Join the Base10 family

Open opportunities with founders believing purpose is key
to profits and companies solving problems for the 99%

Senior Software Engineer, Product Security

Brex

Brex

Software Engineering, Product
Seattle, WA, USA
Posted on Nov 29, 2024

Why join us

Brex is the AI-powered spend platform. We help companies spend with confidence with integrated corporate cards, banking, and global payments, plus intuitive software for travel and expenses. Tens of thousands of companies from startups to enterprises — including DoorDash, Flexport, and Compass — use Brex to proactively control spend, reduce costs, and increase efficiency on a global scale.

Working at Brex allows you to push your limits, challenge the status quo, and collaborate with some of the brightest minds in the industry. We’re committed to building a diverse team and inclusive culture and believe your potential should only be limited by how big you can dream. We make this a reality by empowering you with the tools, resources, and support you need to grow your career.

Engineering at Brex

The Engineering team includes Data, IT, Security, and Software, and is responsible for building innovative products and infrastructure for both internal and external users. We have multiple autonomous and collaborative teams who are eager to learn, teach, and constantly improve how things work. Together, we strive to build robust and scalable systems that enable Brex to grow rapidly and help our customers reach their full potential.

What you’ll do

We are looking for folks with an interest in the authentication and authorization space. You will be building customer-facing products that will drive direct business impact and shape the security of the Brex platform for customers. You will have the opportunity to learn and push the frontier of providing the best financial software experience to help companies grow. You will be encouraged to be metric and data-driven and to think creatively to help Brex scale and prepare for the new markets we are about to enter.

Where you’ll work

This role will be based in our Seattle office. You must be willing to work in office at least 2 days per week on Wednesday and Thursday, starting the week of January 6th, 2025. Employees will be able to work remotely for up to 4 weeks per year, for a minimum of one week at a time.

Responsibilities

  • Design and build strong, resilient, and robust APIs, libraries, and tools to power our authentication and authorization infrastructure
  • Be responsible for the full software development lifecycle: design, development, testing, and operating in production
  • Work cross functionally with product, design, and other engineering teams to build customer features
  • Occasionally work on-call shifts, responding to customer support requests

Requirements

  • 5+ years of experience working as a software engineer
  • Knowledge of authentication and authorization topics (OAuth, SSO, RBAC, ABAC, etc.)
  • Experience working with backend programming languages (Java, Kotlin, Python)
  • Experience building scalable systems in a microservices environment
  • Experience working with SQL databases
  • Familiarity with all aspects of the software development life cycle
  • Strong communication and interpersonal skills
  • English proficiency/fluency, both written and speaking (note: interviews will be conducted in English)

Bonus points

  • Golang or Kotlin experience
  • Experience with Identity as a Service with Okta
  • Experience with authorization providers and frameworks (Zanzibar)

Compensation

The expected salary range for this role is $192,000 - $240,000. However, the starting base pay will depend on a number of factors including the candidate’s location, skills, experience, market demands, and internal pay parity. Depending on the position offered, equity and other forms of compensation may be provided as part of a total compensation package.

Please be aware, job-seekers may be at risk of targeting by malicious actors looking for personal data. Brex recruiters will only reach out via LinkedIn or email with a brex.com domain. Any outreach claiming to be from Brex via other sources should be ignored.