Senior Software Engineer (100% Remote)

The Mom Project is excited to support Etsy with their search for a Senior Software Engineer to join their team on a contract basis.

About the team:

The Enterprise Security and Access Management (ESAM team) safeguards the end to end security experience for Etsy admin, from the devices they use to everything they access with them. We unify digital access controls with physical device security to strengthen identity guarantees, reduce unnecessary access, and minimize the blast radius of security incidents. We focus on both what individuals can access (e.g., application permissions) and how they access it (e.g., ensuring requests originate from trusted company-managed devices). Our work spans device trust, access monitoring, identity governance, and authentication policies.

As part of our team, you'll work on evolving Etsy’s approach to enterprise security, developing solutions that combine software engineering best practices with strong security fundamentals.

About the role:

Etsy is seeking a Senior Security Software Engineer I to join our Enterprise Security and Access Management (ESAM) team within the larger Security organization. In this role, you’ll be instrumental in driving efforts around device trust, access monitoring, and auth policy enforcement.

We are looking for an individual with developer coding skills at a senior software engineer level and someone with a Security background. This role will utilize their device security and identity experience to work on tasks and projects, and help mature Etsy’s access management program. You’ll work closely with our MDM tooling (e.g., Jamf, Intune), identity providers (Okta, Google), and cloud platforms (GCP) to improve access governance. We’re seeking a strong engineering generalist with security expertise—comfortable operating across ambiguous problem spaces and independently shaping engineering solutions in collaboration with partners across Security, IT, and Infrastructure

Key projects this role may lead or contribute to include:

• Trusted Devices initiative
• Authentication Restriction Pilot
• Access Minimization Infrastructure

In this role, you will:

• You’ll lead and contribute to the design and implementation of enterprise security features that improve device-based access enforcement and identity assurance.
• You’ll build and maintain backend services and infrastructure that enable device trust, access intelligence, and authentication policy evaluation.
• You will work with TypeScript, JavaScript, Python, PHP, and may also use other languages.
• You’ll build observability into access paths, using logging and monitoring tools to understand and enforce device-based policies.
• You’ll design and implement IAM solutions and tooling to manage access privileges across employees and service accounts.
• You’ll integrate with and extend systems like Okta, GCP IAM, and MDM platforms to enable cohesive access decisions.
• You will work with a variety of tools, including Okta, Terraform, Chef, Jamf, InTune, and GCP native tools.
• You are comfortable providing estimates or project ideas that will influence your team’s roadmap.

Qualifications:

• 5+ years of experience as a security software engineer using TypeScript, JavaScript, Python, PHP, or other languages
• Experience in professional software development, delivering successful projects within a team as a senior software engineer.
• Experience in designing, implementing, and managing IAM solutions.
• Experience working with MDM and endpoint telemetry tools (Jamf, Intune, CrowdStrike, osquery, etc.) is a strong plus.
• Working knowledge of infrastructure-as-code tools such as Terraform and experience with cloud-native security (GCP preferred)

Hours and Location:

• Monday - Friday, 40 hours/week
• 100% remote for US-based candidates

We offer a competitive salary range for this position. Most candidates who join our team are hired at the median of this range, ensuring fair and equitable compensation based on experience and qualifications.

An Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status, and will not be discriminated against on the basis of disability.