This leader will own the strategy, architecture, and execution of IAM capabilities that support our employees, customers, and platform services at global scale.

As the company grows, IAM is becoming a foundational pillar of our security posture and customer trust. You will ensure that our identity systems are secure, scalable, easy to use, and aligned with Zero Trust principles.

This is a highly cross-functional leadership role partnering with engineering, security, IT, compliance, and product teams to deliver identity services that are reliable and secure by default.

Responsibilities

Strategic Leadership

• Define the long-term IAM strategy, roadmap, and operating model across the enterprise and product ecosystem.

• Build scalable identity foundations that support global growth, cloud expansion, and evolving business needs.

• Establish best practices for identity lifecycle management, authentication, authorization, provisioning, and governance.

Build and Lead High-Performing Teams

• Manage and grow IAM engineering and operations teams responsible for identity services, infrastructure, and tooling.

• Mentor technical leads and engineers; foster a high-performance and high-accountability culture.

• Develop effective team structures and prioritise workstreams aligned to business and security priorities.

IAM Architecture & Engineering

• Lead the design and implementation of IAM capabilities including:

• Single Sign-On (SSO), MFA, and federated identity

• Role-Based Access Control (RBAC) and Attribute-Based Access Control (ABAC)

• Privileged Access Management (PAM)

• Identity lifecycle automation

• Directory services and identity stores

• Just-in-time access and least-privilege models

• Drive modernisation of legacy systems and implementation of Zero Trust identity principles.

• Ensure scalability, high availability, and strong security controls across all identity platforms.

Governance, Compliance & Risk

• Own identity governance programs including access reviews, audit readiness, onboarding/offboarding controls, and policy enforcement.

• Ensure operational rigor, strong documentation, and sustainable controls that withstand audits and customer expectations.

Cross-Functional Partnership

• Work closely with IT, Product Security, Cloud Infrastructure, and Engineering to embed identity best practices throughout the organisation.

• Collaborate with product teams to ensure customer-facing identity capabilities are secure, intuitive, and scalable.

• Build strong relationships with internal stakeholders and serve as a trusted advisor on identity issues.

Requirements

• 8–12+ years of experience in security, identity engineering, or related technical fields

• Deep technical expertise in modern IAM technologies, directories, authentication protocols (SAML, OIDC, OAuth), and identity standards.

• Hands-on architecture or engineering experience within cloud environments (AWS/GCP/Azure).

• Experience implementing Zero Trust identity models and privileged access management frameworks.

• Strong understanding of identity governance, compliance requirements, and audit processes.

• Proven track record of leading high-performing teams and delivering complex, cross-functional programs.

• Excellent communication, influencing, and stakeholder management skills.

Benefits

At Databricks, we strive to provide comprehensive benefits and perks that meet the needs of all of our employees.

Our Commitment to Diversity and Inclusion

XML job scraping automation by YubHub

As a Staff Engineer, AI Security on the AppSec team, you'll lead autonomous defense for the AI lifecycle. Build multi-agent frameworks and secure gateways while integrating real-time security gates and identity standards. By mentoring Security and R&D to define the MLSecOps roadmap, you'll ensure a 'secure-by-default' future for agentic workflows and resilient AI innovation.

Responsibilities:

Serve as the primary subject matter expert for all AI and machine learning security initiatives across security and R&D.

Design and manage AI gateways to provide a centralized control plane for authentication and authorization and rate limiting across all model and tool interactions.

Build and maintain an autonomous security agentic framework that utilizes multi agent orchestration for end to end investigation and alert triage and remediation.

Develop agentic identity models using OAuth 2.1 to propagate identity across trust boundaries and prevent the confused deputy problem.

Help govern the AI augmented software development lifecycle by integrating real time security gates into the developer environment and CI/CD pipeline.

Manage Agentic Security Solutions that secure AI lifecycle and manage AI workloads at runtime.

Author company wide AI security standards and implement these security checks across Twilio's stack.

Implement human in the loop checkpoints and transactional safety protocols for high impact or destructive agentic actions.

Partner with engineering leadership to set the long term roadmap for identity centric security and automated posture management.

Act as a knowledge multiplier by mentoring security engineers and developing secure by default paved road templates for R&D teams

Qualifications:

8+ years of experience in security engineering with at least 3 years focused on AI or machine learning security operations (MLSecOps).

Expertise in orchestrating multi-agent systems with AWS Strands, LangGraph, and CrewAI, specializing in runtime isolation, PII redaction, and defending against indirect prompt injection in agentic environments.

Hands-on experience with AI-specific frameworks (e.g., MITRE ATLAS, MAESTRO, OWASP Top 10 for LLMs/Agents/MCP) to threat model and defend against a wide spectrum of risks, including direct/indirect prompt injection, training data poisoning, tool poisoning, and data exfiltration within agentic workflows.

Proficiency in securing end-to-end AI pipelines, from data ingestion and training to model deployment and monitoring.

Strong communication skills to translate complex AI risks into actionable business logic for stakeholders.

Desired:

Hands-on experience in modern application security tooling including SAST and SCA and DAST with experience adapting these tools to catch AI specific vulnerabilities like indirect prompt injection.

Expertise in identity standards including OAuth 2.1 and PKCE.

Experience with AI Red Teaming and conducting adversarial simulations against Large Language Models (LLMs) and agentic systems.

Proficiency in at least one general programming language (Python, Go, etc) with experience in container security and workload isolation.

Proven ability to operate with autonomy and drive high impact outcomes in ambiguous environments by identifying and executing on critical projects without predefined roadmaps or direct supervision.

XML job scraping automation by YubHub

This role combines hands-on Flutter development with consulting, systems design, and customer success. You will ensure SpruceID’s mobile technology is deployed securely, effectively, and with lasting real-world impact.

Responsibilities:

• Lead the design and development of mobile applications for state governments and enterprise customers using Flutter
• Work side-by-side with customer delivery leads, backend engineers, and UX designer to ensure successful deployments
• Translate customer and policy requirements into secure mobile architectures and production-ready implementations
• Act as a trusted technical advisor to public-sector partners, guiding them through mobile security, identity standards, and best practices
• Build and ship privacy-preserving mobile applications that meet public-sector requirements for security, accessibility, and compliance
• Integrate mobile applications with backend identity services, cryptographic libraries, and platform APIs
• Contribute to shared Rust or cross-platform libraries that run across backend services, mobile devices, and the browser
• Support customer deployments, debugging, and operational needs in real-world environments
• Represent SpruceID directly with partners during pilots, launches, and ongoing engagements

Qualifications:

• 5+ years of experience shipping production mobile applications
• Strong experience building Flutter applications for iOS and Android
• Proven ability to lead mobile architecture and deliver secure, production systems
• Experience integrating mobile apps with backend services and APIs
• Familiarity with mobile security concepts (secure storage, key management, authentication flows)
• Excellent communication skills and experience working directly with customers, ideally in a consulting or delivery-focused role
• Based in the US and excited to engage directly with state government partners

Bonus Qualifications:

• Experience with digital identity, verifiable credentials, DIDs, or authentication systems
• Background in cryptography, data privacy, or secure mobile systems
• Prior experience working on public-sector or government software projects
• Familiarity with Rust or interoperating with Rust-based mobile libraries
• Experience meeting accessibility standards (WCAG, mobile a11y)

XML job scraping automation by YubHub