Design, develop, and maintain internal tools and services (primarily in Go) to automate the IAM lifecycle and security review processes.
Build "Guardrails-as-Code" to detect and remediate overly permissive roles or misconfigurations across a diverse set of in-house developed and SaaS applications.
Prototype and implement AI-driven solutions (such as LLM-based analysis or anomaly detection) to categorize access patterns and provide intelligent recommendations for rightsizing permissions.
Create developer-centric tools that allow engineering teams to manage their own access securely, reducing friction while maintaining strict security standards.
Serve as the subject matter expert for complex IAM architecture decisions, ensuring that automation logic aligns with industry frameworks (like Zero Trust and NIST).

Bachelor’s or Master’s in Computer Science, Computer Engineering, Cybersecurity, or a related field.
Deep understanding of IAM primitives (Service Accounts, OIDC, SAML, RBAC vs. ABAC).
Strong proficiency in Python, Go, or Node.js. Experience with Git, CI/CD pipelines, and writing clean, maintainable code.
Experience in leveraging LLMs to enable self-serve and autonomous capabilities.
Familiarity with microservices architecture.
Demonstrated experience managing workforce access, logging, and auditing in a fast-paced hyper-growth environment (FinTech or crypto preferred), with a strong understanding of navigating strict regulatory landscapes, such as SOX compliance.
Experience with data engineering basics (SQL, Snowflake, or Databricks) to analyze large-scale access logs.
Background in Application Security.

Pay Transparency Notice: The target annual base salary for this position can range as detailed below. Total compensation may also include equity and bonus eligibility and benefits (including medical, dental, and vision).

Senior Security Engineer, IAM

Key skills