# Senior IAM Engineer

**Company:** [xAI](https://hotfix.jobs/companies/xai)
**Location:** Austin, TX, Palo Alto, CA, Washington, DC
**Role:** Security Engineering
**Salary:** $100k – $258k/yr
**Experience:** 6+ years
**Skills:** IAM, SAML, OIDC, Oauth 2.0, SCIM, Sailpoint, Okta, Pingone, Microsoft Entra Id, Terraform, AWS, GCP, Python, JavaScript, TypeScript
**Posted:** 2026-07-06

> Senior IAM Engineer designing, implementing, and optimizing enterprise identity and access management solutions across on-prem, cloud, and SaaS. Lead federation, LCM, RBAC, PAM, and automation with Terraform while serving as the primary SME for security and engineering teams.

## Job Description

## Responsibilities
- Design and implement enterprise-grade IAM solutions across on-prem, cloud, and SaaS environments.
- Architect and deliver end-to-end federation strategies using modern protocols (SAML, OIDC, OAuth 2.0, SCIM).
- Lead integration and optimization of key IAM platforms including SailPoint, Okta, PingOne, Microsoft Entra ID, and other tools.
- Drive Identity Lifecycle Management (LCM), Role-Based Access Control (RBAC), Privileged Access Management (PAM), and Just-In-Time access initiatives.
- Develop automation scripts and Infrastructure as Code (Terraform) to improve provisioning, governance, and operational efficiency.
- Serve as the primary IAM SME, providing technical guidance, troubleshooting complex issues, and mentoring other team members.
- Work closely with InfoSec, Compliance, and Engineering teams to meet audit, regulatory, and security requirements.
- Continuously improve IAM architecture, processes, and capabilities in a dynamic, fast-moving organization.
- Support cloud IAM strategies across AWS, GCP, and other platforms.
- Participate in on-call rotation and incident response related to identity systems.

## Requirements
- 6+ years of hands-on experience in Identity and Access Management.
- Thorough understanding of IAM principles and modern security concepts, including Zero Trust, Least Privilege, Adaptive/Risk-Based Authentication, Attribute-Based Access Control (ABAC), Continuous Access Evaluation, and Identity Threat Detection and Response (ITDR).
- Strong expertise in IAM protocols and standards: SAML, OIDC, OAuth 2.0, SCIM, and other federation protocols.
- Hands-on experience with major IAM platforms, particularly SailPoint, Okta, PingOne, and Microsoft identity solutions.
- Strong working knowledge of cloud platforms (AWS and GCP), Cloud IAM services, Terraform, and CI/CD practices.
- Strong scripting and programming skills in Python and JavaScript/TypeScript, with extensive experience developing IAM workflows, automation, and integrations.
- Demonstrated ability to lead technical initiatives and drive projects from design through implementation.
- Ability to thrive in a fast-paced and ambiguous environment with extreme ownership and a collaborative no-ego mindset.

## Similar roles

- [Senior Security Engineer, Agentic AI](https://hotfix.jobs/jobs/4b7aaba8-21d4-4828-92a1-23351caf1b6f) - Trail of Bits - Remote - $100k – $220k/yr
- [Senior Cloud Security Engineer](https://hotfix.jobs/jobs/9d1386d0-420e-4dfe-8f60-9ad31c61ca19) - Reltio - Remote - $95k – $203k/yr
- [Senior Security Operations Center (SOC) Analyst, Hawaii](https://hotfix.jobs/jobs/bd9bd547-4717-4953-bdaa-164b31d3342d) - RapDev - Remote - $110k – $150k/yr
- [Sr. Security Engineer, Incident Response](https://hotfix.jobs/jobs/54c33dfc-1c96-47fb-896d-8a83b303c45e) - Navan - New York, NY - $113k – $252k/yr
- [Senior Analyst, Security Compliance](https://hotfix.jobs/jobs/5740a550-a54e-439d-8b10-7af6ddcfd655) - Kraken - Remote - $83k – $167k/yr

**Apply:** https://hotfix.jobs/jobs/1a442d6f-d980-4894-bcf0-aefaa82ae1f7
**Canonical:** https://hotfix.jobs/jobs/1a442d6f-d980-4894-bcf0-aefaa82ae1f7