Bestow

Engineering Manager – Identity and Access Management Platform

Bestow

full-time

Posted on:

Location Type: Remote

Location: Remote • 🇺🇸 United States

Visit company website
AI Apply
Apply

Salary

💰 $180,000 - $205,000 per year

Job Level

SeniorLead

Tech Stack

CloudDockerGoKubernetesPostgresSQL

About the role

  • Lead a team of Backend Software Engineers.
  • Partner with Product Managers, Underwriters, Design, and external partners to develop and support solutions to power digital life insurance enrollment experience.
  • Collaborate with teams across Bestow to plan and execute the product roadmap.
  • Remain hands-on in the code and actively participate in system design and architecture decisions.
  • Regularly review pull requests, providing thoughtful feedback that elevates code quality.
  • Drive large initiatives from conception through delivery.
  • Lead Auth0 optimization efforts including migration from Authorization Extension to Authorization Core.
  • Architect authentication/authorization separation to enable independent scaling, caching, and policy management.
  • Design token management strategies and implement SCIM integration for automated user provisioning.
  • Orchestrate effective engineering ceremonies that promote collaboration and continuous improvement.
  • Create personalized growth plans for each team member, identifying strengths and development areas.
  • Communicate complex technical concepts clearly to both technical and non-technical stakeholders.

Requirements

  • Bachelor's Degree or equivalent experience required
  • 8+ years professional experience in the software industry, with at least 1 year of management experience while keeping your coding skills strong
  • Professional experience with Go preferred
  • Comfortable using Docker for local software development
  • Familiar with modern, scalable system architectures (load balancing, horizontal scaling, etc.)
  • Experience with PostgreSQL or other relational databases (comfortable writing ANSI SQL)
  • Familiar with API design tools/languages (Protocol Buffers, Swagger, OpenAPI, etc.)
  • Cloud computing & Kubernetes (or similar container orchestration) preferred
  • Hands-on experience with Auth0, Okta, or similar identity platforms including tenant/organization configuration, connection management, and Rules/Actions
  • Deep understanding of OAuth 2.0 flows, OpenID Connect, token types (access, refresh, ID tokens), and JWT structure/validation
  • Experience designing authentication systems that support multiple organizations with tenant isolation, partner-specific branding, and SSO configurations
  • Familiarity with RBAC, ABAC, and policy-based access control; experience separating authentication from authorization concerns
  • Understanding of token lifecycle management including caching strategies, rotation policies, revocation mechanisms, and optimization for scale
  • Experience with SCIM protocol for automated user provisioning and de-provisioning workflows
  • Experience integrating SAML 2.0 and OIDC-based SSO connections for B2B partnerships
  • Understanding of authentication security best practices, audit logging requirements, and regulatory compliance (HIPAA, state insurance regulations)
  • Deep understanding of the entire software development lifecycle, including feature inception, system maintenance, continuous integration and release strategies, and GenAI developer tooling
  • Ability to track key metrics and consistently meet established Service Level Agreements (SLAs)
  • Ability to understand complex technical problems and identify areas of risk
  • Ability to go deep technically when necessary—you should be able to contribute changes to the team's codebases at any time
  • Highly organized and detail-oriented
  • Proven track record of building and retaining high-performing teams
  • Strong problem-solving abilities
  • Excellent communication and collaborative attitude
  • End-to-end ownership mentality
Benefits
  • Competitive salary and equity based on role
  • Policies and managers that support work/life balance, like our flexible paid time off and parental leave programs
  • 100% paid-premium option for medical, dental, and vision insurance
  • Lifestyle stipend to support your physical, emotional, and financial wellbeing
  • Flexible work-from-home policy and open to remote
  • Remote and WFH options, as well as a beautiful, state-of-the-art office in Dallas’ Deep Ellum, for those who prefer an office setting
  • Employee-led diversity, equity, and inclusion initiatives

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills
GoDockerPostgreSQLANSI SQLAPI designKubernetesAuth0OAuth 2.0OpenID ConnectSCIM
Soft skills
leadershipcommunicationproblem-solvingorganizationcollaborationdetail-orientedteam buildingtechnical understandinggrowth planningrisk identification
Certifications
Bachelor's Degree