ironcladhq

Staff IAM Engineer

Preview — apply on company site for full detailsApply Now

At a Glance

Location: San Francisco, United States
Employment: FULL_TIME
Experience: 4+ years
Compensation: {'@type': 'MonetaryAmount', 'currency': 'USD', 'value': {'@type': 'QuantitativeValue', 'minValue': 170000, 'maxValue': 190000, 'unitText': 'YEAR'}}
Department: Ironclad
Posted: 2026-03-20

Key Requirements

Required Skills

AzureDevOpsGCPJavaScriptPythonSalesforceTerraform

Domain Knowledge

Engineering
Legal
Medical
Regulatory
SaaS

Benefits & Perks

Health Insurance

s at Ironclad: 100% health coverage for employees (medical, dental, and vis

Requirements

4+ years of experience in security-focused software engineering, corporate engineering, IT, and/or program management

Strong understanding of IAM protocols and standards, including SAML 2.0, OIDC, SCIM, LDAP, OAuth, and familiarity with X.509

Experience with IdP and identity tooling (e.g., Okta, Active Directory, Google Workspace), including defining and enforcing Role-Based Access Control (RBAC) policies and Least Privilege principles across enterprise applications

Familiarity with endpoint engineering for macOS and Windows

SW Eng/Dev engineering and DevOps proficiency: Python and/or Go, Terraform, GAM scripting, Powershell scripting, JSON, Javascript

Demonstrated experience deploying new IT systems and processes across the organization with high user satisfaction

Compensation & Benefits

The base salary range represents the minimum and maximum of the salary range for this position based at our San Francisco headquarters. The actual base salary offered for this position will depend on numerous factors, including individual proficiency, anticipated performance, and the location of the selected candidate. Our base salary is just one component of Ironclad’s competitive total rewards package, which also includes equity awards (a new hire grant, along with opportunities for additional awards throughout your tenure), competitive health and wellness benefits, and a commitment to career growth and development.

100% health coverage for employees (medical, dental, and vision), and 75% coverage for dependents with buy-up plan options available

Market-leading leave policies, including gender-neutral parental leave and compassionate leave

Family forming support through Maven for you and your partner

Paid time off - take the time you need, when you need it

Responsibilities

Support implementation and operations of our Identity Governance & Administration (IGA) platform to ensure employees gain appropriate access for their role, approvals are captured, and access is revoked efficiently upon separation

Access control design as a security control by defining and enforcing RBAC standards for sensitive systems

Continuous improvement of identity controls by reducing standing privileges and hardening authentication policies (SSO, MFA)

Lead the integration of new SaaS applications into our SSO (Single Sign-On) and MFA (Multi-Factor Authentication) ecosystem, providing security oversight for business systems implementations and operations

Evolve our corporate device trust program so only compliant devices can access corporate and production systems

Support endpoint security efforts including security policies, controls, and vulnerability management across macOS and Windows