Skip to main content
TryApplyNow
Handshake logo

Senior Security Engineer, IAM

Handshake
Full TimeseniorRemote
San Francisco, CARemotePosted 5 weeks ago

Role Overview

Handshake is hiring a Senior Security Engineer, IAM. This is a full-time remote role, with the team based in San Francisco. Part of Handshake's Lifecycle hiring. Full responsibilities, required qualifications, and the apply link are listed in the description below.

Salary Context

Salary is not disclosed in this posting. Market median for Senior-level Lifecycle roles is $131k-$180k (based on 27 comparable listings). Many employers share specifics during the interview process or after an initial screen.

Resume Keywords to Include

Make sure these keywords appear in your resume to improve ATS scoring

PythonNode.jsAWSGCPAzureTerraformRESTDevOps

Job description

ABOUT HANDSHAKE

Handshake was founded on a simple belief that everyone deserves a path to a great career, regardless of where they went to school or who they know. Today, we power 25 million job seekers, 1 million+ employers, and 1,600 educational institutions.

In 2025, we started Handshake AI and built the fastest-growing AI data business in history. We work directly with frontier AI lab researchers to create evaluations, publish benchmarks, and push the boundary of data. We’ve grown from $0 to ~$1B run rate and pay ~$60M to over 30K individuals every month.

Why join Handshake now:

  • Shape how every career evolves in the AI economy, at global scale, with impact your friends, family and peers can see and feel
  • Partner hand-in-hand with world-class AI labs, Fortune 500 partners and the world’s top educational institutions
  • Work together with engineers, scientists, operators, and more from Palantir, Meta, Scale AI, and former YC founders
  • Build a massive, fast-growing business with billions in revenue

ABOUT THE ROLE

Handshake is seeking a Senior Security Engineer to own the architecture, design, and implementation of our enterprise identity automation and governance ecosystem. You’ll define the long-term IAM automation strategy, build resilient and scalable lifecycle workflows, and enable secure-by-default identity operations across SaaS, cloud, and internal platforms.

You’ll partner closely with Security, IT Engineering, People Operations, and Product/Platform Engineering to deliver highly automated, auditable, and reliable identity solutions.

IN THIS ROLE, YOU WILL:

  • Architect, build, and own automated onboarding, offboarding, and access-change workflows across Okta, Workday, SCIM, and event-driven systems.
  • Engineer integration layers between identity platforms and internal applications using Python, REST APIs, Webhooks, and Terraform.
  • Implement error-handling, reconciliation logic, telemetry, and monitoring to ensure reliability and determinism in identity lifecycle events.
  • Modernize existing provisioning logic and replace manual processes with scalable automation frameworks.
  • Develop tooling and pipelines enabling version-controlled, testable, observable IAM automation.
  • Act as a technical owner for Handshake’s IAM ecosystem, including Okta, Google Workspace, GCP, AWS IAM, and internal access systems.
  • Engineer and optimize authentication & authorization protocols (OIDC, OAuth2, SAML, JWT), fine-grained access policies, and scalable RBAC/ABAC models.
  • Build custom automation using Okta Workflows or API-driven orchestration.
  • Design SOC2-compliant access controls, approvals, attestations, and auditability mechanisms.
  • Build automated access certification systems with full data lineage.
  • Conduct identity-related incident forensics and implement preventative automation.
  • Provide cross-functional leadership, setting standards, best practices, and reference architectures for identity automation.
  • Serve as service owner for IAM automation platforms with accountability for uptime, consistency, and continuous improvement.

DESIRED CAPABILITIES

  • 4–7+ years of hands-on IAM engineering, identity automation, or identity governance experience.
  • Strong scripting/automation skills in Python, Node.js, and REST-based integrations.
  • Experience with IAM platforms such as Okta, Google Workspace/GCP, Azure AD, or similar.
  • Deep understanding of identity protocols, token flows, SCIM, and distributed lifecycle orchestration.
  • Experience with Terraform or other infrastructure-as-code frameworks.
  • Ability to diagnose complex identity issues across SaaS, cloud, and distributed systems.
  • Strong understanding of DevOps practices, observability, and secure engineering principles.
  • Demonstrated ownership mindset across architecture, implementation, monitoring, and iterative improvement.

EXTRA CREDIT

  • Advanced experience with GCP IAM, Google Workspace IAM, AWS IAM, cross-account access patterns, and policy automation.
  • Experience with Okta Workflows, SailPoint/IGA, or Privileged Access Management (PAM) solutions.
  • Experience designing scalable authorization models for high-growth or distributed organizations.
  • Certifications such as Okta Architect, Azure Identity Engineer, CISSP.
  • Prior experience in SaaS, high-growth, or distributed engineering environments.

PERKS

Handshake delivers benefits that help you feel supported—and thrive at work and in life.

The below benefits are for full-time US employees.

🎯 Ownership: Equity in a fast-growing company

💰 Financial Wellness: 401(k) match, competitive compensation, financial coaching

🍼 Family Support: Paid parental leave, fertility benefits, parental coaching

💝 Wellbeing: Medical, dental, and vision, mental health support, wellness stipend

📚 Growth: Learning stipend, ongoing development

💻 Remote & Office: Internet, commuting, and free lunch/gym in our SF office

🏝 Time Off: Flexible PTO, 15 holidays + 2 flex days

🤝 Connection: Team outings & referral bonuses

Explore our mission, values, and comprehensive US benefits at joinhandshake.com/careers http://joinhandshake.com/careers.

About Handshake

Handshake logo

Handshake

joinhandshake.com

LifecycleHires remote

56 other open roles at Handshake on TryApplyNow.

Frequently Asked Questions

How do I apply for the Senior Security Engineer, IAM position at Handshake?

Use the Apply button above to submit your application directly to Handshake. Most applications take less than 5 minutes if your resume and contact details are ready, and you'll be routed to the employer's official application system to finish.

Is the Senior Security Engineer, IAM role at Handshake remote?

Yes. This is a remote role. The team is based in San Francisco, but the position itself does not require relocating to that office.

What does a Senior Security Engineer, IAM at Handshake earn?

Handshake has not disclosed a salary range in this posting. Many employers share specifics later in the interview process; you can also ask during a recruiter screen if compensation transparency is important to you.

When was the Senior Security Engineer, IAM role at Handshake posted?

This role was posted on May 29, 2026 (41 days ago). It's still listed as actively hiring; we re-confirm openings against the source system multiple times per day and remove closed roles.

How much experience does the Senior Security Engineer, IAM role at Handshake require?

This is a senior-level position. Most senior roles call for 5+ years of directly relevant experience. Handshake lists their specific requirements in the description below, so review the must-have qualifications closely before applying.

AI-powered job search

Get every job scored to your resume

Upload your resume and get jobs ranked, your resume tailored, and employee contacts found automatically.

Get started free

No credit card to start