• Core Engineering - Deployment Runtime and Architecture - Critical Infrastructure - Core Authentication Engineer

    Location(s) US-NJ-Jersey City
    Job ID
    Schedule Type
    Full Time
    Vice President/Executive Director
    Business Unit
    Tech Infrastructure - Staff
    Employment Type

    What We Do
    At Goldman Sachs, our Engineers don’t just make things – we make things possible. Change the world by connecting people and capital with ideas. Solve the most challenging and pressing engineering problems for our clients. Join our engineering teams that build massively scalable software and systems, architect low latency infrastructure solutions, proactively guard against cyber threats, and leverage machine learning alongside financial engineering to continuously turn data into action. Create new businesses, transform finance, and explore a world of opportunity at the speed of markets.

    Engineering, which is comprised of our Technology Division and global strategists groups, is at the critical center of our business, and our dynamic environment requires innovative strategic thinking and immediate, real solutions. Want to push the limit of digital possibilities? Start here.

    Who We Look For
    Goldman Sachs Engineers are innovators and problem-solvers, building solutions in risk management, big data, mobile and more. We look for creative collaborators who evolve, adapt to change and thrive in a fast-paced global environment.
    The Core Authentication Engineering team within Security Platform Engineering is responsible for designing, developing and implementing critical authentication platforms. Core Authentication Engineering also provides consulting services to other application engineering teams within the firm to ensure consistently secure and reliable authentication implementations. GS authentication platforms are built on a diverse set of foundational vendor, open source and in-house developed products.


    • Build critical authentication solutions to integrate with existing and new systems
    • Collaborate on feature design and problem solving
    • Partner with colleagues from across technology and risk to ensure an outstanding, useable and unobtrusive experience for authentication
    • Help to provide frictionless integration with the firm’s runtime, deployment and SDLC technologies
    • Manage the full lifecycle of software components, from requirements through design, testing, development, release and demise
    • Help to communicate and promote best practices for authentication across the firm
    • Engage in production troubleshooting and engineer product improvements to eliminate manual investigation were possible

    • Deep expertise in MIT Kerberos authentication concepts including security configuration, replication optimization, client configuration, cross-realm authentication, usage/abuse reporting, cryptography, secure coding best practices and bridging to Java
    • Experience designing, installing and operating security products and infrastructures
    • Ability to create resilient, low latency and robust services through a combination of high availability infrastructure and transaction management
    • Ability to troubleshoot and diagnose performance, security, and process interactions in complex distributed systems
    • Ability to understand and effectively debug both new and existing software
    • Proficiency designing, developing and testing software in C and Java
    • Experience managing a product code base through a Continuous Delivery life-cycle model
    • Solid experience of version control, continuous integration, deployment and configuration management tools
    • Ability to communicate technical concepts effectively and possessing the interpersonal skills required to collaborate effectively with colleagues across diverse technology teams

    Preferred Qualifications
    • 5 or more years of experience developing and running MIT Kerberos in an enterprise environment
    • A strong understanding of single sign on technologies and standards
    • Experience monitoring, measuring, auditing and supporting software
    • Scripting skills using Python or Bash
    • Experience designing, installing and operating security products and infrastructures
    • Strong background in security concepts, including encryption and secure coding practices
    • Strong background in Linux client-server application environments
    • Some background in Windows client-server application environments
    • Strong analytical, reporting and presentation skills
    • Strong Unix/C network programming skills
    • In-depth knowledge of Kerberos
    • OpenSSL, and FreeRADIUS library internals a plus
    • Knowledge of open standard authentication protocols such as SAML, OAuth2 and OIDC
    • Familiarity with the Microsoft Active Directory Kerberos implementation


    The Goldman Sachs Group, Inc. is a leading global investment banking, securities and investment management firm that provides a wide range of financial services to a substantial and diversified client base that includes corporations, financial institutions, governments and individuals. Founded in 1869, the firm is headquartered in New York and maintains offices in all major financial centers around the world.

    © The Goldman Sachs Group, Inc., 2018. All rights reserved Goldman Sachs is an equal employment/affirmative action employer Female/Minority/Disability/Vet.