Manager, Security Engineering, Identity Access Management

Snap · Consumer · Los Angeles, CA

Manager for Identity Access Management security engineering team, focusing on cloud and infrastructure security, defining technical strategy for IAM, and implementing scalable security controls and automation. The role utilizes AI tools for development and requires strong leadership and software engineering skills.

What you'd actually do

Lead and grow a team of security engineers focused on identity and access management across Snap’s cloud and infrastructure environments.
Define and execute the technical strategy for IAM, including authentication, authorization, privileged access, and access governance.
Design and implement scalable security controls, automation, and guardrails across GCP and AWS environments.
Utilize AI tools and high velocity engineering workflows to design and ship scalable services while upholding rigorous standards for code correctness, security and production ready quality code.
Partner with engineering and infrastructure teams to enforce least privilege access while enabling developer productivity.

Skills

Required

Technical leadership experience managing security engineering or infrastructure security teams
Deep understanding of IAM concepts including authentication, authorization, RBAC/ABAC, SSO, privileged access management, and access governance
Experience designing and securing large-scale cloud environments in GCP and/or AWS
Strong software engineering and system design skills, including automation, distributed systems, and cloud-native security
Proficiency in, or a strong aptitude for, leveraging AI tools to streamline development, paired with the critical judgment to audit generated output for architectural integrity, performance bottlenecks, and security risks
Adaptability in learning and applying evolving AI systems and tools to remain at the forefront of engineering trends and modern development practices
Experience implementing organization-wide security controls and balancing least privilege with usability and scale
Excellent communication and collaboration skills with the ability to influence technical and business stakeholders
Bachelor of Science in Computer Science, Engineering, Information Systems, or equivalent years of experience in a related technical field
8+ years of post- bachelor’s security experience; or a Master’s degree in a technical field + 7+ years of post-grad security experience; or a PhD in a related technical field + 4 years of post-grad security experience
1+ year(s) of experience as an Engineering Manager
Experience leading security initiatives related to identity, access management, or cloud security

Nice to have

Familiarity with container and Kubernetes security principles; experience with EKS or GKE is a plus
Experience building or scaling enterprise IAM platforms and cloud access governance solutions
Familiarity with modern identity standards and protocols such as OAuth, OIDC, SAML, and SCIM
Experience with infrastructure-as-code and security automation frameworks
Experience partnering with compliance, audit, or risk management organizations

What the JD emphasized

security engineering
identity and access management
cloud and infrastructure environments
technical strategy for IAM
authentication
authorization
privileged access
access governance
scalable security controls
automation
guardrails
GCP
AWS
AI tools
high velocity engineering workflows
code correctness
security
production ready quality code
least privilege access
developer productivity
security reviews
risk assessments
incident response
technical leadership experience
managing security engineering or infrastructure security teams
Deep understanding of IAM concepts
RBAC/ABAC
SSO
privileged access management
access governance
designing and securing large-scale cloud environments
software engineering
system design skills
automation
distributed systems
cloud-native security
leveraging AI tools
streamline development
audit generated output
architectural integrity
performance bottlenecks
security risks
Adaptability in learning and applying evolving AI systems and tools
forefront of engineering trends
modern development practices
organization-wide security controls
balancing least privilege with usability and scale
container and Kubernetes security principles
EKS
GKE
communication and collaboration skills
influence technical and business stakeholders
security experience
Engineering Manager
leading security initiatives
identity
access management
cloud security
enterprise IAM platforms
cloud access governance solutions
modern identity standards and protocols
OAuth
OIDC
SAML
SCIM
infrastructure-as-code
security automation frameworks
compliance
audit
risk management organizations

Read full job description

Snap Inc is a technology company. We believe the camera presents the greatest opportunity to improve the way people live and communicate. Snap contributes to human progress by empowering people to express themselves, live in the moment, learn about the world, and have fun together. The Company’s three core products are Snapchat, a visual messaging app that enhances your relationships with friends, family, and the world; Lens Studio, an augmented reality platform that powers AR across Snapchat and other services; and its AR glasses, Spectacles.

Snap Security teams protect the trust and safety of our global community by securing the systems and data that power Snapchat. We safeguard hundreds of millions of Snapchatters every day, ensuring that every product and service is built on a foundation of security and resilience. Our values guide everything we do - from how we anticipate and mitigate threats to how we collaborate across Snap. We move fast, with precision, and always execute with privacy at the forefront.

We’re looking for a Security Engineering Manager to lead our Identity Access Management team here at Snap!

What you’ll do:

Lead and grow a team of security engineers focused on identity and access management across Snap’s cloud and infrastructure environments.
Define and execute the technical strategy for IAM, including authentication, authorization, privileged access, and access governance.
Design and implement scalable security controls, automation, and guardrails across GCP and AWS environments.
Utilize AI tools and high velocity engineering workflows to design and ship scalable services while upholding rigorous standards for code correctness, security, and production ready quality code.
Partner with engineering and infrastructure teams to enforce least privilege access while enabling developer productivity.
Drive security reviews, risk assessments, and incident response efforts related to identity and access security.
Mentor engineers and influence cross-functional stakeholders on IAM strategy, security priorities, and long-term technical direction.

Knowledge, Skills & Abilities:

Strong technical leadership experience managing security engineering or infrastructure security teams.
Deep understanding of IAM concepts including authentication, authorization, RBAC/ABAC, SSO, privileged access management, and access governance.
Experience designing and securing large-scale cloud environments in GCP and/or AWS.
Strong software engineering and system design skills, including automation, distributed systems, and cloud-native security.
Proficiency in, or a strong aptitude for, leveraging AI tools to streamline development, paired with the critical judgment to audit generated output for architectural integrity, performance bottlenecks, and security risks.
Adaptability in learning and applying evolving AI systems and tools to remain at the forefront of engineering trends and modern development practices.
Experience implementing organization-wide security controls and balancing least privilege with usability and scale.
Familiarity with container and Kubernetes security principles; experience with EKS or GKE is a plus.
Excellent communication and collaboration skills with the ability to influence technical and business stakeholders.

Minimum Qualifications:

Bachelor of Science in Computer Science, Engineering, Information Systems, or equivalent years of experience in a related technical field
8+ years of post- bachelor’s security experience; or a Master’s degree in a technical field + 7+ years of post-grad security experience; or a PhD in a related technical field + 4 years of post-grad security experience
1+ year(s) of experience as an Engineering Manager
Experience leading security initiatives related to identity, access management, or cloud security.

Preferred Qualifications:

Experience building or scaling enterprise IAM platforms and cloud access governance solutions.
Familiarity with modern identity standards and protocols such as OAuth, OIDC, SAML, and SCIM.
Experience with infrastructure-as-code and security automation frameworks.
Experience partnering with compliance, audit, or risk management organizations.

If you have a disability or special need that requires accommodation, please don’t be shy and provide us some information.

"Default Together" Policy at Snap: At Snap Inc. we believe that being together in person helps us build our culture faster, reinforce our values, and serve our community, customers and partners better through dynamic collaboration. To reflect this, we practice a “default together” approach and expect our team members to work in an office 4+ days per week.

At Snap, we believe that having a team of diverse backgrounds and voices working together will enable us to create innovative products that improve the way people live and communicate. Snap is proud to be an equal opportunity employer, and committed to providing employment opportunities regardless of race, religious creed, color, national origin, ancestry, physical disability, mental disability, medical condition, genetic information, marital status, sex, gender, gender identity, gender expression, pregnancy, childbirth and breastfeeding, age, sexual orientation, military or veteran status, or any other protected classification, in accordance with applicable federal, state, and local laws. EOE, including disability/vets.

We are an Equal Opportunity Employer and will consider qualified applicants with criminal histories in a manner consistent with applicable law (by example, the requirements of the San Francisco Fair Chance Ordinance and the Los Angeles Fair Chance Initiative for Hiring, where applicable).

Our Benefits: Snap Inc. is its own community, so we’ve got your back! We do our best to make sure you and your loved ones have everything you need to be happy and healthy, on your own terms. Our benefits are built around your needs and include paid parental leave, comprehensive medical coverage, emotional and mental health support programs, and compensation packages that let you share in Snap’s long-term success!

Compensation

In the United States, work locations are assigned a pay zone which determines the salary range for the position. The successful candidate’s starting pay will be determined based on job-related skills, experience, qualifications, work location, and market conditions. The starting pay may be negotiable within the salary range for the position.** **These pay zones may be modified in the future.

Zone A (CA, WA, NYC):

The base salary range for this position is $251,000-$377,000 annually.

Zone B:

The base salary range for this position is $238,000-$358,000 annually.

Zone C:

The base salary range for this position is $213,000-$320,000 annually.

This position is eligible for equity in the form of RSUs.