Skip to content
SentrySentrySan Francisco, CA

Security Engineer, IAM

As a Security Engineer, IAM, you will own and mature identity and access management infrastructure and tooling, continuously improving access control practices with automation and self-service support. You will champion and implement secure-by-design access principles and secure human and non-human identities.

155k – 240k/yr
Hybrid3+ YOESecurity Engineering

About the role

About The Role

The Security Team is responsible for securing all things Sentry: our customers, our code, and everything in between. We are a small but growing team with broad scope, high trust, and the autonomy to tackle hard security problems with creativity and an engineering mindset. We work at a company with a strong developer culture, building a product that millions of developers genuinely love and rely on. That context shapes everything about how we operate.

As a Security Engineer focused on Identity, Access and Management (IAM), you'll work across domains to maintain and improve Sentry’s identity and access management practices. You’ll own and shape access control practices that keep Sentry productive and secure as we grow. You’ll partner closely with Infrastructure, IT, and Platform teams to offer employees efficient secure self-service workflows to enable productivity. You will work as a technical collaborator who makes the secure path the obvious one.

In this role, you will

  • Own and mature identity and access management infrastructure and tooling like SSO, MFA, directory services across corporate, development and production cloud environments.
  • Continuously improve Sentry’s identity and access control practices with automation and self-service support for onboarding/offboarding, joiners/movers/leavers, access reviews, privileged access management, SaaS lifecycle management, and security incident response workflows.
  • Champion and implement secure-by-design access principles like attribute and context aware grants, comprehensive logging, just-in-time (JIT) provisioning, least privilege, policy-as-code automation principles, and zero-trust.
  • Secure our human and non-human identities: user accounts, service accounts, API keys, OAuth clients, agentic, and workload identities.

You’ll thrive in this role if you

  • Enjoy operating cross-functionally, building relationships, influencing with technical expertise, and shaping how builders get access to get things done across a fast-moving engineering organization.
  • Get excited when something new lands on your desk, be it a new feature spec, an authentication bypass, a novel agentic architecture, an unfamiliar cloud primitive, or a bug class you haven't seen before.
  • Love working in a developer-forward culture where your colleagues are builders who care deeply about code quality and customer satisfaction.
  • Reach for automation first, you'd rather build a scalable, systematic solution to a security problem than solve it manually a hundred times.
  • Thrive with real ownership, you prefer to build and drive work end-to-end, you're energized by the autonomy that comes with being on a small, high-trust team.

Qualifications

  • 3+ years of industry experience designing, building, securing workforce identity and access control systems for corporate, development, and large-scale distributed cloud systems
  • Degree in Computer Science or a related field, equivalent training, or professional experience
  • Proficiency in Python and other scripting languages, Terraform and infrastructure-as-code tools, and building integrations via APIs, SCIM and webhooks
  • Experience with a breadth of identity platforms IDP, IGA, PAM, CloudIAM, etc.
  • Familiarity with cloud (AWS, GCP, Azure), containerization and orchestration (Docker, Kubernetes), and securing CI/CD and source controls tools (Github, Gitlab)
  • A collaborative approach to problem solving paired with strong written and verbal communication

Compensation

The base salary range that Sentry reasonably expects to pay for this position is $155,000 to $240,000 USD. A successful candidate’s actual base salary amount will be determined by a variety of relevant factors including, without limitation, the candidate’s work location, education, work and other relevant experience, skills, and job-related knowledge. A successful candidate will be eligible to participate in Sentry’s employee benefit plans/programs applicable to the candidate’s position (including incentive compensation, equity grants, paid time off, and group health insurance coverage).

Skills

PythonTerraformAPIsSCIMWebhooksAWSGCPAzureDockerKubernetesGitHubGitLab
Stripe

Backend Engineer, AI Security

StripeNew York, NY +2

Builds security frameworks and defenses against AI threats like prompt injection and jailbreaks, integrated with core AI infrastructure. Collaborates across teams; requires 5+ years software experience, ideally in security and AI systems.

157k – 286k/yr
Hybrid5+ YOESecurity Engineering
Chime

Manager, Product Security

ChimeSan Francisco, CA

Leads a team securing cloud infrastructure, sensitive data, and AI systems in products. Influences engineering roadmaps, embeds security in designs, and manages AI risks like prompt injection and data leakage. Requires 5+ years security engineering and 2+ years leading engineers.

152k – 210k/yr
Hybrid5+ YOESecurity Engineering
Wiz

Threat Intelligence Researcher (Cloud)

WizNew York, NY

Track, analyze, and attribute advanced state-backed and financially motivated threat actors targeting cloud environments. Requires 5+ years in threat research with expertise in malware, infrastructure tracking, and large-scale telemetry analysis.

151k – 208k/yr
Remote5+ YOESecurity Engineering
Mercor

Software Engineer, Identity

MercorSan Francisco, CA

Build and scale Mercor's novel identity and access management infrastructure across thousands of Slack workspaces and HR systems for a 100k+ expert network. Requires strong product engineering, large-scale distributed systems experience, and security-minded design instincts.

150k – 325k/yr
On-site5+ YOESecurity Engineering
Skydio

Security Engineer

SkydioSan Mateo, CA

Build automation and internal tooling to enforce security controls, integrate identity/cloud systems, automate compliance evidence collection, and enable self-remediation across Skydio's multi-tenant cloud and corporate environments. Requires 3+ years software/security engineering experience and strong coding skills in Python or Go.

160k – 210k/yr
Hybrid3+ YOESecurity Engineering