Who we are
Aurora’s mission is to deliver the benefits of self-driving technology safely, quickly, and broadly.
The Aurora Driver will create a new era in mobility and logistics, one that will bring a safer, more efficient, and more accessible future to everyone.
At Aurora, you will tackle massively complex problems alongside other passionate, intelligent individuals, growing as an expert while expanding your knowledge. For the latest news from Aurora, visit aurora.tech or follow us on LinkedIn.
We are seeking a hands-on IAM Engineer to support the technical execution of our modern identity ecosystem. You will be the primary "labor" engine responsible for implementing our newly licensed tools (Conductor One and Ping Directory). You will be working closely with the IAM Architect in this role.
We’ve moved past the basics; our stack is built on Zero Trust principles, featuring SPIRE, Open Policy Agent (OPA), and a custom-built group management engine. You will own the full IAM lifecycle, evolving our existing infrastructure into a scalable, modern ecosystem that serves as a competitive advantage for our operations.
In this role you will
Platform Implementation: Complete baseline environment configuration for Ping Directory and Conductor One across Dev and Prod tiers.
Workforce Automation: Integrate HRIS (Workday) with the IGA platform to automate Joiner-Mover-Leaver (JML) processes.
Technical Connectivity: Build and validate production-ready connectors for the core ecosystem, including Okta, AWS, Google, Slack, and Squad.
Compliance Hardening: Deploy "Justify or Revoke" workflows and automated reporting to support SOX/ISO privileged access reviews.
Identity Isolation: Execute the migration of Workforce and Service identities to Ping Directory.
Operational Readiness: Define technical test plans, draft formal procedural documentation for audits, and create system runbooks for the permanent operations team.
Your primary focus will be the build, deployment, and configuration of the core IAM platform.
Required qualifications
- Experience: 4+ years in Information Security, with at least 2 years specifically focused on implementing IAM solutions in large enterprise environments.
- Identity Expertise: Expert-level knowledge of at least one major Cloud Identity Provider (AWS IAM, Azure) and core protocols including SAML, OAuth 2.0, OIDC, SCIM, and LDAP.
- Modern Principles: Deep understanding of Zero Trust principles and access models such as RBAC, ABAC, and PBAC.
- Education: Bachelor’s or Master’s degree in Computer Science, IT, or equivalent practical experience.
- Ability to develop code in either Python or Go.
Desirable qualifications
- Identity Providers: Experience with integration patterns with IdPs such as Okta, Auth0 or Microsoft Entra ID.
- IGA/PAM: Experience with Conductor One, SailPoint, Saviynt or similar platforms.
- Directory Services: Hands-on experience with Ping Directory or similar LDAP solutions. Including monitoring for performance and fine-tuning CPU, Memory and Storage.
- Cloud Infrastructure: Understanding of AWS cloud infrastructure and security concepts. Comfortable with Kubernetes and Infrastructure-as-Code (IaC) such as Terraform and Helm and CI/CD platforms such as ArgoCD.
- API Security: Experience protecting APIs using OAuth scopes and claims.
- Troubleshoot and resolve complex integration and performance issues across the IAM stack.
The base salary range for this position is** $146,000 - $211,500 per **Year. Aurora’s pay ranges are determined by role, level, and location. Within the range, the successful candidate’s starting base pay will be determined based on factors including job-related skills, experience, qualifications, relevant education or training, and market conditions. These ranges may be modified in the future. The successful candidate will also be eligible for an annual bonus, equity compensation, and benefits.
Working at Aurora** **At Aurora, we bring together extraordinarily talented and experienced people united by the strength of our values. We operate with integrity, set outrageous goals, and build a culture where we win together — all without any jerks.
We believe in-person work increases collaboration, empathy and our ability to lead effectively. As a result, we operate in a hybrid work environment where Aurorans are in office at least 3 days per week.
OurCareers page provides insight into what it is like to work at Aurora, and you can find all the latest updates in our Newsroom.
Our commitment to safety
At the core of everything we do is our commitment to safety. Building best-in-class self-driving technology will take time, and we believe that each employee at Aurora has a role in contributing to safety, every step of the way. Aurora expects commitment to our safety policies from every employee, and seeks candidates who take an active responsibility, can contribute to building an atmosphere of trust, and invest in the organization’s long-term success by prioritizing working safely, no matter what.
Our commitment to inclusion
Aurora considers candidates without regard to their race, color, religion, national origin, age, sex, gender, gender identity, gender expression, sexual orientation, marital status, pregnancy status, parent or caregiver status, ancestry, political affiliation, veteran and/or military status, physical or mental disability, or any other status protected by federal or state law. Aurora considers qualified applicants with criminal histories, consistent with applicable federal, state, and local law. We are also committed to providing reasonable accommodations for qualified individuals with disabilities and disabled veterans in our job application procedures. If you need assistance or an accommodation due to a disability, you may contact us at careersiteaccommodations@aurora.tech.
For California applicants, information collected and processed as part of your application and any job applications you choose to submit is subject to Aurora’s California Employment Privacy Policy.