Saviynt
Saviynt21mo ago
USD 160000–250000/yr

Principal Software Engineer, Privileged Access Management

CanadaCanada·San Francisco,Vancouver,San FranciscoFull-Timelead
OtherSoftware EngineerSoftware Engineering
2 views0 saves0 applied

Quick Summary

Overview

Saviynt’s Enterprise Identity Cloud helps modern enterprises scale cloud initiatives and solve the toughest security and compliance challenges in record time.

Technical Tools
awsazuredockerelasticsearchgcpjavakubernetesreactredissqlagileci-cdcode-reviewmentoringmicroservicesrest-apissystem-design
Principal Engineer — PAM Platform

Saviynt’s Enterprise Identity Cloud helps modern enterprises scale cloud initiatives and solve the toughest security and compliance challenges in record time. We bring together Identity Governance (IGA), granular application access, cloud security, and Privileged Access Management (PAM) to secure the entire business ecosystem with a frictionless user experience. The world’s largest brands — including federal agencies and Fortune 500 financial institutions — trust Saviynt to accelerate digital transformation, empower distributed workforces, and meet continuous compliance.
 
This role is on the PAM Platform team, building the next generation of PAM infrastructure that runs across multi-tenant SaaS, customer-managed deployments, and federal GovCloud environments. We are a distributed, AI-first R&D organization, and we are actively rolling out an AI-Driven Development Lifecycle (AiDLC) as our SDLC of record.
Drive technical strategy and architecture across PAM platform components, including federal-compliant deployment topologies
 
Partner with Product and Engineering Management on requirements analysis, roadmap planning, and technical decision-making
 
Lead end-to-end design and delivery of new services from greenfield through production hardening
 
Operate within and help shape our AiDLC workflow: living specs, AI-generated implementations, property-based and integration testing as blocking gates, and audit-tracked human approvals
 
Author and maintain the engineering contracts (CLAUDE.md, prompt libraries, agent skills, code standards) that govern how AI-driven development happens on the platform
 
Conduct deep code reviews on critical and security-sensitive changes — including AI-generated code
 
Mentor senior, staff, and associate principal engineers; raise the technical bar across the team

Debug, optimize, and refactor existing services as we evolve toward multi-tenant, multi-cloud, federal-
ready

Serve as a technical expert for internal teams and, when needed, customer-facing escalations

1+ year of software engineering experience as a Principal Software Engineer with a SaaS company

Track record of taking systems from design through production at scale, including multi-tenant SaaS

Hands-on experience building security-focused systems — Privileged Access Management, Identity Governance, Authentication, Secrets Management, or adjacent domains

Required knowledge of FedRAMP, FIPS 140-3, and GovCloud (AWS GovCloud or Azure Government) — what they constrain, why, and how to design within them

Working knowledge of modern cryptography in practice: TLS/mTLS, KMS-backed key hierarchies, envelope encryption, HSM/key vault integration

Nice to Have

~1 min read

Solid hands-on Kubernetes experience — EKS or equivalent, Helm, manifests, operators, day-2 operations. Not “I used kubectl apply once.”

Cloud platform proficiency on AWS or Azure; multi-cloud experience is a plus
Microservices and API design: REST, gRPC/Protobuf, and the trade-offs between them

Experience with event-driven architectures (message buses, async workflows) — you know when to reach for them and when not to

Workflow orchestration experience (Temporal or similar) is a plus

Relational database design at scale — PostgreSQL preferred; schema-per-tenant or comparable isolation patterns a plus

Strong testing discipline: unit, integration, end-to-end, and property-based testing

Infrastructure as Code: Terraform, Helm; GitOps (ArgoCD) a plus

CI/CD pipeline design and ownership — GitLab, GitHub Actions, Jenkins, CloudBees, or equivalent

Observability: OpenTelemetry, structured logging, metrics, tracing

Containerization: Docker multi-stage builds, distroless/minimal runtimes

Active, deliberate use of AI coding tools (Claude Code, Cursor, Copilot, or comparable) as part of your daily workflow — beyond autocomplete

Comfort working in a spec-driven, agent-assisted development model with mandatory verification gates; AiDLC will be our SDLC, and we expect candidates to embrace and help refine it

Critical-review instincts: you don’t ship AI-generated code without reading it, testing it, and understanding it

Demonstrated experience mentoring engineers and leading technical initiatives across distributed teams

Strong written and verbal communication — you can write a clear design doc, a clear PR description, and a clear engineering contract for an AI agent

Comfortable operating in a globally distributed organization (US + India)

Bachelor’s or Master’s degree in Computer Science, a related technical discipline, or equivalent professional experience
 
Excellent facilitation and consensus-building skills across engineering, product, and security stakeholders
 
Demonstrated initiative and ability to prioritize independently in a fast-moving environment
You may also be eligible to participate in a Saviynt discretionary bonus plan, subject to the rules governing the program, whereby an award, if any, depends on various factors, including, without limitation, individual and organizational performance.
 
If required for this role, you will:
Complete security & privacy literacy and awareness training during onboarding and annually thereafter
Review (initially and annually thereafter), understand, and adhere to Information Security/Privacy Policies and Procedures such as (but not limited to):
 
> Data Classification, Retention & Handling Policy
> Incident Response Policy/Procedures
> Business Continuity/Disaster Recovery Policy/Procedures
> Mobile Device Policy
> Account Management Policy
> Access Control Policy
> Personnel Security Policy
> Privacy Policy
 
Saviynt is an amazing place to work. We are a high-growth, Platform as a Service company focused on Identity Authority to power and protect the world at work. You will experience tremendous growth and learning opportunities through challenging yet rewarding work that directly impacts our customers, all within a welcoming and positive work environment. If you're resilient and enjoy working in a dynamic environment you belong with us!
 
Saviynt is an equal opportunity employer and we welcome everyone to our team.  All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.

Location & Eligibility

Where is the job
Vancouver, Canada
Hybrid — some on-site time required
Who can apply
Open to applicants worldwide
Listed under
Worldwide

Listing Details

Posted
October 1, 2024
First seen
March 26, 2026
Last seen
July 11, 2026

Posting Health

Days active
106
Repost count
0
Trust Level
44%
Scored at
July 11, 2026

Signal breakdown

freshnesssource trustcontent trustemployer trust
Saviynt
Saviynt
lever

Saviynt is a leading provider of cloud-native identity and governance platform solutions, empowering enterprises to secure their digital transformation, safeguard critical assets, and meet regulatory compliance.

Employees
3k+
Founded
2010
View company profile
Newsletter

Stay ahead of the market

Get the latest job openings, salary trends, and hiring insights delivered to your inbox every week.

A
B
C
D
Join 12,000+ marketers

No spam. Unsubscribe at any time.

SaviyntPrincipal Software Engineer, Privileged Access ManagementUSD 160000–250000