PRINCIPALS ONLY - NO AGENCIES Are you a seasoned engineer with deep expertise in Identity & Access Management (IAM) and a passion for hands-on, innovative security work? Join PrivateID as our Principal Engineer - Digital Identity & Security, where you’ll drive transformative identity initiatives, protect privacy and critical data, and implement secure digital solutions across our platforms to support global, enterprise customers. About the Role: As the Principal Engineer - Digital Identity & Security, you will be a technical leader, responsible for leading, architecting and developing secure identity frameworks. This is a hands-on role that requires coding, strategic thinking, and collaboration with remote, cross-functional teams to create a passwordless, frictionless yet secure user experience. Key Responsibilities: Architect & Develop Solutions: Design, build, and implement scalable IAM solutions powered by PrivateID, Ping Identity, Okta, and more. Hands-On Engineering: Write and review code to build secure, efficient, and user-friendly access and authentication systems. Optimize Security Frameworks: Implement SSO, MFA, and PBAC systems, integrating directly with applications and APIs. Technology & Process Optimization: Drive automation in identity lifecycle management using Python / Node.js enhancing provisioning and security processes. Compliance & Risk Mitigation: Ensure that IAM solutions meet regulatory standards and reduce security risk across cloud (AWS, GCP), hybrid and on-prem environments. Required Technical Skills: IAM: Deep experience with PingFederate and/or Okta Protocols & Standards: Deep Knowledge in custom implementation of OAuth 2.0, OpenID Connect (OIDC), LDAP, JWT, and related IAM protocols. Programming: Strong coding skills in Python and Node.js (Nest.js) for scripting, automation, and backend development. Databases: Knowledge of MongoDB Atlas for managing user data and other database management systems. Experience building OIDC projects using node-oidc-provider (or similar), implementing custom OAuth 2.0 Authorization Servers with OIDC support. Cloud & DevOps: Hands-on experience with AWS and GCP for cloud IAM, with knowledge of DevOps tools including Terraform for provisioning. Front- and Backend Systems: Familiarity with REST API / GraphQL integration and security best practices to secure data flows within the applications. What We’re Looking For: 10+ years of experience in IAM and cybersecurity, with senior-level expertise in digital identity and access management. Proven ability to align IAM strategies with business goals, balancing usability with security. Technical leadership and mentoring skills, with a hands-on approach to solving complex security challenges. Strong communication and collaboration skills for cross-functional work. Background Check: PrivateID supports the financial industry. Candidates must be willing to undergo a comprehensive background and criminal check as part of the hiring process. Please do not apply if you cannot pass these checks. Why PrivateID? PrivateID provides leading-edge secure, privacy-centered digital identity experiences to global enterprise customers. As an industry leader, we specialize in next-generation identity management solutions that prioritize user privacy while ensuring the highest levels of security. Here’s what you can expect when joining our team: Innovation at the Core: Work with a team that values forward-thinking solutions, leveraging the latest advancements in cryptography, homomorphic tokenization, and privacy-preserving technologies. Impactful Work: Shape the future of digital identity, influencing solutions that will redefine security across various industries, including finance, healthcare, and telecommunications. Collaborative Environment: Collaborate with a diverse team of engineers, product managers, and cybersecurity experts who are passionate about delivering secure and user-friendly identity solutions. Professional Growth: Benefit from continuous learning opportunities, with access to resources for expanding technical skills and leadership development. Work-Life Balance: We value a balanced lifestyle and provide flexible work arrangements, ensuring our team can perform at their best while enjoying their personal time. Competitive Compensation: Enjoy a comprehensive compensation package with performance-based incentives, recognizing your contributions to our mission. If you’re ready to lead the future of digital identity at PrivateID, apply now and shape the future of secure digital interactions as our Principal Engineer - Digital Identity & Security! PRINCIPALS ONLY - NO AGENCIES Job Type: Full-time Pay: $140,000.00 - $190,000.00 per year Benefits: 401(k) 401(k) matching Dental insurance Flexible spending account Health insurance Health savings account Life insurance Paid time off Vision insurance Compensation Package: Bonus opportunities Stock options Yearly pay Schedule: 8 hour shift Monday to Friday Experience: IAM: Deep experience with PingFederate and/or Okta: 3 years (Required) of experience in IAM and cybersecurity: 10 years (Preferred) implementation of OAuth 2.0, OpenID Connect, LDAP, JWT: 5 years (Preferred) Work Location: Remote