About the Role
Please note: this hybrid position is based in São Paulo, Brazil - welcoming both local professionals and those open to relocating to São Paulo.
The Login Services team sits within Core Security Engineering and owns Uber’s authentication platform for both human and non-human identities. We build the systems that make login seamless, secure, and resilient for Uber’s global workforce and services, so people and workloads can confidently access internal and third-party applications using strong authentication with minimal operational cost.
In this position you will be building the future of authentication at Uber—especially as agentic workflows and non-human identities become first-class citizens. You’ll drive architecture and execution across major initiatives like building a security knowledge platform that computes risk levels for identities and assets (human + NHI), and evolving next-generation authentication capabilities (e.g., stronger factors and policy enforcement across critical systems). If you’re excited about building foundational security platforms at massive scale (where reliability, security posture, and automation directly move the business) this is a rare chance to be in a space that’s getting more important every quarter.
What You'll Do
- Own and deliver a well-scoped slice of Uber’s authentication stack (human + non-human identities), improving security and login reliability.
- Build/extend core auth services and workflows (APIs, policy checks, token/session flows) under existing architecture guidance.
- Improve tier-zero SSO/login health via bug fixes, performance tuning, and availability-focused changes.
- Ship production-ready code with strong fundamentals: tests, code quality, safe rollout/rollback, and clear operational docs/runbooks.
- Add observability (metrics/logs/traces), dashboards, and alerts; participate in on-call and drive incident follow-ups to completion.
- Implement targeted automation to reduce IAM operational toil (self-service flows, remediation tools, ticket/ops workflow helpers).
- Contribute to Security Knowledge Platform work by implementing specific data/graph/risk-signal features that power downstream use cases.
- Collaborate cross-functionally on your projects (Security/IT/Ops/Product), communicate risks early, and contribute in design/incident reviews.
What You'll Need
- Bachelor’s degree or equivalent in Computer Science, Engineering, Mathematics, or related field; OR 4+ years building backend services or platform systems in production environments.
- Proficiency in at least one major language (Go/Java/Python/TypeScript) and ability to learn the team’s stack if needed.
- Experience building and operating distributed services: APIs, data stores, async workflows, and service-to-service integrations.
- Demonstrated operational excellence: monitoring/alerting, debugging, incident participation, and improving SLAs through reliability work.
- Working knowledge of security fundamentals (auth flows, sessions/tokens, least privilege); identity/auth is a plus but not required.
- Ability to own a component end-to-end for a scoped area: design docs, implementation, rollout/rollback, and long-term maintenance.
- Strong engineering hygiene: tests, code reviews, documentation/runbooks, and measurable improvements over time.
Bonus Ponits if
- Hands-on experience building or operating authentication/authorization systems (AuthN/AuthZ) and improving observability (metrics/logs/traces) in production.
- Familiarity with identity/security concepts (SSO, MFA, session/token flows, access controls) and common failure modes at scale.
- Experience contributing to data pipelines or data-backed products (tables/streams/graphs), with an understanding of data quality and reliability.
- Troubleshooting skills in high-availability services: can debug incidents, find root cause, and drive fixes with good follow-through.
Uber's mission is to reimagine the way the world moves for the better. Here, bold ideas create real-world impact, challenges drive growth, and speed fuelds progress. What moves us, moves the world - let’s move it forward, together.
Offices continue to be central to collaboration and Uber's cultural identity. Unless formally approved to work fully remotely, Uber expects employees to spend at least half of their work time in their assigned office. For certain roles, such as those based at green-light hubs, employees are expected to be in-office for 100% of their time. Please speak with your recruiter to better understand in-office expectations for this role.
*Accommodations may be available based on religious and/or medical conditions, or as required by applicable law. To request an accommodation, please reach out to accommodations@uber.com.