System Engineer, Corporate Infrastructure

Job Description

Grammarly is seeking a System Engineer to join their Corporate Infrastructure team. This role is within the Security organization and focuses on building world-class, secure, and reliable corporate infrastructure solutions for Grammarly employees. The position offers a dynamic hybrid working model, balancing focus time with in-person collaboration.

The System Engineer will be a key player in enhancing corporate services across the Grammarly team, improving corporate identity and access management. They will serve as the DRI for the corporate identity and access management infrastructure, learning about the latest technical solutions.

Responsibilities:

• Design and implement secure, scalable corporate infrastructure solutions using cloud platforms such as AWS.
• Build and maintain corporate identity and access management systems, with primary focus on Okta Identity Engine and access governance tools.
• Develop and optimize authentication workflows and authorization processes across our technology stack.
• Maintain a one-click (or ideally, no-click) deployment mindset for end users when building or updating IAM processes.
• Automate routine IAM processes to improve efficiency and reduce manual intervention.
• Create self-service capabilities that empower team members while maintaining appropriate security controls.
• Implement monitoring, metrics, and alerting for identity and access systems to enhance security posture.
• Develop clear technical documentation for infrastructure systems and end user processes.
• Provide technical troubleshooting and support for identity-related issues as needed.
• Balance security requirements with user experience to create solutions that are both secure and intuitive.
• Enhance IAM security and productivity levels by introducing various metrics.
• Enhance self-service features, reporting capabilities, and alerting features through automation.

Requirements:

• 5+ years of experience managing production SaaS environments and corporate infrastructure.
• Experience with identity management systems such as Okta, Azure AD, or AWS IAM.
• Knowledge of access management principles and governance best practices.
• Experience with cloud infrastructure in AWS, Azure, or GCP environments.
• Proficiency in at least one programming language (Python preferred).
• Experience with Opal.dev is a plus.
• Knows API methods and integration between different SaaS.
• Securing communications TCP/IP stack, SSL/TLS, domain records, certificates, PKI, encryption, hashing, OAuth2.
• Experience with ZTNA tools (Cloudflare).
• Strong collaboration and communication skills with the ability to work effectively in a team environment.
• Embodies our EAGER values—is ethical, adaptable, gritty, empathetic, and remarkable.
• Is inspired by our MOVE principles, which are the blueprint for how things get done at Grammarly: move fast and learn faster, obsess about creating customer value, value impact over activity, and embrace healthy disagreement rooted in trust.
• Is able to meet in person for their team’s scheduled collaboration weeks, traveling if necessary to the hub where their team is based.

Grammarly offers:

• Professional growth opportunities.
• A connected team environment.