Senior Security Software Engineer, IAM

Every day tens of millions of people come to Roblox to explore create play learn and connect with friends in 3D immersive digital experiences all created by our global community of developers and creators.

At Roblox were building the tools and platform that empower our community to bring any experience that they can imagine to life. Our vision is to reimagine the way people come together from anywhere in the world and on any device. Were on a mission to connect a billion people with optimism and civility and looking for amazing talent to help us get there.

A career at Roblox means youll be working to shape the future of human interaction solving unique technical challenges at scale and helping to create safer more civil shared experiences for everyone.

As a Senior Security Software Engineer on the IAM team at Roblox youll build the next generation of identity and access management defining how both humans and AI agents get identity authenticate and receive access to Robloxs production infrastructure. As AI agents become first-class actors in our systems youll design the tooling and policy that governs what they can do how they prove who they are and how we keep that access safe at massive scale. Youll also continue to evolve our workload authentication privileged access management and secure golden path for developers. Your work will directly shape the security posture of our entire production environment and set the standard for agentic IAM across the industry.

You will:

• Design Identity and Access for AI Agents: You will define how AI agents get credentials receive scoped permissions and have their sessions managed throughout their lifecycle pioneering the patterns for agentic identity in production.
• Engineer Hybrid Production IAM at Scale: You will design and implement scalable IAM solutions for Robloxs hybrid production environment spanning on-premises and cloud infrastructure ensuring secure and efficient access for humans workloads and AI agents across the entire ecosystem.
• Develop and Manage Workload Authentication & Authorization: You will build robust authentication and authorization mechanisms for workloads and services accessing production environments enforcing least privilege and secure access controls.
• Establish the Secure Golden Path for Development: You will develop and maintain a streamlined secure golden path framework that empowers developers to build tools and services with appropriate IAM controls baked in by default.
• Have the independence opportunity and end-to-end responsibility to develop security services within the Roblox infrastructure ecosystem.

You have:

• 4 years of relevant professional experience building scalable distributed backend applications.
• Proficiency in at least one programming language such as Python Java Go C or C# .NET.
• AI fluency: You actively use AI tools in your daily workflow understand LLM capabilities and limitations and can reason about what it means to give an AI agent an identity and permissions.
• Knowledge of REST APIs design patterns and scalable containerized systems and microservices.
• Experience mentoring or leading the technical work of other engineers.
• Expertise in a couple of these areas will set you up for success:
• Familiarity with policy and identity frameworks like OPA Topaz SPIFFE/SPIRE or similar technologies used for policy enforcement workload attestation and identity federation in cloud-native environments
• Experience with Public Key Infrastructure (PKI) design implementation or maintenance of PKI solutions
• Experience with Privileged Access Management (PAM) implementing or maintaining PAM solutions to control monitor and audit privileged access within production environments
• Familiarity with access control models such as Role-Based (RBAC) Attribute-Based (ABAC) or Risk-Based Access Control