Senior Software Engineer

Canada based Salary: CAN$100,000 - $125,000 DOEAbout UsBonterra exists to propel every doer of good to their peak impact. We measure that impact against our vision to increase the giving rate as a percentage of GDP from 2% to 3% by 2033. We know that this goal is lofty, but we are confident that the right technology and expertise will strengthen trust in the sector, allowing the social good industry to accelerate growth and reach peak impact. Bonterra's differentiated, end-to-end solutions collectively support a unique network of over 20,000 customers, including over 16,000 nonprofit organizations and over 50 percent of Fortune 100 companies. Learn more at bonterratech.com.About the RoleJob SummaryThe Senior Software Engineer (Auth0) designs, implements, and maintains secure, scalable identity and access management (IAM) solutions across Bonterra’s product portfolio. This role applies deep expertise in Auth0, OAuth 2.0/OpenID Connect, SAML, and modern web application security to deliver compliant, resilient authentication and authorization services. Working in an AI-first engineering environment, the Senior Software Engineer leverages AI-assisted development tools and AI-driven security capabilities to accelerate secure coding practices, automate threat detection, and improve system reliability and performance.The role collaborates with engineering leadership, architects, security, DevOps, and product teams to integrate enterprise identity providers, modernize legacy authentication systems, and ensure secure user experiences across web, API, and microservices architectures. This position provides technical guidance and informal leadership to peers through code reviews, design feedback, and knowledge sharing but does not have formal people management responsibilities.Essential FunctionsDesign and implement secure authentication and authorization services, spending approximately 60–70% of time coding and reviewing production-quality code to support scalable IAM capabilities across multiple applications.Develop and maintain Auth0 integrations, including custom actions, rules, hooks, and tenant configurations, to enable secure SSO, MFA, adaptive authentication, passwordless login, and session management.Implement OAuth 2.0 and OpenID Connect flows (authorization code with PKCE, client credentials, device flow, refresh token rotation) and SAML 2.0 integrations to support enterprise and third-party federation requirements.Build and secure Next.js authentication patterns, including API route protection, middleware authentication, server components, server actions, and session management for App Router and Pages Router implementations.Integrate enterprise identity providers (e.g., Active Directory, Azure AD, AWS Cognito, LDAP) and develop adapters for legacy or third-party systems to ensure seamless federation and user lifecycle management.Leverage AI coding assistants and AI-powered security tools in daily development workflows to automate code reviews, improve test coverage, detect vulnerabilities, and enhance adaptive authentication mechanisms.Collaborate with engineering managers and architects to design large-scale identity solutions, document architecture decisions, and ensure alignment with zero-trust and compliance requirements.Partner with QA engineers to define, automate, and maintain unit, integration, penetration, and authentication flow tests within CI/CD pipelines to enforce secure deployment standards.Work with DevOps and SaaS teams to implement secure CI/CD pipelines, infrastructure as code, automated security scanning, and secrets management practices across cloud environments.Troubleshoot complex production authentication and authorization issues, conduct root cause analyses, and implement performance optimizations for high-volume systems.Contribute to security and compliance initiatives by supporting audits, documenting controls, and implementing safeguards aligned with frameworks such as SOC 2, GDPR, and CCPA.Provide technical guidance to peers through design reviews, pair programming, and documentation to promote secure development standards and consistent implementation practices.Knowledge, Skills & AbilitiesLEADERSHIP & NAVIGATION EXPECTATIONSThis position does not have people management responsibilities. Provides technical guidance, reviews peer work, and supports decision-making within the identity domain.KEY BEHAVIORS – THE “HOW”Applies structured problem-solving, documents architectural decisions, and uses AI-enhanced workflows to improve productivity, code quality, and security posture.OUTCOME EXPECTATIONS – THE “IMPACT”Delivers secure, compliant, and scalable authentication solutions that reduce risk, improve user experience, and enable reliable product access across Bonterra’s platforms.Required Minimum QualificationsDemonstrated experience designing and implementing authentication and authorization systems in production environments.Strong hands-on expertise with Auth0 or comparable I