including identity federation, SSO, user lifecycle management, and policy‑based access control using frameworks such as Okta, Auth0, Casbin, or OPA.
  • Hands‑on experience with AWS services: Lambda, API Gateway, S3, DynamoDB, SQS, Kinesis.
  • Strong grasp of DevOps practices: CI/CD, infrastructure as code, automated testing.
  • Experience with data storage and retrieval: relational and NoSQL databases.
  • Exposure to big data technologies: Spark, Hive, EMR, EMR Serverless, KDA.
  • Proficiency in C#, .NET, Golang, and frontend frameworks such as JavaScript, Angular, React.

Educational Requirements

  • Bachelor’s degree in computer science, computer engineering, or related IT/technical field.
  • 15+ years of progressive software engineering experience, with 8+ years focused on IAM and cloud security.

At BD, we prioritize on‑site collaboration and require a minimum of four days of in‑office presence per week for most roles. Remote or field‑based positions may have different workplace arrangements indicated in the posting.

For certain roles, employment is contingent upon the Company’s receipt of sufficient proof that you are fully vaccinated against COVID‑19. In some locations, COVID‑19 testing may be available and/or required. Consistent with BD’s Workplace Accommodations Policy, requests for accommodation will be considered pursuant to applicable law.

To learn more about BD, visit

Becton, Dickinson, and Company is an Equal Opportunity Employer. We evaluate applicants without regard to race, color, religion, age, sex, creed, national origin, ancestry, citizenship status, marital or domestic or civil union status, familial status, affectionate or sexual orientation, gender identity or expression, genetics, disability, military eligibility or veteran status, and other legally protected characteristics.

Salary Range Information

$155,900.00 - $257,300.00 USD Annual

#J-18808-Ljbffr