As a Staff Engineer on the Users team, you'll enhance security and architecture for a multi-tenant SaaS platform, focusing on identity and access management.
About HighLevel:
HighLevel is an AI-powered business operating system that gives agencies, entrepreneurs and SMBs the infrastructure to build, automate and scale. Today, HighLevel supports SMBs across 150+ countries, fueling community-driven growth rooted in real customer outcomes.
To date, businesses operating on HighLevel have generated over $7 billion in ecosystem value, demonstrating the impact of shared infrastructure at scale. By centralizing conversations, automation and intelligence into one system, we help businesses move faster, reduce complexity and execute efficiently.
Behind the platform, HighLevel powers more than 4 billion API hits and 2.5 billion message events daily. With 250 terabytes of distributed data, 250+ microservices and over 1 million domain names supported, our architecture is built for performance, resilience and long-term scalability.
Our people
With over 2,000 team members across 10+ countries, HighLevel operates as a global, remote-first organization built for speed and ownership. We value initiative, clarity and execution, creating space for ambitious people to build systems that support millions of businesses worldwide. Here, innovation thrives, ideas are celebrated and people come first, no matter where they call home.
Our impact
Every month, HighLevel enables more than 1.5 billion messages, 200 million leads and 20 million conversations for the more than 1 million businesses we support. Behind those numbers are real people building independence, expanding opportunity and creating measurable impact. We’re proud to be a part of that.
Learn more about us on our YouTube Channel or Blog Posts
HighLevel is an AI-powered business operating system that gives agencies, entrepreneurs and SMBs the infrastructure to build, automate and scale. Today, HighLevel supports SMBs across 150+ countries, fueling community-driven growth rooted in real customer outcomes.
To date, businesses operating on HighLevel have generated over $7 billion in ecosystem value, demonstrating the impact of shared infrastructure at scale. By centralizing conversations, automation and intelligence into one system, we help businesses move faster, reduce complexity and execute efficiently.
Behind the platform, HighLevel powers more than 4 billion API hits and 2.5 billion message events daily. With 250 terabytes of distributed data, 250+ microservices and over 1 million domain names supported, our architecture is built for performance, resilience and long-term scalability.
Our people
With over 2,000 team members across 10+ countries, HighLevel operates as a global, remote-first organization built for speed and ownership. We value initiative, clarity and execution, creating space for ambitious people to build systems that support millions of businesses worldwide. Here, innovation thrives, ideas are celebrated and people come first, no matter where they call home.
Our impact
Every month, HighLevel enables more than 1.5 billion messages, 200 million leads and 20 million conversations for the more than 1 million businesses we support. Behind those numbers are real people building independence, expanding opportunity and creating measurable impact. We’re proud to be a part of that.
Learn more about us on our YouTube Channel or Blog Posts
Role Summary:
As a Staff Engineer on the Users team, you will be the technical anchor for identity, access, auditing, notifications and security foundations across our multi-tenant SaaS platform. This role is not about feature velocity - it’s about building systems that are correct, resilient, and safe by default, and enabling other teams to move fast without breaking trust.
You’ll work closely with EMs, Product, and other engineers to design and evolve core primitives such as users, roles, permissions, tokens, and tenant isolation, auditing, notifications - at scale.
Responsibilities:
- Design and evolve secure multi-tenant architectures (Agency → Account → App or equivalent hierarchy) for 100k+ agencies
- Define and enforce tenant isolation guarantees at data, API, and infra levels
- Build and review authorization models (RBAC / ABAC / hybrid)
- Own token systems (API keys, OAuth flows, JWTs, scoped tokens, rotation, expiry)
- Design fine-grained scopes for internal APIs, public APIs, and partner integrations
- Map scopes → permissions → resources consistently
- Prevent over-scoped tokens and privilege escalation
- Lead security-critical backend designs (authZ boundaries, impersonation, auditability)
- Set patterns for secure-by-default APIs used by internal and external teams
- Partner with Infra/Security teams on Secrets management, Key rotation, Rate limiting & abuse prevention, Compliance readiness (SOC2 style thinking)
- Act as a multiplier: raise the security bar across engineering via reviews, RFCs, and mentoring
Requirements:
- 8+ years of backend engineering experience
- Proven experience building secure, multi-tenant SaaS platforms
- Deep understanding of: Authorization models (RBAC, ABAC), OAuth2 / JWT / API key systems, Threat modeling & security tradeoffs
- Strong system design skills - especially for long-lived platformsComfort owning ambiguous, high-impact areas
Nice to have:
- Experience designing platforms used by multiple internal teams
- Security reviews, incident learnings, or compliance exposure
- Experience with large-scale migrations (auth or identity related)
- Background in developer platforms or core infrastructure teams
#LI-Remote #LI-NJ1
EEO Statement:
The company is an Equal Opportunity Employer. As an employer subject to affirmative action regulations, we invite you to voluntarily provide the following demographic information. This information is used solely for compliance with government recordkeeping, reporting, and other legal requirements. Providing this information is voluntary and refusal to do so will not affect your application status. This data will be kept separate from your application and will not be used in the hiring decision.
We encourage you to review our Privacy Policy before submitting your application
Similar Jobs
Cloud • Security • Software • Cybersecurity • Automation
As a Business Development Representative, you'll lead outreach to potential accounts, generate qualified meetings, and collaborate with marketing and sales teams to identify prospects and opportunities.
Top Skills:
Linkedin Sales NavigatorOutreach.IoSalesforce
Artificial Intelligence • Fintech • Information Technology • Logistics • Payments • Business Intelligence • Generative AI
The Talent Experience Specialist manages career growth and employee recognition initiatives, supports the Career Experience platform, and coordinates learning programs and metrics at Coupa.
Top Skills:
Linkedin LearningLms
Cloud • Computer Vision • Information Technology • Sales • Security • Cybersecurity
As a Senior Threat Researcher, you will lead initiatives in threat detection, malware analysis, and automation, mentoring team members and enhancing scalable solutions to combat complex cyber threats.
Top Skills:
Binary NinjaC++CassandraElasticsearchGhidraGoIda ProMongoDBMySQLPostgresPythonRustSplunkX64Dbg
What you need to know about the Chennai Tech Scene
To locals, it's no secret that South India is leading the charge in big data infrastructure. While the environmental impact of data centers has long been a concern, emerging hubs like Chennai are favored by companies seeking ready access to renewable energy resources, which provide more sustainable and cost-effective solutions. As a result, Chennai, along with neighboring Bengaluru and Hyderabad, is poised for significant growth, with a projected 65 percent increase in data center capacity over the next decade.
