Senior Software Engineer - Identity & Privileged Access Management
Bloomberg
Software Engineering
New York, NY, USA
Posted on Nov 12, 2025
Our Team:
Bloomberg’s Platform Security organization is responsible for securing the infrastructure, systems, and data that power our global financial information network. Within this organization, the Identity & Privileged Access Management (PAM) team ensures that every user, service, and system across Bloomberg securely and seamlessly accesses the resources they need—nothing more, nothing less.
We design, build, and scale the foundational services that govern identity, authorization, and privileged access across Bloomberg’s hybrid environment. Our systems are central to enforcing least privilege, meeting compliance requirements, and enabling secure connectivity and automation at enterprise scale.
What’s in it for you:
You’ll join a highly collaborative team that’s modernizing Bloomberg’s identity platform and privileged access ecosystem. You’ll have the opportunity to:
- Design and build scalable identity and access control services that operate across thousands of applications and systems.
- Solve challenging problems in authentication, authorization, and credential lifecycle management.
- Contribute to Bloomberg’s security automation efforts, integrating IAM and PAM with cloud-native and on-prem systems.
- Work with cutting-edge technologies, from OAuth2 and OIDC to secrets management, certificate automation, and just-in-time access models.
We’ll trust you to:
- Design and implement high-performance, fault-tolerant services that manage identities, roles, policies, and entitlements.
- Engineer automation to manage credentials, secrets, and privileged accounts across heterogeneous environments (Linux, Windows, macOS, cloud).
- Collaborate with partner teams in Platform Security, Infrastructure Engineering, and Compliance to deliver robust, auditable solutions.
- Integrate open source and vendor PAM technologies (e.g., Teleport, CyberArk) with Bloomberg’s internal platforms.
- Drive adoption of modern security engineering and infrastructure-as-code practices.
- Lead architectural and design discussions, mentor junior engineers, and champion best practices in secure software development.
You’ll need to have:
- 4+ years of hands-on software engineering experience (we value skill and impact more than years).
- Strong programming skills in Python, Go, or Java.
- Deep understanding of authentication and authorization concepts (OAuth2, SAML, OIDC, RBAC, ABAC).
- Experience in building distributed and high-availability (HA) solutions targeting 99.9999% uptime..
- Solid understanding of Linux systems and networking fundamentals.
- Knowledge of infrastructure-as-code principles (e.g., Terraform, Ansible).
We’d love to see:
- Solid understanding of cryptographic principles as they relate to secrets management, credential rotation, and secure remote access.
- Experience managing infrastructure at scale with an emphasis on secure automation and privileged task execution.
- Familiarity with operating system-level security controls used to enforce access restrictions (e.g., sudo policies, SELinux, eBPF, auditd).
- Experience integrating and securing both homegrown and third-party systems within a PAM framework.
- Hands-on experience designing and operating privileged access management platforms in complex enterprise environments.
- Understanding of enterprise identity ecosystems and how privileged access fits into broader governance and compliance initiatives.