ZipRecruiter

Log In

1

Identity Engineer Jobs in California (NOW HIRING)

Lam Research Corporation

Lead Identity Engineer

Fremont, CA · On-site

$112K - $147K/yr

The group you'll be a part of The impact you'll make We are seeking a Lead Identity Engineer with deep, hands-on expertise in Saviynt Identity Cloud for SAP provisioning and integration with SAP GRC.

Elastic

Okta Identity Engineer

Mountain View, CA · On-site

As the Okta Identity Engineer, you will be part of a growing team to help support projects and serve as the subject matter expert, responsible for architecting, designing and implementing a variety ...

ResMed

Principal Engineer - Identity

San Diego, CA

As a Principal Engineer of Identity Platform Engineering at ResMed,you will enable ResMed to securely and seamlessly manage customer identities by providing a robust, scalable, and user-friendly ...

Handshake

Senior Security Engineer, IAM

San Francisco, CA · On-site

$176K - $220K/yr

Engineer integration layers between identity platforms and internal applications using Python, REST APIs, Webhooks, and Terraform. * Implement error-handling, reconciliation logic, telemetry, and ...

Zip

Software Engineer, Identity

San Francisco, CA · On-site

$150K - $210K/yr

Your Role The Identity team is responsible for the platforms that manage user access and data confidentiality for customers. As a Software Engineer on the team, you will take on a dynamic role ...

next page

Showing results 1-20

All JobsIdentity Engineer JobsIdentity Engineer Jobs in California

Identity Engineer information

See California salary details

$37.5K

$114.3K

$189K

How much do identity engineer jobs pay per year?

As of Jun 15, 2026, the average yearly pay for identity engineer in California is $114,347.00, according to ZipRecruiter salary data. Most workers in this role earn between $81,900.00 and $149,500.00 per year, depending on experience, location, and employer.

What engineers make $500,000?

Senior-level engineers in specialized fields such as software engineering, data engineering, or cybersecurity can earn $500,000 or more annually, especially with extensive experience, advanced skills, and in high-demand industries. Compensation often includes base salary, bonuses, and stock options, particularly at large tech companies or startups with significant growth potential.

What does an identity engineer do?

An identity engineer designs and implements systems to manage digital identities and access controls within organizations. They work with identity and access management (IAM) tools, ensure security compliance, and develop solutions for user authentication and authorization. Strong knowledge of cybersecurity principles and experience with identity management platforms are essential for this role.

What are the 4 pillars of IAM?

The four pillars of Identity and Access Management (IAM) are authentication, authorization, user management, and audit. These components ensure that the right individuals have secure access to systems and data, and that activities are monitored for compliance. As an Identity Engineer, understanding these pillars is essential for designing and maintaining effective IAM solutions.

Can I make $200 a year in cyber security?

An Identity Engineer typically earns significantly more than $200 annually, as cybersecurity roles generally offer salaries ranging from $60,000 to over $120,000 depending on experience, location, and certifications. Earning only $200 per year would be unrealistic for this profession, which involves specialized skills like identity management, access control, and security tools. Entry-level positions or part-time roles may have lower pay, but even then, annual earnings are usually well above that amount.

What is the difference between Identity Engineer vs Identity Analyst?

AspectIdentity EngineerIdentity Analyst
Required CredentialsCertifications in cybersecurity, identity management, or related fields; relevant degreesCertifications in security, data analysis, or identity management; relevant degrees
Work EnvironmentTechnical teams, IT departments, cybersecurity projectsSecurity teams, compliance departments, data analysis teams
Employer & Industry UsageTech companies, financial institutions, healthcare organizationsFinancial services, government agencies, large enterprises
Common Search & ComparisonFocuses on designing and implementing identity systemsFocuses on analyzing identity data and security protocols

While both roles involve working with identity management, an Identity Engineer primarily designs and develops identity systems and infrastructure, whereas an Identity Analyst focuses on analyzing identity data, monitoring security, and ensuring compliance. The roles often collaborate but differ in technical implementation versus data analysis and security oversight.

What cities in California are hiring for Identity Engineer jobs? Cities in California with the most Identity Engineer job openings:
Identity Engineer jobs near you
Infographic showing various Identity Engineer job openings in California as of June 2026, with employment types broken down into 97% Full Time, and 3% Contract. Highlights an 87% Physical, 5% Hybrid, and 8% Remote job distribution, with an average salary of $114,347 per year, or $55 per hour.
Lead Identity Engineer

Lead Identity Engineer

Lam Research Corporation

Fremont, CA • On-site

$112K - $147K/yr

Full-time

Posted 25 days ago

Lam Research rating

8.6

Company rating: 8.6 out of 10

Based on 44 frontline employees who took The Breakroom Quiz

49th of 418 rated machine equipment manufacturers

Job description

The group you'll be a part of
The impact you'll make
We are seeking a Lead Identity Engineer with deep, hands-on expertise in Saviynt Identity Cloud for SAP provisioning and integration with SAP GRC. This role is responsible for leading the design, development, and operation of identity lifecycle automation, SAP access governance, and risk-based access controls, including Segregation of Duties (SoD) and compliance workflows. This position is highly technical and developer-oriented, requiring the ability to build custom connectors, provisioning logic, and integrations between Saviynt, SAP systems, and SAP GRC. You will serve as the technical authority for SAP-related identity and GRC capabilities, partnering with IAM, SAP Security/Basis, GRC, and Audit teams to deliver secure, scalable, and compliant access management solutions.
What you'll do
Saviynt Engineering & Platform Leadership
  • Serve as the technical lead for Saviynt implementations and enhancements, with a strong emphasis on SAP IAS and GRC integration use cases.
  • Establish engineering standards for Saviynt configuration, custom development, testing, deployment, and operational support.
  • Design, build, and maintain Saviynt functionality, including:
    • Joiner/Mover/Leaver (JML) lifecycle automation.
    • Access request workflows with dynamic, risk-aware approvals.
    • Provisioning rules and event-driven logic.
    • Birthright and policy-based access.
    • Access certifications and recertification campaigns.

SAP Provisioning & Access Management
  • Lead the design and implementation of automated SAP user and role provisioning using Saviynt.
  • Build and maintain Enterprise Role and SAP access request catalogs aligned with role design and compliance policies.
  • Ensure reliable deprovisioning and role cleanup to support least-privilege and audit requirements.
  • Translate SAP security constructs into Saviynt models, including:
    • Enterprise and composite roles.
    • Profiles and authorization objects.
    • User types and license-relevant attributes.

What you'll do (continued)
Developer & Integration Engineering
  • Build and customize Saviynt connectors and integrations for SAP and SAP GRC, including:
    • API and out-of-the-box connector integrations.
    • File-based and event-driven provisioning patterns.
  • Develop custom provisioning logic using Saviynt-supported scripting and rule frameworks to handle:
    • Complex role assignment logic.
    • Conditional access decisions.
    • Exception handling and retries.
  • Design and implement programmatic integrations between Saviynt and SAP GRC, supporting:
    • Real-time or near-real-time risk evaluation.
    • Automated mitigation controls.
    • Closed-loop access request and fulfillment workflows.
  • Troubleshoot complex cross-system issues involving Saviynt, SAP, SAP GRC, HR sources, and directories.

Integration & Data Engineering
  • Ensure high-quality identity data through robust correlation rules, attribute mappings, and validation logic.
    Design monitoring, logging, and alerting for provisioning and GRC workflows.
  • Lead integrations with:
    • Authoritative sources (HRIS).
    • Directories (AD / Entra ID / LDAP).
    • ITSM platforms (e.g., ServiceNow).

Delivery Leadership & Stakeholder Engagement
  • Own technical delivery end to end, including requirements, design, build, testing, deployment, and steady-state operations.
  • Act as the primary technical advisor for Saviynt IAM- and GRC-related initiatives.
  • Mentor IAM engineers and administrators, and establish patterns and reusable components.
  • Communicate effectively with Security Architecture, SAP Security/Basis, GRC, Compliance, and Internal Audit teams.

Who we're looking for
  • Minimum of 15 years of related experience with a Bachelor's degree; or 12 years and a Master's degree; or a PhD with 8 years experience; or equivalent experience.
  • 7+ years of experience in Identity & Access Management / Identity Governance.
  • Strong hands-on Saviynt experience, including advanced configuration and custom development.
  • Proven expertise in SAP provisioning and access governance (ECC, S/4HANA, BW, SuccessFactors, or similar platforms).
  • Ability to design and debug complex identity and GRC integrations across multiple platforms.
  • Demonstrated experience with Saviynt GRC for SAP and/or SAP GRC Access Control, including:
    • SoD rule design and administration.
    • Risk analysis and mitigation.
    • GRC-driven approval workflows.
  • Strong understanding of SAP security concepts, including:
    • Roles (single and composite), profiles, and authorization objects.

Preferred qualifications
  • Deep hands-on experience with Saviynt GRC and SAP GRC configuration and operations.
  • Experience integrating Saviynt with ServiceNow for access requests and fulfillment.
  • Strong scripting and development skills (e.g., REST APIs, PowerShell, Python, SQL).
  • Experience with cloud identity ecosystems (Entra ID / Azure AD, Okta, Ping).
  • Familiarity with SAP licensing considerations tied to roles and user types.
  • Saviynt and/or SAP Security / SAP GRC certifications.

Our commitment
We believe it is important for every person to feel valued, included, and empowered to achieve their full potential. By bringing unique individuals and viewpoints together, we achieve extraordinary results.
Lam Research ("Lam" or the "Company") is an equal opportunity employer. Lam is committed to and reaffirms support of equal opportunity in employment and non-discrimination in employment policies, practices and procedures on the basis of race, religious creed, color, national origin, ancestry, physical disability, mental disability, medical condition, genetic information, marital status, sex (including pregnancy, childbirth and related medical conditions), gender, gender identity, gender expression, age, sexual orientation, or military and veteran status or any other category protected by applicable federal, state, or local laws. It is the Company's intention to comply with all applicable laws and regulations. Company policy prohibits unlawful discrimination against applicants or employees.
Lam offers a variety of work location models based on the needs of each role. Our hybrid roles combine the benefits of on-site collaboration with colleagues and the flexibility to work remotely and fall into two categories - On-site Flex and Virtual Flex. 'On-site Flex' you'll work 3+ days per week on-site at a Lam or customer/supplier location, with the opportunity to work remotely for the balance of the week. 'Virtual Flex' you'll work 1-2 days per week on-site at a Lam or customer/supplier location, and remotely the rest of the time.
#LI-DM1
Salary
CA San Francisco Bay Area Salary Range for this position: $137,000.00 - $287,000.00.
The above salary range for this position is relevant to applicants that reside or work onsite in the California, San Francisco Bay Area only. Salary offers will depend on factors that include the location you work from, your level, education, training, specific skills, years of experience and comparison to other employees already in this role. Actual salary may vary from salary offered due to numerous factors including but not limited to unpaid time off, unpaid leave, company mandated shutdown, and other relevant factors.
Our Perks and Benefits
At Lam, our people make amazing things possible. That's why we invest in you throughout the phases of your life with a comprehensive set of outstanding benefits.

What Lam Research employees say

Pay

Benefits

Hours and flexibility

Workplace

Get the full story on Breakroom

Lam Research logo

About Lam Research

Sourced by ZipRecruiter

Lam Research designs and builds products for semiconductor manufacturing, including equipment for thin film deposition, plasma etch, photoresist strip, and wafer cleaning processes.

Industry

Manufacturing

Company size

10,000+ Employees

Headquarters location

Fremont, CA, US

Year founded

1980

Social media

FacebookTwitter

View All Lam Research Jobs

Apply