Senior Software Engineer - Identity & Privileged Access Management

Description & Requirements

Our Team:

Bloomberg's Platform Security organization is responsible for securing the infrastructure, systems, and data that power our global financial information network. Within this organization, the Identity & Privileged Access Management (PAM) team ensures that every user, service, and system across Bloomberg securely and seamlessly accesses the resources they need-nothing more, nothing less.

We design, build, and scale the foundational services that govern identity, authorization, and privileged access across Bloomberg's hybrid environment. Our systems are central to enforcing least privilege, meeting compliance requirements, and enabling secure connectivity and automation at enterprise scale.

What's in it for you:

You'll join a highly collaborative team that's modernizing Bloomberg's identity platform and privileged access ecosystem. You'll have the opportunity to:

• Design and build scalable identity and access control services that operate across thousands of applications and systems.
• Solve challenging problems in authentication, authorization, and credential lifecycle management.
• Contribute to Bloomberg's security automation efforts, integrating IAM and PAM with cloud-native and on-prem systems.
• Work with cutting-edge technologies, from OAuth2 and OIDC to secrets management, certificate automation, and just-in-time access models.

We'll trust you to:

• Design and implement high-performance, fault-tolerant services that manage identities, roles, policies, and entitlements.
• Engineer automation to manage credentials, secrets, and privileged accounts across heterogeneous environments (Linux, Windows, macOS, cloud).
• Collaborate with partner teams in Platform Security, Infrastructure Engineering, and Compliance to deliver robust, auditable solutions.
• Integrate open source and vendor PAM technologies (e.g., Teleport, CyberArk) with Bloomberg's internal platforms.
• Drive adoption of modern security engineering and infrastructure-as-code practices.
• Lead architectural and design discussions, mentor junior engineers, and champion best practices in secure software development.

You'll need to have:

• 4+ years of hands-on software engineering experience (we value skill and impact more than years).
• Strong programming skills in Python, Go, or Java.
• Deep understanding of authentication and authorization concepts (OAuth2, SAML, OIDC, RBAC, ABAC).
• Experience in building distributed and high-availability (HA) solutions targeting 99.9999% uptime..
• Solid understanding of Linux systems and networking fundamentals.
• Knowledge of infrastructure-as-code principles (e.g., Terraform, Ansible).

We'd love to see:

• Solid understanding of cryptographic principles as they relate to secrets management, credential rotation, and secure remote access.
• Experience managing infrastructure at scale with an emphasis on secure automation and privileged task execution.
• Familiarity with operating system-level security controls used to enforce access restrictions (e.g., sudo policies, SELinux, eBPF, auditd).
• Experience integrating and securing both homegrown and third-party systems within a PAM framework.
• Hands-on experience designing and operating privileged access management platforms in complex enterprise environments.
• Understanding of enterprise identity ecosystems and how privileged access fits into broader governance and compliance initiatives.

Salary Range = 00 USD Annually + Benefits + Bonus

The referenced salary range is based on the Company's good faith belief at the time of posting. Actual compensation may vary based on factors such as geographic location, work experience, market conditions, education/training and skill level.

We offer one of the most comprehensive and generous benefits plans available and offer a range of total rewards that may include merit increases, incentive compensation (exempt roles only), paid holidays, paid time off, medical, dental, vision, short and long term disability benefits, 401(k) +match, life insurance, and various wellness programs, among others. The Company does not provide benefits directly to contingent workers/contractors and interns.

Discover what makes Bloomberg unique - watch our podcast series for an inside look at our culture, values, and the people behind our success.