Senior Engineer - Auth at Datum | Torre
warning

Heads-up

The job you’re trying to post already exists in Torre:

Senior Engineer - Auth

You'll secure and connect 1k clouds in the AI era, driving open-source innovation for builders.
Emma highlights
This highlight was written by Emma’s AI. Ask Emma to edit it.
Full-time

Legal agreement: Employment

Provide your expected compensation while applying
location_on
Remote (for United States residents)
Remote (for United Kingdom residents)
Match
skeleton-gauges
You have opted out of job matches in .
To undo this, go to the 'Skills and Interests' section of your preferences.
Review preferences
Shared by
Emma of Torre.ai
about 2 months ago

Requirements and responsibilities


Datum’s mission is to help 1k clouds thrive in the AI era by unlocking internet superpowers for every builder. We’re working in the open to bring the foundational capabilities that all the big guys use (private networking, peering, direct interconnection, etc) into the hands of builders and modern “alt clouds” — no network team required.One of Datum’s core values is to be connectors: of applications, services, networks, and people. As such, this role (just like all roles at Datum) will work directly with users, customers, partners, and the broader community.Another key value is to be open by default, from how we license our code (AGPLv3) to how we communicate, engage with, and document our work. We believe this engenders trust from our customers and community, but also because open is the best way to build. It's more secure, more operable, and even more enjoyable.Still interested? Read on!The RoleWe're seeking a senior/principal/staff level engineer focused on securely connecting 1k clouds together. Practically speaking, it means someone who wakes up every day thinking about federated authentication and authorization. Whether that's OAuth, SPIFFE, Authzed, Zitadel, k8s RBAC, or everything in between, the right candidate for this role can likely rattle off a few RFCs and has been dreaming of working on a system like this already.You'll work extensively with distributed systems, vendor APIs, networking protocols, software-defined networking, and cloud-native infrastructure while solving complex orchestration challenges across multiple cloud providers and edge locations. This role combines a passion for security, open-source development, and building systems that other engineers love to use. If you're intrigued by what 1 billion networks would look like, talk to us!What You'll DoControl Plane Infrastructure & ArchitectureDesign, implement, and run Datum's core authentication and authorization stackBuild customer-facing solutions to help our alt-cloud ecosystem thriveScale the management, monitoring, and metering of every actor in our system, human or notPartner with leadership to advance projects with key customers, partners, and suppliersDistributed Systems & PerformanceDesign distributed solutions that scale from startup to hyperscale usage patternsImplement intelligent traffic routing, load balancing, and failoverBuild observability, monitoring, and diagnostic tools for complex environmentsOptimize control plane performance for AI workloads and high-bandwidth applications with our network teamOpen Source LeadershipDrive technical networking decisions in collaboration with our open-source communityReview and mentor contributions from external developers on networking componentsMaintain high code quality standards and documentation for network APIsRepresent Datum at conferences and in technical working groupsCloud-Native & AI IntegrationDesign networking solutions that integrate seamlessly with Kubernetes and AI patternsBuild network policies and security frameworks for multi-tenant cloud environmentsImplement service mesh integration and east-west traffic optimizationEnsure compatibility with major cloud provider networking services (AWS, GCP, Azure)About YouAuthentication & AuthorizationStrong working knowledge of OAuth in complex production environments with multiple IdPs, including social and commercial (AWS IAM, Azure Entra, GCP, Auth0, Okta, etc.)Strong working knowledge of authorization (ABAC, RBAC, PBAC) and its ecosystem (Zanzibar, SpiceDB, OpenFGA, Cedar)Experience with Workload Identity Federation and/or SPIFFE and opinions about where the puck is goingDistributed Systems & Infrastructure5+ years of running large-scale production systems on Kubernetes or similar, with security as a first principleStrong experience with distributed systems design, security, auth, consensus algorithms, async reconciliation, and fault toleranceEnough familiarity with Kubernetes patterns and APIs that you can speak custom resources and admission controllersStrong experience with infrastructure as code (Flux, Terraform, Pulumi) for provisioningFamiliarity with SRv6, edge computing, or modern network routing would be a huge plusOpen Source & LeadershipTrack record of contributing to or maintaining networking-focused open-source projectsExperience mentoring engineers and driving technical decision-making in teamsUnderstanding of open-source governance, community building, and public developmentPassion for building networking tools that other developers and operators love to useTechnology StackLanguages: Go, RustData: PostgreSQL, GraphQL, Elasticsearch, MeilisearchInfrastructure: Kubernetes, Flux, Pulumi, ZitadelCloud Platforms: Cloudflare, AWS, GCP, Azure, multi-cloud networkingMonitoring: Prometheus, Grafana, OpenTelemetry, network flow analysisDevelopment: GitHub, CI/CD, automated testing, network simulationOpen Source CommitmentThis role involves significant public development work. You'll be:Contributing to Datum's public networking repositories with transparent developmentEngaging with the community through GitHub issues, RFCs, and technical discussionsSpeaking at networking conferences and writing technical blog postsCollaborating with external contributors, cloud providers, and other partnersMaintaining high standards for code quality, performance, and documentationWhat Success Looks LikeAdoption and growth for Datum in the cloud-native and AI infrastructure communitiesHigh-performance, reliable network connectivity across diverse cloud environmentsStrong developer experience as evidenced by community contributions and feedbackTechnical leadership recognized within the networking and distributed infra ecosystemScalable network architecture supporting the next generation of AI hyperscalersWe believe in openness, clarity, and collaboration. To learn more about how Datum aims to operate, please review our public handbook.
Optionally, you can add more information later (benefits, pre-screening questions, etc.)
check_circle

Payment confirmed

A member of the Torre team will contact you shortly

In the meantime, continue adding information to your job opening.