Your day-to-day will blend hands-on engineering (writing code, building integrations, tuning controls) with architecture and program ownership (setting standards, defining patterns, and driving adoption across teams). You will be responsible for turning high-level objectives,like “implement zero trust for workforce access” or “deploy phishing-resistant MFA at scale”,into concrete designs, automation, and measurable risk reduction.

In this role, you will:

• Engineer modern identity and access controls
• Design, implement, and operate workforce identity solutions (e.g., Okta/Entra and other IdPs) including SSO, MFA, conditional access, and lifecycle automation via SCIM.
• Develop and roll out phishing-resistant MFA for high-value accounts and critical access paths (e.g., FIDO2/WebAuthn, hardware keys, device-bound authenticators).
• Define and maintain RBAC/IAM patterns for enterprise applications (role models, groups, entitlements, JIT access, and approvals).

• Implement zero trust for workforce and enterprise access
• Design and deploy controls that combine user identity, device posture, network context, and application sensitivity to enforce least-privilege access.
• Partner with Network and Infrastructure teams to integrate mTLS, service identity, and policy-based access into internal services and admin interfaces.
• Help transition from legacy perimeter models to zero trust network access (ZTNA) patterns for employees, contractors, and third parties.

• Secure SaaS and collaboration platforms
• Evaluate, onboard, and harden SaaS applications (Google Workspace, Microsoft 365, Slack, HRIS, ticketing, and other business apps) to align with enterprise security policies.
• Implement and tune controls such as SCIM provisioning, data access policies, DLP, sharing controls, and audit logging across the SaaS estate.
• Partner with business and IT owners to ensure new SaaS applications meet baseline security standards before adoption.

• Harden endpoints and the extended workforce
• Collaborate with Endpoint/IT teams to define and enforce baseline configurations for laptops, workstations, and other managed devices via MDM and EDR.
• Design secure patterns for contractor and vendor access, including device requirements, identity separation, and time-bound access.
• Support investigations and incident response related to identity, endpoint, and SaaS domains.

• Automate and instrument everything you can
• Build automation and self-service experiences for access requests, approvals, access reviews, and break-glass workflows.
• Develop integrations between IdPs, HRIS, ticketing, and other systems to minimize manual toil and reduce identity-related error rates.
• Define and instrument metrics for enterprise security (e.g., MFA coverage, zero trust policy enforcement, joiner/mover/leaver SLA adherence, SaaS posture).

• Partner on detection, response, and governance
• Work with Security Operations and SIEM teams to ensure robust visibility into identity, device, and SaaS activity, and to build high-signal detections.
• Contribute to policies, standards, and reference architectures that encode enterprise security expectations.
• Author clear documentation and runbooks that make it easy for teams to consume and operate the controls you build.

XML job scraping automation by YubHub

The goal is to build bespoke software to model our infrastructure at both a physical and logical level to drive planning, coordination, automation, of some of the most advanced AI datacenters.

You'll work closely with frontend engineers to bring rich user experiences built on top of your backends, and own how these services are deployed and run in production including scaling, redundancy and monitoring.

Key responsibilities include:

• Designing and building data models and APIs that capture the complexity of datacenter infrastructure
• Creating high-throughput API services in Go (gRPC, GraphQL, and/or REST) that support the data density and interaction speed the frontend demands
• Building the backend architecture from the ground up, including service structure, data access patterns, caching strategy, and API contracts designed to scale with the team and product scope
• Integrating with internal/external systems and data sources that feed infrastructure planning, ensuring the platform reflects real-world state and planned builds accurately
• Deployment and operational infrastructure for the services you build, including Kubernetes manifests, CI/CD pipelines, observability, and reliability practices

Requirements include:

• Strong proficiency in Go
• Deep experience with relational databases, specifically PostgreSQL and CockroachDB
• Experience designing and building APIs (gRPC, GraphQL, and REST) with attention to type safety, pagination, caching, filtering, and error handling
• Proven experience of performance optimization on the backend
• Familiarity with authentication, authorization, and backend security best practices for internal tooling
• Experience owning deployment and operations for the services you build
• Genuine curiosity about (or direct experience with) physical datacenter infrastructure
• Strong data modeling instincts
• Ability to work directly with infrastructure engineers to understand their workflows, identify pain points, and translate messy real-world processes into clean data models and APIs

Nice to have includes direct experience with datacenter operations, infrastructure planning, or familiarity with DCIM tools like NetBox, Infrahub or Sunbird, experience with CockroachDB specifically, experience building systems that handle complex graph-like or hierarchical relational data, exposure to Infrastructure-as-Code, Terraform, or GitOps workflows, and experience with event-driven architectures, change data capture, or audit logging for compliance-sensitive systems.

At CoreWeave, we work hard, have fun, and move fast! We're in an exciting stage of hyper-growth that you will not want to miss out on. We're not afraid of a little chaos, and we're constantly learning. Our team cares deeply about how we build our product and how we work together, which is represented through our core values: Be Curious at Your Core, Act Like an Owner, Empower Employees, Deliver Best-in-Class Client Experiences, and Achieve More Together.

XML job scraping automation by YubHub

BlackRock's purpose is to help more and more people experience financial well-being. As a fiduciary to investors and a leading provider of financial technology, our clients turn to us for the solutions they need when planning for their most important goals.

This is a senior individual contributor engineering role leading the design, development, and implementation of advanced cloud automation solutions. You'll own the execution and delivery of large-scale projects while collaborating across multiple teams in addition to being responsible for hands-on keyboard execution of project components. Example projects include migration of existing on-prem systems to cloud, migration of existing cloud systems to alternate/new cloud(s), integration of acquired systems into our unified environment, and deployment of net-new cloud systems. This role offers high executive visibility, as you will influence strategic decisions and present progress and outcomes to senior leadership.

This role sits within the Aladdin Platform Hosting Services team, which is responsible for building and managing the infrastructure hosting platform upon which the Aladdin system runs. Our team provides reusable infrastructure services and components that allow developers to leverage cloud capabilities in a simple, cloud-agnostic, and scalable manner.

Key Responsibilities

• Architect and implement secure, scalable, and automated cloud infrastructure solutions across multi-cloud environments (AWS, Azure, GCP) tailored for financial workloads.
• Lead automation initiatives using Infrastructure as Code (IaC) tools such as Terraform, Ansible, and CloudFormation to support mission-critical financial applications.
• Develop CI/CD pipelines for cloud deployments and application delivery with strict adherence to financial compliance and audit requirements.
• Champion an automation-first mindset by identifying repetitive tasks and implementing automation solutions—even for processes that initially appear as one-offs.
• Leverage AI tools and frameworks to enhance efficiency, optimize workflows, and enable the broader engineering team to adopt AI-driven solutions.
• Collaborate with risk, compliance, and security teams to ensure all automation processes meet regulatory standards (e.g., SOX, PCI-DSS, FFIEC).
• Adopt a product-centric approach, treating internal platforms and automation frameworks as products with clear ownership, lifecycle management, and continuous improvement.
• Own execution and delivery of large-scale projects, balancing hands-on technical work with cross-functional collaboration across engineering, operations, and governance teams.
• Provide executive-level updates, influencing strategic decisions and ensuring alignment with organizational priorities.
• Evaluate emerging technologies for automation, scalability, and reliability in financial contexts, including cost optimization and resiliency planning.

Required Qualifications

• 10+ years of experience in technology systems development or management, with at least 5+ years focused on cloud automation and infrastructure engineering.
• 3+ years expertise in Infrastructure as Code (IaC) tools such as Terraform, Ansible, or similar.
• Strong experience with cloud platforms (AWS, Azure, GCP) and hybrid environments in regulated industries.
• Proficiency in scripting and programming languages (Python, PowerShell, Bash).
• 3+ years hands-on experience with CI/CD pipelines (Azure DevOps, GitHub Actions, Jenkins, etc), containerization (Docker, Kubernetes), and orchestration frameworks.
• Deep understanding of networking, security, and compliance in cloud environments, including encryption, identity management, and audit logging.
• Excellent leadership, communication, and problem-solving skills.
• Experience in contributing to Agile teams so that everyone achieves their goals

Preferred Qualifications

• Advanced certifications such as AWS Certified Solutions Architect – Professional, Azure Solutions Architect Expert, or Google Professional Cloud Architect.
• Experience with financial compliance frameworks (SOX, PCI-DSS, FFIEC) and automated security controls.
• Background in DevSecOps, automated governance, and AI-driven automation strategies.
• Background in Kubernetes (k8s) system management
• Experience with “next-gen” IaC tools such as Crossplane, Radius, Pulumi, env0, spacelift, etc.

You have:

• Automation-First Attitude: Ability to identify repetitive tasks and implement automation solutions proactively, even for processes that initially appear as one-offs.

• AI Proficiency: Skilled in leveraging AI tools to improve efficiency and enable team adoption of AI-driven workflows.

• Product View: Treats internal platforms and automation frameworks as products, ensuring clear ownership, lifecycle management, and continuous improvement.

• Execution & Leadership: Capable of delivering large-scale projects through hands-on technical work while collaborating effectively across multiple teams.

• Executive Communication: Comfortable presenting technical strategies and outcomes to senior leadership and influencing organizational priorities.

• Motivated: You enjoy rolling up your sleeves and getting your hands dirty

• Why Join Us?

• Opportunity to lead strategic cloud automation initiatives for the Aladdin platform in a highly regulated financial environment.

• Work with cutting-edge technologies and shape the future of cloud engineering in finance.

• Collaborative, innovative environment with career growth opportunities and executive exposure.

Our benefits

To help you stay energized, engaged and inspired, we offer a wide range of employee benefits including: retirement investment and tools designed to help you in building a sound financial future; access to education reimbursement; comprehensive resources to support your physical health and emotional well-being; family support programs; and Flexible Time Off (FTO) so you can relax, recharge and be there for the people you care about.

Our hybrid work model

BlackRock’s hybrid work model is designed to enable a culture of collaboration and apprenticeship that enriches the experience of our employees, while supporting flexibility for all. Employees are currently required to work at least 4 days in the office per week, with the flexibility to work from home 1 day a week. Some business groups may require more time in the office due to their roles and responsibilities. We remain focused on increasing the impactful moments that arise when we work together in person – aligned with our commitment to performance and innovation. As a new joiner, you can count on this hybrid model to accelerate your learning and onboarding experience here at BlackRock.

At BlackRock, we are all connected by one mission: to help more and more people experience financial well-being. Our clients, and the people they serve, are saving for retirement, paying for their children’s educations, buying homes and starting businesses. Their investments also help to strengthen the global economy: support businesses small and large; finance infrastructure projects that connect and power cities; and facilitate innovations that drive progress.

This mission would not be possible without our smartest investment – the one we make in our employees. It’s why we’re dedicated to creating an environment where our colleagues feel welcomed, valued and supported with networks, benefits and development opportunities to help them thrive.

For additional information on BlackRock, please visit @blackrock | Twitter: @blackrock |

XML job scraping automation by YubHub