Senior Identity Security Engineer responsible for securing Palantir's workforce, customer, workload, and agent identity infrastructure. Requires 5+ years in IAM/security with deep protocol expertise and hands-on experience with enterprise IdPs.
Salary not listed
Hybrid5+ YOESecurity Engineering
About the role
Core Responsibilities
Own the day-to-day identity security posture across corporate, production, customer, and US Government identity planes
Drive the rollout of agent identity infrastructure - short-lived credentials, lifecycle bound to a human principal, controlled workload onboarding
Architect authentication, federation, and authorization systems - including SAML, OIDC, and policy-driven access control models (RBAC, ABAC, policy-as-code) - across workforce and workload identity
Scale non-human identity patterns across service, workload, and agent populations - short-lived credentials, mTLS, identity-based networking
Drive adoption of just-in-time access patterns across the identity program, partnering with platform and engineering teams on governance rollout and policy enforcement
Lead identity threat modeling on a regular cadence; publish findings and track remediation
Serve as a primary security reviewer on identity architecture decisions and cross-team RFCs
Research and drive adoption of emerging identity security primitives and standards in partnership with Security Engineers across InfoSec
Partner with engineering teams across Palantir to reduce the attack surface of identity integrations at scale
What We Value
Experience with cloud IAM and workload identity patterns - service accounts and identity-based access in distributed environments
Experience designing or evaluating non-human identity (NHI) architectures - service, workload, and agent - and a strong point of view on where the industry is headed
Familiarity with privileged access management and secrets management patterns at scale
A track record of reducing standing access and shifting organizations toward just-in-time access postures in production environments
Experience with identity governance platforms and a clear-eyed view of their security implications
Identity threat detection and response experience, including detection engineering against identity telemetry
Red team, offensive security, or incident response background - especially with an identity focus
Exposure to regulated environments (FedRAMP, SOX, IL-levels)
Desire to further the identity security community through substantive contributions (e.g. conference talks, blog posts, public tool development, RFCs)
Current US security clearance, or eligibility to obtain clearance
What We Require
5+ years of experience in Information Security, Identity and Access Management, or an equivalent discipline, with demonstrated depth in identity-specific security
Hands-on production experience with at least one enterprise identity provider (Entra ID, Okta, or equivalent), including its governance and security surface
Deep technical proficiency in identity protocols (SAML, OIDC, OAuth 2.0, SCIM, FIDO2, WebAuthn) and their attack surface
Working proficiency in Go, Python, PowerShell, or TypeScript - enough to prototype tooling, analyze identity-handling code for security defects, scale automation across the environment, and engage in code review
Strong communication skills and ability to communicate to a wide-ranging audience - from engineer-facing design reviews to leadership-facing risk calls
Senior Software Engineer building Snowflake's core identity, access management, and AI-native security infrastructure for the Data Cloud. Design secure agent workflows, IAM systems, encryption, and policy enforcement tooling at massive scale.
Lead the Secure Frameworks Research team at Anthropic to build high-leverage security libraries and frameworks (cryptographic, serialization, authorization) that prevent vulnerabilities in AI model development. Manage engineers, drive adoption across teams, and balance security rigor with development velocity; requires 5+ years security/software engineering and 3+ years managing security teams.
405k – 485k/yr
Hybrid8+ YOESecurity Engineering
Founding Security Engineer
ForusNew York, NY
Founding Security Engineer owning cloud (AWS/GCP), product, AI data, detection/response, and compliance (HIPAA/SOC 2) for a healthcare AI platform handling PHI at scale. Requires 7+ years security engineering on strong SWE foundation, hands-on IaC, and multi-domain expertise.
Salary not listed
On-site7+ YOESecurity Engineering
Manager, Supply Chain Protection & Loss Intelligence
FlexportMiami, FL
Manager responsible for global supply chain protection, loss prevention, and physical security programs at Flexport. Oversees 50+ security officers, electronic systems (CCTV/access control), data-driven investigations, policy/SOP authoring, and new facility stand-up across offices and fulfillment centers.
Salary not listed
On-site8+ YOESecurity Engineering
Physical Security Manager
CrusoeDallas, TX
Lead day-to-day operations of Crusoe's 24/7 Global Security Operations Center (GSOC), overseeing monitoring, incident response, intelligence, and crisis management to protect facilities and infrastructure. Requires experience building high-performing teams, driving operational maturity, and ensuring compliance in a fast-growing environment.