[Remote] Principal Engineer – Identity & Golang

Note: The job is a remote job and is open to candidates in USA. Xsolla is a global commerce company with robust tools and services to help developers solve the inherent challenges of the video game industry. They are seeking a Principal Engineer with deep expertise in Identity and Golang backend development to lead the evolution of their authentication and authorization stack, enabling developers and players to connect safely across the Xsolla ecosystem.

Responsibilities

• Architect and lead the design of Xsolla’s next-generation identity platform, supporting authentication, authorization, single sign-on (SSO), and account federation across internal and external services
• Develop high-performance Golang microservices that manage user identity, access tokens, and permission enforcement at global scale
• Collaborate closely with security, DevOps, and platform engineering teams to embed Zero Trust principles and standardize access governance across services
• Integrate modern IAM standards and protocols (OAuth2, OIDC, SCIM) to enhance developer experience and partner integrations
• Mentor and coach engineering teams on secure service design, identity best practices, and cross-service communication patterns
• Partner with product teams to ensure that identity-related features — such as player login, entitlement management, and account linking — are scalable, compliant, and user-friendly
• Define and enforce API and data security standards, supporting compliance initiatives
• Evaluate and integrate third-party identity frameworks or open-source solutions (e.g., Keycloak, Auth0, Ory, ForgeRock) as part of Xsolla’s hybrid identity strategy

Skills

• 10+ years in backend or systems engineering, including 5+ years designing and implementing authentication and authorization services
• Expert-level skills in Golang, with experience building and scaling distributed, event-driven microservices
• Proven track record with identity federation, token management, and access control systems
• In-depth understanding of authentication and authorization standards (OAuth 2.0, OIDC, JWT, SCIM)
• Solid grasp of security principles, encryption, key management, and secrets management systems (e.g., HashiCorp Vault, AWS KMS)
• Experience building high-availability systems in Kubernetes-based environments using AWS, or GCP
• Strong architectural vision with the ability to influence cross-team design and technology direction
• Excellent communication and collaboration skills across distributed teams
• Experience building or contributing to identity systems for gaming or SaaS ecosystems
• Familiarity with multi-tenant architectures, ReBAC/ABAC models, and policy-as-code (OPA, AuthZ frameworks)
• Background in security engineering, DevSecOps, or compliance automation
• Contributions to open-source Golang

Benefits

• 100% company-paid medical, dental, and vision plans
• Unlimited Flexible Time Off
• A personalized career roadmap for each employee
• Investing in professional development through training and educational opportunities

Company Overview

Company H1B Sponsorship