Senior Software Engineer, Identity & Access

About this role

## About Stack AI

Stack AI is a no-code platform for designing, testing, and deploying AI workflows powered by large language models. Our visual, drag-and-drop interface lets teams connect their data to AI models and ship production applications — from chatbots to document-processing pipelines to database Q&A tools — without writing code.

## The role

Every large enterprise that adopts Stack AI needs to control precisely who can do what, on whose behalf, across their whole organization. We're hiring a Senior Software Engineer, Identity & Access to build the access layer that makes that possible: the authentication, authorization, and access control that let our largest and most regulated customers adopt Stack AI with confidence.

This is foundational work for enterprise adoption. Strong identity is what lets a large organization roll Stack AI out across many teams, and lets their administrators manage all of it cleanly. You'll own that layer across the platform, from sign-on to fine-grained permissions.

## What you'll do

• **Own enterprise sign-on.** Deliver SSO across OIDC and SAML so customers onboard with their own identity provider.
• **Own authorization and RBAC.** Build role-based access control with fine-grained, query-time enforcement across the product.
• **Own provisioning and lifecycle.** Deliver SCIM provisioning and directory sync so user and group management stays in step with the customer's directory.
• **Own delegated and machine identity.** Build token exchange, on-behalf-of flows, service accounts, and domain-wide delegation so agents and services act with scoped authority.
• **Own access governance.** Build the entitlements, session and token management, and controls that keep access clean and auditable at scale.

## What we're looking for

• 4+ years building backend systems, with significant time spent on identity, authentication, or authorization.
• Real depth in OIDC, OAuth2, SAML, token exchange, and multi-tenant RBAC.
• Y...