Senior Platform Engineer

We are seeking a Senior Platform Engineer IAM to join JPMorgan Chases core Identity & Access Management Platform Engineering this hands-on role you will build operate and scale enterprise-grade IAM platforms that support authentication authorization infrastructure automation and platform services across the firm.

You will work with modern IAM solutions (ForgeRock / PingFederate / Okta / Keycloak) deep identity protocols infrastructure-as-code and backend services. This is a high-ownership end-to-end engineering role for someone who thrives with minimal handholding and expects senior-level autonomy.

Key Responsibilities

• Design deploy and maintain enterprise-scale IAM platforms using ForgeRock PingFederate Okta or Keycloak
• Implement and support SAML OAuth2 OIDC SCIM and production SSO / MFA architectures
• Own Terraform module architecture Terraform Enterprise (TFE) Sentinel policies and internal infrastructure-as-code constraints
• Engineer across AWS multi-account environments including cross-account IAM and high-security guardrails
• Build and maintain CI/CD pipelines using Bitbucket Jenkins Spinnaker TFE or ArgoCD (depending on team track)
• Develop backend services and automation using Java Go and Python
• Lead architectural discussions using C4 diagrams Architecture Decision Records (ADRs) and system design reviews
• Troubleshoot complex IAM and platform issues in production environments
• Collaborate with security application and infrastructure teams to ensure scalable and secure IAM solutions

Required Skills & Experience

• 10 years of software or platform engineering experience with significant focus on IAM
• Deep expertise in at least one major IAM platform: ForgeRock PingFederate Okta or Keycloak
• Strong understanding of SAML OAuth2 OIDC SCIM and enterprise SSO/MFA patterns
• Advanced experience with Terraform (Terraform Enterprise / Cloud Sentinel policies module design)
• Solid AWS experience especially multi-account architectures IAM roles/policies and security guardrails
• Hands-on with CI/CD pipelines (Bitbucket Jenkins Spinnaker ArgoCD)
• Proficiency in Java Go or Python for backend development and tooling
• Experience writing C4 diagrams and ADRs as part of system design
• Ability to work autonomously with minimal guidance this is a senior high-trust role

Preferred / Nice-to-Have

• Experience with Kubernetes and ArgoCD-based deployments
• Background in financial services or similarly regulated environments
• Familiarity with HashiCorp Vault or other secrets management tools
• Contributions to open-source IAM or infrastructure projects

Interview Process

1. Technical phone screen
2. Live coding / system design interview
3. Panel interview with IAM platform team