About us
Truffle Security is a cybersecurity company on a mission to make secrets easier to detect, verify, and remediate across modern software environments. Built on the popular open-source TruffleHog™ secrets scanning platform, the company's enterprise solution gives security and engineering teams everything they need to find exposed credentials, understand which ones are active, and act on them with confidence.With support for 800+ credential types, Truffle Security continuously monitors non-human identities (NHIs) and their associated secrets across code repositories, SaaS applications, wikis, and cloud systems. It goes beyond detection by verifying which secrets are live, analyzing their scope of access, and streamlining remediation through automated workflows and lifecycle management so teams can prioritize what to revoke and confirm it's done without manual follow-up.Trusted by organizations including NVIDIA, Chick-fil-A, and OpenAI, Truffle Security helps security and engineering teams stay ahead of secrets risk.
About the role
We’re expanding our enterprise integrations platform to better support organizations operating heavily in the Microsoft ecosystem. We’re looking for a senior engineer to lead development of high-impact integrations across platforms like SharePoint, OneDrive, Teams, Azure Blob Storage, and Azure DevOps.
This role is focused on building reliable, scalable integrations that work correctly within Microsoft’s complex identity, permissions, and authorization models. You’ll work closely with platform engineering, product, customer-facing teams, and security researchers to improve how TruffleHog discovers and secures secrets across enterprise environments.
What you'll be working on
- Build and maintain integrations for Microsoft platforms including SharePoint, OneDrive, Teams, Azure Blob Storage, and Azure DevOps
- Design and implement robust authentication and authorization handling using Microsoft Graph APIs, Entra ID (Azure AD), OAuth2, and enterprise access patterns
- Improve performance, scalability, and reliability of large-scale content scanning systems
- Develop testing and validation strategies for permission-aware scanning in real-world enterprise environments
- Help define architectural patterns and reusable SDK abstractions for future enterprise integrations
- Partner with product and customer-facing teams to close integration gaps and support enterprise deployments
- Drive projects from design through production with a high degree of ownership
What we're looking for
- Strong backend engineering experience in Go
- Experience building production-grade integrations against Microsoft or enterprise SaaS ecosystems
- Deep understanding of OAuth, authentication, authorization, and identity systems
- Experience working with APIs at scale and handling complex permission models
- Strong debugging skills and distributed systems fundamentals
- Ability to independently drive technical projects end-to-end
- Excellent communication and collaboration skills
What we're looking for
- Experience with Microsoft Graph APIs
- Familiarity with Entra ID / Azure AD
- Experience with SharePoint, Teams, OneDrive, Azure Storage, or Azure DevOps
- Experience with .NET / C#
- Experience operating cloud-native systems and infrastructure
Our tech stack
- Go (Golang)
- Microsoft Graph API, Azure SDKs, Azure DevOps APIs
- OAuth 2.0 / OpenID Connect
- Kubernetes, Docker, PostgreSQL
- GCP infrastructure