Senior Security Engineer, IAM

Handshake


Job Location:

San Francisco, CA - USA

Monthly Salary: $ 176 - 220
Posted on: 23 hours ago
Vacancies: 1 Vacancy

Department:

Engineering

Job Summary

About Handshake

Handshake was founded on a simple belief that everyone deserves a path to a great career regardless of where they went to school or who they know. Today we power 25 million job seekers 1 million employers and 1600 educational institutions.

In 2025 we started Handshake AI and built the fastest-growing AI data business in history. We work directly with frontier AI lab researchers to create evaluations publish benchmarks and push the boundary of data. Weve grown from $0 to $1B run rate and pay $60M to over 30K individuals every month.

Why join Handshake now:

  • Shape how every career evolves in the AI economy at global scale with impact your friends family and peers can see and feel

  • Partner hand-in-hand with world-class AI labs Fortune 500 partners and the worlds top educational institutions

  • Work together with engineers scientists operators and more from Palantir Meta Scale AI and former YC founders

  • Build a massive fast-growing business with billions in revenue

About the Role

Handshake is seeking a Senior Security Engineer to own the architecture design and implementation of our enterprise identity automation and governance ecosystem. Youll define the long-term IAM automation strategy build resilient and scalable lifecycle workflows and enable secure-by-default identity operations across SaaS cloud and internal platforms.
Youll partner closely with Security IT Engineering People Operations and Product/Platform Engineering to deliver highly automated auditable and reliable identity solutions.

In this role you will:

  • Architect build and own automated onboarding offboarding and access-change workflows across Okta Workday SCIM and event-driven systems.

  • Engineer integration layers between identity platforms and internal applications using Python REST APIs Webhooks and Terraform.

  • Implement error-handling reconciliation logic telemetry and monitoring to ensure reliability and determinism in identity lifecycle events.

  • Modernize existing provisioning logic and replace manual processes with scalable automation frameworks.

  • Develop tooling and pipelines enabling version-controlled testable observable IAM automation.

  • Act as a technical owner for Handshakes IAM ecosystem including Okta Google Workspace GCP AWS IAM and internal access systems.

  • Engineer and optimize authentication & authorization protocols (OIDC OAuth2 SAML JWT) fine-grained access policies and scalable RBAC/ABAC models.

  • Build custom automation using Okta Workflows or API-driven orchestration.

  • Design SOC2-compliant access controls approvals attestations and auditability mechanisms.

  • Build automated access certification systems with full data lineage.

  • Conduct identity-related incident forensics and implement preventative automation.

  • Provide cross-functional leadership setting standards best practices and reference architectures for identity automation.

  • Serve as service owner for IAM automation platforms with accountability for uptime consistency and continuous improvement.

Desired Capabilities

  • 47 years of hands-on IAM engineering identity automation or identity governance experience.

  • Strong scripting/automation skills in Python and REST-based integrations.

  • Experience with IAM platforms such as Okta Google Workspace/GCP Azure AD or similar.

  • Deep understanding of identity protocols token flows SCIM and distributed lifecycle orchestration.

  • Experience with Terraform or other infrastructure-as-code frameworks.

  • Ability to diagnose complex identity issues across SaaS cloud and distributed systems.

  • Strong understanding of DevOps practices observability and secure engineering principles.

  • Demonstrated ownership mindset across architecture implementation monitoring and iterative improvement.

Extra Credit

  • Advanced experience with GCP IAM Google Workspace IAM AWS IAM cross-account access patterns and policy automation.

  • Experience with Okta Workflows SailPoint/IGA or Privileged Access Management (PAM) solutions.

  • Experience designing scalable authorization models for high-growth or distributed organizations.

  • Certifications such as Okta Architect Azure Identity Engineer CISSP.

  • Prior experience in SaaS high-growth or distributed engineering environments.

Perks

Handshake delivers benefits that help you feel supportedand thrive at work and in life.
The below benefits are for full-time US employees.

Ownership: Equity in a fast-growing company
Financial Wellness: 401(k) match competitive compensation financial coaching
Family Support: Paid parental leave fertility benefits parental coaching
Wellbeing: Medical dental and vision mental health support wellness stipend
Growth: Learning stipend ongoing development
Remote & Office: Internet commuting and free lunch/gym in our SF office
Time Off: Flexible PTO 15 holidays 2 flex days
Connection: Team outings & referral bonuses

Explore our mission values and comprehensive US benefits at Experience:

Senior IC

About HandshakeHandshake was founded on a simple belief that everyone deserves a path to a great career regardless of where they went to school or who they know. Today we power 25 million job seekers 1 million employers and 1600 educational institutions.In 2025 we started Handshake AI and built the ...

About Company

Company Logo

The better career platform for Gen Z changing how, where, and why the next generation of talent builds their career.

View Profile View Profile