Application Security Engineer, VDC

Veeam, the #1 global market leader in data resilience, believes businesses should control all their data whenever and wherever they need it. Veeam provides data resilience through data backup, data recovery, data portability, data security, and data intelligence. Based in Seattle, Veeam protects over 550,000 customers worldwide who trust Veeam to keep their businesses running. Join us as we move forward together, growing, learning, and making a real impact for some of the world’s biggest brands. The future of data resilience is here - go fearlessly forward with us.We are looking for an Application Security Engineer to join our growing team of experts supporting our cloud-native SaaS platform. The SaaS solutions we develop and offer to our customers are built on Microsoft Azure, delivering secure, scalable, and enterprise-grade data protection services. This role will focus on building and maturing our identity and access management (IAM) strategy across our Azure multi-tenant applications.Your tasks will include:Designing and securing authentication and authorization flows across Azure multi-tenant enterprise applicationsDriving adoption of secure identity patterns, including OAuth2, OpenID Connect, and SAMLIntegrating and securing Azure Entra ID (formerly Azure AD), including App Registrations, App Roles, consent frameworks, and Graph APIImplementing and refining Role-Based Access Control (RBAC), Just-in-Time access (PIM), and conditional access policiesConducting threat modeling and security reviews for IAM architecture and featuresCollaborating with engineering and platform teams to harden identity surfaces and enforce least privilege accessContributing to access management audit support for compliance frameworks such as FedRAMP, SOC 2, and ISO 27001Technologies we work with:Azure Entra ID, Microsoft Graph API, Azure App Registrations, API ManagementAzure Functions, Cosmos DB, Azure Storage, Static Web AppsAtlassian Suite, Azure DevOps, GitHubIaC tools: Terraform, Azure ARM templatesCI/CD: Azure DevOps Pipelines, GitHub ActionsObservability: Azure Monitor, AppInsights, Elastic Cloud (ELK)What we expect from you:3+ years of experience in Application Security, Identity Engineering, or Cloud Security with a focus on IAMDemonstrated hands-on experience with Azure Entra ID, including multi-tenant SaaS identity integrationsStrong understanding of modern identity standards: OAuth2, OIDC, SAML, SCIMFamiliarity with Microsoft Graph API, App Permissions, and Azure RBAC modelsExperience designing and securing Azure PaaS applicationsProven ability to support engineering and SRE teams with secure identity practicesExperience working in CI/CD environments with integrated security toolingFluent English, with the ability to collaborate with globally distributed teamsWill be an advantage:Experience leading or supporting SaaS compliance programs (FedRAMP, SOC 2, ISO 27001)Familiarity with threat modeling methodologies (STRIDE, LINDDUN)Experience with C#/.NET/GO and securing authentication flows in application codeWorking knowledge of AWS identity services (IAM, Cognito, STS) a plusUnderstanding of cryptography in application contexts (certificates, token signing, etc.)We offer:Unlimited PTOMedical, dental, and vision benefits that start on day oneFlexible spending accountsLife insurance and short-term and long-term disability coverageFamily planning support benefits, along with 100% paid maternity and parental leave401k matchVeeam Care Days – additional 24 hours for your volunteering activitiesProfessional training and education, including courses and workshops, internal meetups, and unlimited access to our online learning platforms (Percipio, Athena, O’Reilly) and mentoring through our MentorLab programPlease note: If the applicant is permanently present outside of the United States, Veeam reserves the right to refuse to consider the application for a job. Remote work is only possible in case the employee is located in the United States.The salary range posted is On Target Earnings (OTE), which is inclusive of base and variable pay. When making an offer of employment, Veeam will take into consideration the candidate’s expectations, experience, education, scope of responsibility for the role, and the current market demands.United States of America Pay Range$136,500—$195,000 USDVeeam Software is an equal opportunity employer and does not tolerate discrimination in any form on the basis of race, color, religion, gender, age, national origin, citizenship, disability, veteran status or any other classification protected by federal, state or local law. All your information will be kept confidential.Please note that any personal data collected from you during the recruitment process will be processed in accordance with our Recruiting Privacy Notice. The Privacy Notice sets out the basis on which the personal data collected from you, or that you provide to us, will be processed by us in connection with our recruitment processes. By applying for this position, you consent to the processing of your personal data in accordance with our Recruiting Privacy Notice.Originally posted on Himalayas

Apply Now