Staff Security Engineer, IAM

This position is posted by Jobgether on behalf of a partner company. We are currently looking for a Staff Security Engineer, IAM in United States.

This role sits at the core of enterprise identity and access management, shaping how a global engineering organization secures and governs workforce access across complex SaaS ecosystems. You will design and evolve large-scale IAM architectures that enable secure, frictionless, and policy-driven access to critical tools and systems. Acting as a senior technical leader, you will drive the future of identity security, including AI-driven access governance and non-human identity management. The environment is highly collaborative and cross-functional, spanning Security, IT, Engineering, Compliance, and AI teams. You will play a pivotal role in modernizing identity infrastructure through automation, infrastructure-as-code, and advanced conditional access models. This position is ideal for a hands-on architect who thrives in ambiguity and enjoys solving deep technical security challenges at scale.

• Lead the design and evolution of enterprise IAM systems, building scalable identity architectures that support workforce, service accounts, and AI agent identities across the organization.
• Define and implement advanced authentication and authorization frameworks, including conditional access, zero trust policies, device trust, and risk-based authentication.
• Drive the modernization of identity platforms by codifying IAM systems using Terraform and migrating workflows from manual processes to infrastructure-as-code.
• Own governance for non-human identities, including service accounts, API tokens, OAuth grants, certificates, and AI-driven agents.
• Architect and manage IAM integrations across enterprise AI tools, SaaS platforms, and internal systems, ensuring secure SSO, SCIM provisioning, and audit logging.
• Partner cross-functionally with Security, IT, Engineering, and Compliance teams to translate business needs into scalable technical identity solutions.
• Mentor engineers and contribute to design reviews, technical strategy, and best practices across identity and security engineering domains.

Requirements

• 8+ years of experience in Identity and Access Management, including senior or staff-level ownership of enterprise-scale IAM systems.
• Deep expertise in Okta (Identity Engine, authentication policies, lifecycle management, and API automation).
• Strong experience with Terraform and infrastructure-as-code for identity platforms and cloud security systems.
• Hands-on experience securing or governing enterprise AI platforms and awareness of AI-related security risks such as prompt injection and data leakage.
• Strong programming and automation skills in Python, along with experience using identity automation or iPaaS tools.
• Experience with identity governance platforms and non-human identity management tools in complex enterprise environments.
• Solid understanding of compliance frameworks such as FedRAMP, SOC2, or SOX, including audit readiness and control implementation.
• Strong communication skills with proven ability to influence technical direction and lead cross-functional initiatives.

Benefits

• Competitive annual salary range: $168,000 – $238,000 USD
• Flexible remote work environment within the United States
• Equity compensation and potential incentive pay
• Comprehensive health coverage including medical, dental, and vision insurance
• Flexible paid time off and company holidays
• Parental leave and family support benefits
• Professional development and learning support programs
• Strong focus on innovation, AI tooling adoption, and modern engineering practices