Own IAM strategy and architecture across corporate and production environments. Migrate Okta to Terraform, enforce least-privilege access, and drive automation for provisioning and device management.
208k – 312k
Remote7+ YOESecurity Engineering
About the role
What You Will Do
Own the full IAM strategy for both corporate and production environments - defining the roadmap, standards, and architecture end to end
Migrate Okta and all related IAM configuration to Terraform, driving infrastructure-as-code adoption and leveling up engineering teams in its use
Lead Vercel-on-Vercel and Vercel infrastructure cleanup initiatives, ensuring our internal systems reflect the same standards we sell to customers
Design and enforce least-privilege access controls across cloud, SaaS, and production infrastructure
Partner with platform and engineering teams to embed IAM best practices early in the design process
Build and manage MDM/MAM tooling to secure endpoint and mobile device access across the organization
Drive automation across provisioning, deprovisioning, and access review workflows
Serve as the IAM subject matter expert across Security, IT, and Engineering
About You
7+ years of experience in identity, access management, or platform security engineering
Deep expertise with Okta - including SSO, MFA, lifecycle management, and API-driven automation
Proficient in Terraform and committed to managing IAM infrastructure as code
Experience designing IAM strategy at scale - across both corporate (IT/SaaS) and production (cloud infrastructure) environments
Hands-on experience with AWS or GCP IAM - service accounts, roles, workload identity federation
Background in MDM/MAM solutions (Jamf, Intune, or equivalent)
Strong collaborator who can drive alignment across Engineering, IT, Compliance, and Security teams
Comfortable operating with autonomy and owning decisions in a fast-moving environment
Bonus If You
Experience leading Terraform migrations for IAM or identity infrastructure at scale
Background in SCIM, SAML, OIDC, and directory services (e.g., Google Workspace, Azure AD)
Contributions to internal developer platforms or security tooling
Experience at a developer tools, infrastructure, or SaaS company
Certifications such as Okta Certified Professional/Administrator, AWS Security Specialty, or CISSP
Benefits
Competitive compensation package, including equity
Inclusive Healthcare Package
Learn and Grow - we provide mentorship and send you to events that help you build your network and skills
Flexible Time Off
We will provide you the gear you need to do your role, and a WFH budget for you to outfit your space as needed
Security Engineer building and hardening cloud-native security controls, infrastructure-as-code, and CI/CD pipelines for a scalable platform. Requires 8+ years in infrastructure/platform security and deep expertise in AWS/GCP and Kubernetes.
208k – 312k
Remote8+ YOESecurity Engineering
Third Party Risk Management and Customer Trust Lead
ReplitFoster City, CA
Lead substantive third-party risk management and customer trust programs at Replit, independently assessing vendor and AI model risks via SOC 2 reviews, architecture analysis, and contract redlining in partnership with Legal. Requires 8+ years GRC experience building scalable TPRM processes.
210k – 270k
Hybrid8+ YOESecurity Engineering
Lead Security Engineer
AlembicSan Francisco, CA
Lead Security Engineer to own end-to-end system, network, and host security for an on-prem Kubernetes-based AI factory. Design controls, lead incident response, balance open culture with IP/customer data protection; requires 8+ years security engineering with deep Kubernetes, on-prem, and incident experience.
210k – 240k
On-site8+ YOESecurity Engineering
Sr. Engineering Manager, Application Security
BettermentNew York, NY
Senior Engineering Manager leading Application Security squad to build secure software by default through threat modeling, design reviews, vulnerability management, and developer tooling. Requires hands-on team leadership and expertise across the AppSec stack.
210k – 250k
Hybrid7+ YOESecurity Engineering
Senior Software Engineer, Fraud
ReplitFoster City, CA
Build and operate AI-powered fraud and abuse detection systems on Replit's agentic platform. Design LLM guardrails, ML classifiers, and automated response mechanisms to combat phishing, cryptomining, and platform exploitation.