Staff Security Engineer (IAM)

TL;DR

Staff Security Engineer (IAM): Leading the technical direction of Identity & Access Management for workforce and production systems with an accent on entitlements, privileged access, and identity federation. Focus on building secure access at scale through code and agent-consumable interfaces, reducing reliance on policy memos.

Location: Remote (United States)

Salary: $140,400 – $372,300 / Yr

Company

The world’s leading AI-powered developer platform powering agentic software development.

What you will do

• Set the technical direction and lead architecture for identity lifecycle, entitlements, and privileged access.
• Drive multi-quarter IAM platform evolution, including IDP migrations and identity lifecycle automation.
• Implement least-privilege and just-in-time access as defaults for production systems.
• Ensure reliability and operational maturity of IAM services, leading postmortems and reducing incident volume.
• Mentor senior engineers and maintain high quality bars for code and design reviews.

Requirements

• 9+ years of experience in Software Engineering or related technical disciplines (reduced with advanced degrees).
• Proven experience delivering production software in languages such as Go, Java, Python, Rust, Ruby, C++, or C#.
• Must be based in the United States.

Nice to have

• Experience with identity directories and IDPs (e.g., Okta, Entra ID / Azure AD) and protocols (OAuth, OIDC, SAML, SCIM).
• Experience leading large-scale IDP migrations and platform consolidations.
• Experience operating IAM services in AWS, Azure, or GCP.
• Designing systems and APIs intended for AI-agent consumption.

Culture & Benefits

• Remote-first work environment.
• Competitive base salary, annual bonuses, and stock options.
• Generous learning and growth opportunities.
• Inclusive culture emphasizing a growth mindset and ownership.