Senior Principal Security Engineer

Responsibilities

• Security Architecture & Strategy: Lead the long-term technical roadmap for platform-wide security patterns, including multi-tenant isolation, key lifecycle management, secure token issuance (JWT), secrets management, and robust API-to-API communication.
• Modern Identity Engineering: Design and implement next-generation CIAM solutions and secure backend services (using Java/Kotlin) to migrate from legacy IAM systems to modern, highly scalable identity platforms.
• Access Control & Policy Enforcement: Architect and operate declarative authorization systems utilizing policy-as-code engines (e.g., Open Policy Agent (OPA) with Rego-based evaluation) for granular, high-throughput access decisions.
• Technical Leadership & Mentorship: Guide, mentor, and elevate the maturity of the engineering organization, promoting secure coding practices and driving threat-modeling initiatives.
• Your Qualifications
• Identity, Access, & Security Protocols
• Deep IAM/CIAM Expertise: Significant software engineering experience in architecting and operating enterprise-scale Identity and Access Management platforms.
• Standard Federation Protocols: Expert-level knowledge of OAuth2, OIDC, SAML, and SCIM user provisioning.
• Hands-on Platform Experience: Comprehensive experience deploying and managing industry-standard IAM platforms (e.g., Auth0, Keycloak, Ping Identity, or Ory).
• Policy-as-Code: Strong experience implementing and scaling fine-grained authorization policies using Open Policy Agent (OPA), Rego, or similar policy engines.
• Solid understanding of LDAP/Active Directory integration patterns for enterprise user authentication and centralized group management
• Strong expertise in modern digital identity concepts, encompassing authentication mechanisms (MFA, SSO, Passwordless), and a thorough understanding of identity protocols acting as the foundation for authorization architectures
• Software Engineering & Distributed Systems
• Backend Engineering: Proven experience building high-throughput, low-latency secure microservices in JVM-based languages (Java or Kotlin).
• System Reliability at Scale: Solid understanding of highly available (HA/DR) distributed systems, observability (metrics, logs, traces), and SRE principles.
• API Security & Gateways: Deep experience securing API architectures and designing edge security patterns (e.g., rate limiting, token exchange, and mutual TLS).
• Proven track record of untangling and reverse-engineering complex, monolithic legacy applications to extract undocumented business rules, and systematically translating them into modern, decoupled, Policy-as-Code authorization architectures
• Compliance, Environment, & Leadership
• Regulated Environments: Experience building, operating, and auditing ide

Benefits

Additional Information

At Anaplan, we are a team of innovators focused on optimizing business decision-making through our leading AI-infused scenario planning and analysis platform so our customers can outpace their competition and the market. What unites Anaplanners across teams and geographies is our collective commitment to our customers' success and to our Winning Culture. Our customers rank among the who's who in the Fortune 50. Coca-Cola, LinkedIn, Adobe, LVMH and Bayer are just a few of the 2,400+ global companies who rely on our best-in-class platform. Our Winning Culture is the engine that drives our teams of innovators. We champion diversity of thought and ideas, we behave like leaders regardless of title, we are committed to achieving ambitious goals, and we love celebrating our wins - big and small. Supported by operating principles of being strategy-led, values -based and disciplined in execution, you'll be inspired, connected, developed and rewarded here. Everything that makes you unique is welcome; join us and let's build what's next - together! Anaplan is the leading enterprise decision-making platform, powering the world's largest enterprises with our proprietary Hyperblock™ technology and cloud infrastructure. We are seeking a Senior Principal Engineer to lead the architectural evolution of our Product Security and Customer Identity & Access Management (CIAM) capabilities. In this role, you will define and execute the technical strategy for secure multi-tenant isolation, modern identity migrations, and secure API-to-API communications across our highly distributed global SaaS platform.

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at anaplan? Share your experience