Security Software Engineer, IAM

VercelVercel·Remote(Remote - United States)
Software Development
Adjust

WFA Digital Insight

The demand for skilled security professionals in the remote job market continues to surge, with a notable 27% increase in Identity and Access Management roles over the past year. As companies like Vercel lead the way in innovative, secure platforms, the need for experts who can define and implement robust IAM strategies has never been more pressing. With the right blend of technical expertise and collaborative mindset, candidates can seize this opportunity to make a significant impact in a forward-thinking organization. Before applying, it's essential to understand the evolving landscape of IAM and the critical role it plays in safeguarding both corporate and production environments.

Job Description

About the Role

As a Security Software Engineer specializing in Identity and Access Management (IAM) at Vercel, you will play a pivotal role in shaping and implementing the company's IAM strategy across both corporate and production environments. This is a high-impact position that requires not only deep technical expertise but also the ability to collaborate effectively with various teams, including Security, IT, and Engineering. Your mission will be to define the roadmap, standards, and architecture for IAM, ensuring that Vercel's internal systems reflect the high standards it sets for its customers.

The role involves working closely with the Head of Security and being part of a team that values innovation, security, and exceptional developer experience. Given the remote nature of the position, the ability to work autonomously and drive decision-making in a fast-paced environment is crucial. For those based near Vercel's SF or NY offices, the role includes in-office anchor days, highlighting the importance of both remote flexibility and in-person collaboration.

Vercel is at the forefront of the digital transformation, empowering developers and companies to build, extend, and operate products with speed, security, and ease. As a Security Software Engineer for IAM, you will be part of a team that is pushing the boundaries of what is possible in the tech industry, working with cutting-edge technologies and contributing to the development of platforms used by millions worldwide.

What You Will Do

  • Own the full IAM strategy for both corporate and production environments, defining the roadmap, standards, and architecture end-to-end.
  • Migrate Okta and all related IAM configuration to Terraform, driving infrastructure-as-code adoption and enhancing the use of Terraform among engineering teams.
  • Lead Vercel-on-Vercel and Vercel infrastructure cleanup initiatives to ensure internal systems meet the same high standards as customer-facing products.
  • Design and enforce least-privilege access controls across cloud, SaaS, and production infrastructure to ensure robust security.
  • Partner with platform and engineering teams to embed IAM best practices early in the design process, promoting a security-first approach.
  • Build and manage MDM/MAM tooling to secure endpoint and mobile device access across the organization, protecting against potential vulnerabilities.
  • Drive automation across provisioning, deprovisioning, and access review workflows to enhance efficiency and reduce risk.
  • Serve as the IAM subject matter expert, providing guidance and support across Security, IT, and Engineering teams to elevate IAM knowledge and practices.
  • Collaborate with cross-functional teams to ensure that IAM strategies align with business objectives and compliance requirements.

What We Are Looking For

  • 7+ years of experience in identity, access management, or platform security engineering, with a proven track record of implementing and managing IAM systems.
  • Deep expertise with Okta, including SSO, MFA, lifecycle management, and API-driven automation, with the ability to leverage this knowledge to drive infrastructure-as-code initiatives.
  • Proficiency in Terraform and a strong commitment to managing IAM infrastructure as code, with experience in driving adoption and best practices within engineering teams.
  • Experience designing IAM strategy at scale, covering both corporate and production environments, with the ability to adapt to the evolving needs of a growing organization.
  • Hands-on experience with AWS or GCP IAM, including service accounts, roles, and workload identity federation, to ensure seamless integration with cloud infrastructure.
  • Background in MDM/MAM solutions, such as Jamf or Intune, to secure endpoint and mobile devices.
  • Strong collaboration and communication skills, with the ability to drive alignment across Engineering, IT, Compliance, and Security teams.
  • Comfortable operating with autonomy and owning decisions in a fast-moving environment, with a proactive approach to identifying and resolving IAM challenges.

Nice to Have

  • Experience leading Terraform migrations for IAM or identity infrastructure at scale, with a focus on driving efficiency and reducing operational overhead.
  • Background in SCIM, SAML, OIDC, and directory services, such as Google Workspace or Azure AD, to enhance IAM capabilities and integrations.
  • Contributions to internal developer platforms or security tooling, demonstrating a passion for innovation and improvement in the field of IAM.
  • Experience working at a developer tools, infrastructure, or SaaS company, with an understanding of the unique IAM challenges and opportunities in these environments.
  • Certifications such as Okta Certified Professional/Administrator, AWS Security Specialty, or similar, highlighting expertise and commitment to ongoing learning.

Benefits and Perks

  • Competitive compensation package, reflecting the importance of the role and the value it brings to Vercel.
  • Equity in a company that is shaping the future of the web and digital development, offering a significant opportunity for growth.
  • Comprehensive health insurance, recognizing the importance of well-being and health for all employees.
  • Generous PTO policy, encouraging work-life balance and the opportunity to recharge.
  • Remote work stipend, supporting the comfort and efficiency of remote work arrangements.
  • Professional development opportunities, including training, conferences, and workshops, to foster continuous learning and skill development.
  • Access to cutting-edge technologies and tools, ensuring that employees have the best resources to excel in their roles.

How to Stand Out

  • Ensure your portfolio showcases specific examples of IAM strategy implementation and management, especially in cloud environments, to demonstrate your expertise.
  • Develop a deep understanding of Okta and Terraform, including their capabilities and best practices for infrastructure-as-code management, to stand out as a strong candidate.
  • Highlight any experience with automation tools and scripts used for provisioning, deprovisioning, and access reviews, as this demonstrates efficiency and scalability.
  • Prepare to discuss your approach to least-privilege access control and how you have enforced it in previous roles, showcasing your security mindset.
  • Be ready to talk about your experience with MDM/MAM solutions and how you have secured endpoint and mobile devices in a corporate setting, emphasizing your ability to protect against vulnerabilities.
  • Show enthusiasm for continuous learning and professional development, especially in the rapidly evolving field of IAM and cybersecurity, to demonstrate your commitment to staying up-to-date with the latest technologies and threats.

This is a remote position listed on WFA Digital, the platform for professionals who work from anywhere. Browse more remote jobs across all categories.