Senior Software Engineer, Authentication

Job Description

The New York Times has been fulfilling our mission to "seek the truth and help people understand the world" for nearly 170 years by delivering world-class journalism. As we seek to become a leader in the digital media business, we are expanding our investment in engineering to build strategic platforms to enhance the work of our journalists and product partners, and deliver innovation at the speed of news.

About the Team:

The Auth team builds and maintains a world-class authentication and authorization platform that enables the creation and continued access of millions of user accounts, as securely and seamlessly as possible. Becoming a registered user is a very important first step of our customer journey, we support the company's subscription business model by providing the platforms necessary for all product teams to maintain a differentiated user experience for our readers. We constantly strive to be the experts in Customer Identity and Access Management (CIAM) technologies, so that we can engineer pragmatic solutions designed to keep our user login and registration experience as frictionless, reliable, and secure as possible.

About the Role:

We are looking for a creative and experienced engineer to build our next-generation authentication platforms used by hundreds of millions of New York Times readers on a daily basis. You will deliver robust technical solutions that power the growth of our subscriber-first business and have an impact on the company's bottomline. You will refine our login and registration experiences used by many NYT products such as News, Crossword, Cooking by striking the right balance between user friction and security controls. Your efforts will strengthen the trust between the Times and our readers. You will report to Jethro Chu , Engineering Manager in Identity Platforms.

Key Responsibilities:
  • Create and support highly scalable, performant and fault-tolerant systems
  • Design intuitive, sustainable, and secure APIs for user authentication, authorization and data access
  • Design intuitive and flexible data schemas to represent concepts of user identity and accounts
  • Develop standards, libraries and processes that allow other teams to integrate with our platform smoothly and securely
  • Provide expertise and recommendations on authentication related matters
  • Improve and uphold our code quality through test automation, code reviews, and other best practices
  • Collaborate with teammates and cross-functional partners to create requirements and translate them into pragmatic technical solutions
  • Mentor engineers to level up the group's abilities

You have solid experience in:
  • Building highly scalable, performant and fault-tolerant distributed systems
  • At least one modern programming language (preferably Java or Go)
  • Handling transactions, procedures and query optimizations in a relational database (preferably Postgres or Oracle)
  • Authentication / authorization protocols and frameworks such as OAuth, OIDC, SSO, JWT, SAML, Session Management, etc.
  • Developing gRPC/GraphQL/REST APIs with versioning strategy
  • Formulating data models and schemas (Protobuf/JSON/SQL)
  • Cloud-based (AWS/GCP) architecture and technologies at scale
  • Container orchestration technologies (Kubernetes, Knative)
  • Troubleshooting complex systems using tools such as DataDog, SumoLogic, Stackdriver or similar

Even better if you are knowledgeable in any of:
  • Cryptography such as encryption, hashing, key management, TLS.
  • Common threat vectors and web application vulnerabilities, including strategies to detect, mitigate and prevent them
  • Secure engineering concepts that can be applied to coding practices and code reviews
  • Service-to-service authentication and communication
  • Infrastructure and configuration as code


The New York Times is committed to a diverse and inclusive workforce, one that reflects the varied global community we serve. Our journalism and the products we build in the service of that journalism greatly benefit from a range of perspectives, which can only come from diversity of all types, across our ranks, at all levels of the organization. Achieving true diversity and inclusion is the right thing to do. It is also the smart thing for our business. So we strongly encourage women, veterans, people with disabilities, people of color and gender nonconforming candidates to apply.

The New York Times Company is an Equal Opportunity Employer and does not discriminate on the basis of an individual's sex, age, race, color, creed, national origin, alienage, religion, marital status, pregnancy, sexual orientation or affectional preference, gender identity and expression, disability, genetic trait or predisposition, carrier status, citizenship, veteran or military status and other personal characteristics protected by law. All applications will receive consideration for employment without regard to legally protected characteristics. The New York Times Company will consider qualified applicants, including those with criminal histories, in a manner consistent with the requirements of applicable state and local "Fair Chance" laws.