Principal Engineer, Engineering Core Services

About The Role We are hiring a Principal Engineer to set the technical direction across our Engineering Core Services at Jeppesen ForeFlight. Core Services is the set of shared platform capabilities that every Jeppesen ForeFlight product organization depends on, including customer identity (CIAM), commerce, and a growing set of other shared services. Across Jeppesen ForeFlight, customer identity, commerce, customer operations, and entitlement grew up as independent services inside independent products. In a unified multi- product platform, that work is tightly coupled: the same customer record drives authentication, billing, entitlement decisions, and support across product lines. The Principal Engineer owns the long-term architecture that gets us there, drives the consolidation work to make it real, and holds the vision steady across a fragmented present. We are hiring someone who has architected in this paradigm at a multi-product company before. This is an Individual Contributor role. You will own the architecture across the Core Services portfolio, set the technical bar for senior engineers in the org, and influence engineers across the broader engineering organization through architectural reviews and RFCs. The role is preferred as Hybrid working in Austin TX, Houston TX or Denver CO, we will consider virtual for the right candidate. Key Responsibilities • Own architecture, 2-3 year roadmap, and decision authority across the Engineering Core Services portfolio, including the platform-versus-product boundary • Own the CIAM platform architecture and the consolidation onto a modern shared identity foundation across product lines, including authentication, authorization, federation, and account lifecycle • Lead the long-term subscription and billing platform strategy: build, buy, or hybrid evaluation, and migration of legacy capabilities onto modern shared platforms • Drive simplification and standardization of contract, entitlement, and catalog models across product lines • Define the integration patterns and platform standards product engineering teams use to consume our services • Mentor senior engineers, influence the broader engineering organization, and represent Engineering Core Services in forums with senior product, security, finance, and customer- facing leadership • Engage directly with stakeholders on architecture questions that cross product boundaries • Set the privacy, security, and regulatory posture for shared platform services, with particular ownership of identity compliance What success looks like in your first year • A modern shared identity foundation is operating across product lines, with architecture and standards established • A long-term subscription and billing platform strategy is in place, with the first migrations underway • Patterns, standards, and architectural practices are established for the Core Services portfolio and adopted by product engineering teams • Senior engineers across Core Services and the product organizations pull architectural decisions through you rather than around you • You are the trusted technical voice with senior product, engineering, security, and customer facing leaders on shared platform questions Basic Qualifications • 12+ years of engineering experience, with at least 7 as primary architect for a portfolio of shared services spanning multiple product organizations or business lines (e.g., identity, commerce, customer operations) • Track record in the coupled customer-foundation paradigm at a multi-product company: identity, commerce, entitlement, and customer operations sharing customer and account models, architected as one platform rather than independent services • Deep production experience architecting and operating a CIAM platform at scale, with expert command of OAuth 2.0, OIDC, SAML 2.0, API security, and federation. Auth0 preferred; other major platforms (Okta CI, Entra ID, Ping, ForgeRock) also relevant • Beyond identity, deep production experience in at least one other shared platform domain: commerce / billing, customer operations / CRM, or enterprise data integration • Strong systems-integration judgment across heterogeneous environments and multiple business models: APIs, eventing, data modeling, and representing contracts, entitlements, and catalogs cleanly across consumer subscriptions, enterprise contracts, per-seat and per- asset licensing, and reseller flows • Cloud-native architecture experience (AWS, Kubernetes/EKS, service mesh, Terraform, observability, secrets management) combined with operating experience in legacy enterprise environments (ERP, SOAP/XML APIs, longstanding catalogs), or strong evidence you can become productive across both • Cross-functional leadership, comfortable as a peer with senior product, finance, security, legal, and customer-facing leaders, including direct engagement with major enterprise customers and partners on architecture • Comfortable with the coordination work of a recently combined company: divergent stacks and processes, in-flight unification, and the political work that comes with it Preferred Qualifications • Experience leading a migration from a legacy identity solution to a modern shared platform • Experience post-M&A integrating engineering platforms across two or more legacy stacks • Hands-on experience with one or more commerce and subscription platforms (Stripe Billing, Recurly, Zuora, or similar) in addition to homegrown commerce systems • Experience taking a Platform Services organization from a set of disconnected services to a coherent platform with shared standards and adoption across product teams • Experience supporting subscription and billing platforms through audit-readiness, financial- controls maturity, and revenue-recognition requirements • Experience in aviation, regulated industries, or other domains with mission-critical customers and complex contract structures • Privacy and regulatory experience: GDPR, SOC 2, aviation-relevant frameworks, and financial-controls frameworks relevant to subscription and billing platforms • Background in security engineering or DevSecOps, with strong instincts for threat modeling of authentication systems • Experience contributing to or evaluating identity standards (IETF, OpenID Foundation, etc.) About Jeppesen ForeFlight Jeppesen ForeFlight is a leading provider of innovative aviation software solutions, serving the Commercial, Business, Military, and General Aviation sectors globally. Combining Jeppesen’s 90-year legacy of accurate aeronautical data with ForeFlight’s expertise in cutting-edge aviation technology, the company delivers an integrated suite of tools designed to enhance safety, improve operational efficiency, and sharpen decision-making. Why You Should Join (USA) At Jeppesen ForeFlight, we know you want a rewarding career. To do that, you need challenging projects, a good work environment, and awesome coworkers. We believe in our employees, and we empower them to make a direct impact on our products and services messaging. We strive to provide our team and their loved ones with a world-class benefits experience, focused on supporting their physical, financial, and emotional wellbeing. Our benefits package includes but not limited to the following: • Medical, dental, vision insurance with Employer paid health premiums • Open PTO Policy • 401(k) with up to 10% company matching and immediate vesting • 12 Weeks Paid Parent Leave • Flight Training Rewards Pay is based upon candidate experience and qualifications, as well market and business considerations: Summary Pay Range: $208,000.00-$244,000.00 Jeppesen ForeFlight – EOE including Disability/Vets | Pay Transparency | E-Verify Participant