Saviynt

Principal Software Engineer, AI Platform Engineering

Saviynt  •  El Segundo, CA (Onsite)  •  24 days ago
Apply
AI can make mistakes so check important info. Chat history is never stored.

Job Description

ABOUT SAVIYNT

Saviynt is a leader in identity security, delivering an AI-powered platform that governs and secures access to applications, data, and business processes for global enterprises and government institutions. Built for the AI era, Saviynt helps organizations move faster — securely and compliantly.

ABOUT THE ROLE

You set the architectural direction for how training data flows, evolves, and is governed across the AI Platform. You define the standards ML engineers and scientists build on, and ensure every training signal is tenant-isolated, PII-free, and traceable from source to model.

WHAT YOU'LL OWN

  • AI Data Lake on GCS: bucket layout, raw → silver → gold tier separation, CMEK encryption, lifecycle rules

  • Batch pipelines: Spark on Dataproc for TB-scale feature backfills, Iceberg compaction, and daily S3→GCS incremental sync

  • Streaming pipelines: Apache Beam on Dataflow for sub-5-min CDC ingestion with exactly-once semantics and PII assertion gates

  • Schema registry: Avro / Protobuf schema versioning, compatibility modes, and migration playbooks for safe schema evolution

  • Orchestration: Flyte as primary DAG layer — task authoring standards, domain isolation, retry policies, DataCatalog memoization; evaluate Kubeflow Pipelines where relevant

  • Multi-tenancy: strict per-tenant GCS prefix isolation, quota policies, and cross-tenant contamination validation

  • Data Anonymizer and Data Labeler microservices: strip PII and attach ML labels before signals leave each customer environment

  • Feature store: Feast offline (GCS Parquet) and online (Redis) with point-in-time correctness and < 0.1% consistency SLA

  • Vector database: operate Pgvector (Cloud SQL) for POC and Qdrant on GKE for production-scale embedding storage; design index strategies (IVFFlat, HNSW) and manage ANN query latency SLAs

  • RAG data pipeline: build embedding generation pipelines that chunk, encode, and upsert document embeddings into the vector store; own the data refresh cadence and staleness SLAs for retrieval context

  • Service APIs: expose data platform services (feature serving, embedding upsert, schema validation) over HTTPS with mTLS and gRPC where low-latency streaming is required

  • Synthetic data pipelines for dev/staging where real customer data is not permitted

  • Data quality gates: Great Expectations / dbt checks as Flyte tasks, blocking on schema and PII-absence failures

YOU'LL THRIVE HERE IF YOU HAVE

  • 8+ years of data engineering at production scale across multiple companies

  • Demonstrated principal impact: platform standards you defined adopted org-wide, or major cross-team pipeline/schema migrations you led

  • Data lake ownership (essential): you have designed and operated a production data lake end-to-end — storage layout, partitioning strategy, tiered retention (hot/warm/cold), table format (Iceberg or Delta Lake), compaction, and access control; not just consumed one

  • Deep Spark (PySpark / Scala): executor tuning, shuffle diagnosis, Iceberg table maintenance

  • Hands-on Beam / Dataflow: windowing, exactly-once, side inputs, autoscaling

  • Schema registry experience: Protobuf / Avro compatibility rules, breaking-change migrations in production

  • Orchestration at scale: Flyte, Kubeflow Pipelines, Airflow, or Prefect — operated in production, ideally benchmarked two

  • Multi-tenant data architecture: per-tenant isolation as a hard requirement, not a post-hoc concern

  • Feature store operations: Feast or Tecton, point-in-time joins, online/offline consistency

  • Vector databases: Pgvector or Qdrant in production — index tuning, ANN search, embedding upsert pipelines

  • RAG data fundamentals: chunking strategies, embedding model selection, retrieval quality evaluation, and context freshness management

  • API transport: gRPC and HTTPS/mTLS for service-to-service communication; comfortable defining proto contracts and managing certificate lifecycle

  • Bachelor's degree in Computer Science, Engineering, or a related field, or equivalent practical experience or equivalent military experience

NICE TO HAVE

  • Differential privacy or k-anonymity for ML training datasets

  • Open source contributions: Feast, Great Expectations, Apache Beam, or dbt

  • Familiarity with IAM / access governance data: entitlements, provisioning events, access graphs

  • Iceberg or Delta Lake at petabyte scale

WHY JOIN SAVIYNT

  • Work on a large-scale, Kubernetes-based SaaS platform

  • Solve challenging cloud and reliability problems at scale

  • Collaborate with strong engineers in a reliability-focused culture

  • Competitive compensation, benefits, and growth opportunities

SECURITY & COMPLIANCE

This role requires adherence to Saviynt's information security and privacy policies, including annual security training.

Saviynt

About Saviynt

At Saviynt, we are pioneers in intelligent identity security solutions, dedicated to empowering enterprises to safeguard their digital environments. We aim to transform IGA by delivering innovative, cloud-first solutions that ensure security, compliance, & risk management across diverse IT landscapes, including multi-cloud, hybrid, & on-premises environments.

Our Values

Innovation: We continuously enhance our solutions to meet the evolving needs of the modern enterprise.

Customer Focus: Our customers are at the heart of everything we do. We strive to provide exceptional service & solutions that deliver real value.

Accountability: We take responsibility for our actions & deliver on our promises, ensuring excellence in every aspect of our work.

Collaboration: We believe in the power of working together & fostering an inclusive environment where ideas & innovation can flourish.

Integrity: We operate with the highest standards of ethics & transparency, building trust with our customers, partners, & team members.

Our Mission

Saviynt’s mission is to provide intelligent, cloud-first identity governance & access management solutions that enable organizations to achieve Zero-Trust security. We aim to simplify the complexity of identity security by providing deep visibility & seamless integration across all IT environments.

Our Goals

Enhance Security: We help organizations protect their most critical assets from cyber threats by leveraging advanced identity governance & access management solutions.

Ensure Compliance: Our solutions meet stringent regulatory requirements, helping organizations maintain compliance effortlessly.

Drive Efficiency: We enable organizations to streamline their identity management processes through automation & intelligent analytics, reducing costs & improving productivity.

Foster Innovation: We are committed to staying at the forefront of technology, continually evolving our solutions to meet the demands of the digital age.

Industry
IT & Software
Company Size
1,001-5,000 employees
Headquarters
El Segundo, California
Year Founded
2010
Social Media