Senior​/Lead Software Engineer; SMTS​/LMTS), IAM; Device Trust

Job Overview

The Salesforce Enterprise Security Engineering team is seeking an experienced software engineer to design and build foundational Identity and Access Management (IAM) platform services. Our work ensures that every engineer at Salesforce can operate securely, regardless of environment. This role is open to candidates based in San Francisco, CA, New York, NY, or Bellevue, WA. It is a hybrid position requiring a weekly in‑office commitment.

• Build and ship high‑quality, production‑grade software using modern engineering practices, with AI as a core part of your development workflow by pushing the boundaries of AI development tools to deliver secure, optimized, and high‑quality code.
• Design and orchestrate complex systems where AI agents integrate seamlessly into human workflows, driving efficiency and innovation at scale.
• Contribute to building and maintaining the shared system context, an explicit repository of system designs, constraints, and standards that enables AI to operate accurately and reliably.
• Critically evaluate code (human or AI‑generated) for correctness, quality, security, and performance.
• Design and build scalable authentication and authorization services for distributed environments.
• Develop and maintain system software for multiple operating systems (Linux, macOS, Windows).
• Implement and operate large‑scale security services using Golang or Python.
• Integrate and extend secure device attestation mechanisms, including TPM‑based hardware trust.
• Contribute to platform‑level identity and security solutions using PKI, certificates, and secure transport.
• Build and manage containerized workloads with Kubernetes, Docker, and infrastructure‑as‑code tools like Terraform.
• Operate and maintain services in a full Dev Ops model: monitor, troubleshoot, and continuously improve.
• Work in an Agile team to deliver iteratively and collaboratively.
• Partner with cross‑functional teams across security, infrastructure, and engineering to ensure platform integrity and trustworthiness.

• 8+ years of industry experience, with at least 5+ years building distributed systems in SaaS, PaaS, or IaaS environments.
• 5+ years operating in high‑availability, mission‑critical environments (99.999% uptime).
• Strong experience designing and operating distributed systems on public cloud platforms (AWS, GCP, or Azure).
• Proficiency in Golang and/or Python.
• Strong communication skills and a collaborative mindset that prioritizes team success.
• Experience with security protocols and identity frameworks including TLS, OAuth, SAML, PKI, and certificates.
• Familiarity with system patterns and API standards including REST and OpenAPI/Swagger.
• Solid understanding of Dev Ops practices, continuous integration and delivery (CI/CD), monitoring, and ownership of production systems.
• Experience with CI/CD tools such as Jenkins, AWS Code Pipeline, or AWS Code Build.
• Experience building software for Linux and/or Windows environments.
• Understanding of large‑scale infrastructure‑as‑a‑service platforms such as Amazon AWS, Microsoft Azure, or Open Stack.
• Familiarity with source code management and version control systems such as Git or Perforce.
• Hands‑on experience with container technologies such as Docker and Kubernetes.

• Experience developing system‑level features related to platform security or device attestation.
• Experience working with hardware‑backed security mechanisms such as TPM, HSM, or Secure Boot.
• Familiarity with security compliance frameworks such as NIST, ISO, or SOC
  2.
• Experience securing products and infrastructure against the OWASP Top
  10 and/or CWE Top
  25.
• Broad exposure to various security disciplines and a deep understanding of core security concepts such as MFA, Zero Trust, and securely managing secrets or tokens.

We provide a comprehensive benefits package that includes time‑off programs, medical, dental, vision, mental health support, paid parental leave, life and disability insurance, 401(k), and an employee stock purchasing program. Additional details are available at

Salesforce is an equal‑opportunity employer and maintains a policy of non‑discrimination with all employees and applicants for employment. We evaluate employees and prospective employees on the basis of merit, competence and qualifications – without regard to race, religion, color, national origin, sex, sexual orientation, gender expression or identity, transgender status, age, disability, veteran or marital status, political viewpoint, or other classifications protected by law.

This policy applies to recruiting, hiring, job assignment, compensation, promotion, benefits, training, assessment of job performance, discipline, termination, and everything in between.