1

Identity Management Engineer Jobs in California (NOW HIRING)

next page

Showing results 1-20

Identity Management Engineer information

What are the key skills and qualifications needed to thrive as an Identity Management Engineer, and why are they important?

To thrive as an Identity Management Engineer, you need expertise in access management, authentication protocols, directory services, and a relevant degree in computer science or information technology. Familiarity with tools like Active Directory, LDAP, SAML, OAuth, and certifications such as CISSP or Microsoft Certified: Identity and Access Administrator are typically required. Strong problem-solving, attention to detail, and effective communication skills help you collaborate across teams and address security challenges. These skills and qualifications are vital to ensure secure, efficient user access and protect organizational data from unauthorized threats.

What is the difference between Identity Management Engineer vs Security Engineer?

AspectIdentity Management EngineerSecurity Engineer
Required CredentialsBachelor's in CS or related, certifications like CISSP, CISM often preferredBachelor's in CS, cybersecurity, or related; certifications like CISSP, CEH common
Work EnvironmentIT teams, identity and access management systems, cloud platformsSecurity teams, network infrastructure, threat analysis environments
Employer & Industry UsageTech companies, financial institutions, healthcare, governmentAny industry with cybersecurity needs, including finance, tech, government

While both roles focus on security, the Identity Management Engineer specializes in managing user identities, access controls, and authentication systems, whereas the Security Engineer has a broader scope, including network security, threat mitigation, and incident response. Understanding these distinctions helps in choosing the right career path or job search focus.

What does an Identity Management Engineer do?

An Identity Management Engineer is responsible for designing, implementing, and maintaining systems that manage digital identities and access privileges within an organization. They ensure that only authorized users can access specific resources by configuring authentication, authorization, and user provisioning processes. These engineers work with technologies like Single Sign-On (SSO), Multi-Factor Authentication (MFA), and directory services to enhance security and compliance. Their work helps protect sensitive data and supports regulatory requirements by controlling how users interact with information systems.

What are some of the main challenges Identity Management Engineers face when integrating new systems with existing identity infrastructures?

Identity Management Engineers often encounter challenges when integrating new applications or platforms with existing identity infrastructures, such as ensuring compatibility with legacy systems, maintaining consistent access controls, and minimizing disruption to user authentication processes. Achieving seamless single sign-on (SSO) across diverse environments, managing user provisioning and deprovisioning consistently, and addressing security vulnerabilities during migration are common hurdles. Effective communication with application owners and IT security teams is essential for successful integration and maintaining compliance with organizational security policies.
What are popular job titles related to Identity Management Engineer jobs in California? For Identity Management Engineer jobs in California, the most frequently searched job titles are:
What job categories do people searching Identity Management Engineer jobs in California look for? The top searched job categories for Identity Management Engineer jobs in California are:
Infographic showing various Identity Management Engineer job openings in California as of June 2026, with employment types broken down into 1% As Needed, 93% Full Time, 4% Part Time, 1% Temporary, and 1% Contract. Highlights an 88% Physical, 4% Hybrid, and 8% Remote job distribution.
Senior Identity Management Engineer

Senior Identity Management Engineer

Aurora Innovation

San Francisco, CA • On-site

$162K - $235K/yr

Other

Posted 12 days ago


Job description

We are seeking a hands-on IAM Engineer to support the technical execution of our modern identity ecosystem. You will be the primary "labor" engine responsible for implementing our newly licensed tools (Conductor One and Ping Directory). You will be working closely with the IAM Architect in this role.

We've moved past the basics; our stack is built on Zero Trust principles, featuring SPIRE, Open Policy Agent (OPA), and a custom-built group management engine. You will own the full IAM lifecycle, evolving our existing infrastructure into a scalable, modern ecosystem that serves as a competitive advantage for our operations.

In this role you will

  • Platform Implementation: Complete baseline environment configuration for Ping Directory and Conductor One across Dev and Prod tiers.
  • Workforce Automation: Integrate HRIS (Workday) with the IGA platform to automate Joiner-Mover-Leaver (JML) processes.
  • Technical Connectivity: Build and validate production-ready connectors for the core ecosystem, including Okta, AWS, Google, Slack, and Squad.
  • Compliance Hardening: Deploy "Justify or Revoke" workflows and automated reporting to support SOX/ISO privileged access reviews.
  • Identity Isolation: Execute the migration of Workforce and Service identities to Ping Directory.
  • Operational Readiness: Define technical test plans, draft formal procedural documentation for audits, and create system runbooks for the permanent operations team.

Your primary focus will be the build, deployment, and configuration of the core IAM platform.

Required qualifications

  • Experience: 4+ years in Information Security, with at least 2 years specifically focused on implementing IAM solutions in large enterprise environments.
  • Identity Expertise: Expert-level knowledge of at least one major Cloud Identity Provider (AWS IAM, Azure) and core protocols including SAML, OAuth 2.0, OIDC, SCIM, and LDAP.
  • Modern Principles: Deep understanding of Zero Trust principles and access models such as RBAC, ABAC, and PBAC.
  • Education: Bachelor's or Master's degree in Computer Science, IT, or equivalent practical experience.
  • Ability to develop code in either Python or Go.

Desirable qualifications

  • Identity Providers: Experience with integration patterns with IdPs such as Okta, Auth0 or Microsoft Entra ID.
  • IGA/PAM: Experience with Conductor One, SailPoint, Saviynt or similar platforms.
  • Directory Services: Hands-on experience with Ping Directory or similar LDAP solutions. Including monitoring for performance and fine-tuning CPU, Memory and Storage.
  • Cloud Infrastructure: Understanding of AWS cloud infrastructure and security concepts. Comfortable with Kubernetes and Infrastructure-as-Code (IaC) such as Terraform and Helm and CI/CD platforms such as ArgoCD.
  • API Security: Experience protecting APIs using OAuth scopes and claims.
  • Troubleshoot and resolve complex integration and performance issues across the IAM stack.

The base salary range for this position is  $162,000 - $235,000 per Year. Aurora's pay ranges are determined by role, level, and location. Within the range, the successful candidate's starting base pay will be determined based on factors including job-related skills, experience, qualifications, relevant education or training, and market conditions. These ranges may be modified in the future. The successful candidate will also be eligible for an annual bonus, equity compensation, and benefits.