Upstart
Identity and Access Management (IAM) Senior Engineer
Job Summary
The role involves designing, implementing, and maintaining identity and access management (IAM) systems to ensure secure access to enterprise data and systems. The candidate should have extensive experience with IAM technologies like Okta, AWS, Salesforce, and familiarity with protocols such as SAML, OAuth, and OIDC. Responsibilities include managing user lifecycle processes, automating IAM workflows, and ensuring compliance with security policies and regulations. This position requires collaboration with various teams and may involve remote work or on-site visits, with a focus on security, automation, and regulatory adherence.
Required Skills
Benefits
Job Description
About Upstart
Upstart is the leading AI lending marketplace partnering with banks and credit unions to expand access to affordable credit. By leveraging Upstart's AI marketplace, Upstart-powered banks and credit unions can have higher approval rates and lower loss rates across races, ages, and genders, while simultaneously delivering the exceptional digital-first lending experience their customers demand. More than 80% of borrowers are approved instantly, with zero documentation to upload.
Upstart is a digital-first company, which means that most Upstarters live and work anywhere in the United States. However, we also have offices in San Mateo, California; Columbus, Ohio; and Austin, Texas.
Most Upstarters join us because they connect with our mission of enabling access to effortless credit based on true risk. If you are energized by the impact you can make at Upstart, we’d love to hear from you!
The Team
As an Identity and Access Management (IAM) Senior Engineer you will be responsible for designing, implementing, and maintaining identity and access solutions to ensure secure access to enterprise systems and data. This role requires a deep understanding of governance, authorization and authentication in the IAM space as well as hands-on experience with IAM principles, tools and technologies.
How you’ll make an impact:
- Guided by Upstart’s strategic goals and trends in the IAM space, help shape and drive the department’s IAM roadmap.
- Design, implement, and support IAM systems including user provisioning, authentication, authorization, and access governance.
- Manage identity lifecycle processes (Joiner, Mover, Leaver) across various platforms and applications.
- Configure and maintain IAM tools and platforms (e.g., Okta, AWS, Salesforce, GSuite, Atlassian, Slack.).
- Integrate IAM solutions with cloud and on-premises applications.
- Monitor and troubleshoot access issues and anomalies; support incident response related to identity and access.
- Collaborate with IT, Information Security and Internal Audit teams to ensure alignment with security policies and regulatory requirements.
- Automate IAM processes to improve efficiency, Upstarters’ satisfaction and reduce errors.
- Automate access audit program (Access Review and Certifications, RBAC and application reviews).
- Manage urgent delivery of initiatives, making “every second count.”
- Maintain documentation related to IAM architecture, processes, and standards.
- Mentor other members of the IAM and IT team
What we’re looking for:
- Minimum requirements:
-
- Bachelor's degree in Computer Science, Information Security, or related field, or equivalent experience.
- 6+ years of experience in IAM or related information security roles.
- Proficiency with IAM technologies such as Okta, AWS, Salesforce, GSuite, Atlassian, Slack, etc.
- Strong knowledge of SSO, MFA, and federation protocols (SAML, OAuth, OIDC).
- Experience with scripting or automation tools.
- Familiarity with regulatory compliance frameworks (SOX, SOC, etc.).
- Excellent problem-solving and communication skills.
- Ideal candidates will be proactive, accountable and will take full ownership of their initiatives.
- Experience with cloud platforms such as AWS.
-
- Preferred qualifications:
- IAM certifications (e.g., CIAM,CAMS, CISSP)
Position Location - This role is available in the following locations: Remote, San Mateo, Columbus, Austin
Time Zone Requirements - This team operates on the East/West Coast time zones.
Travel Requirements - This team has regular on-site collaboration sessions. These occur 3 days per Quarter at the San Mateo office. If you need to travel to make these meetups, Upstart will cover all travel related expenses.
At Upstart, your base pay is one part of your total compensation package. The anticipated base salary for this position is expected to be within the below range. Your actual base pay will depend on your geographic location–with our “digital first” philosophy, Upstart uses compensation regions that vary depending on location. Individual pay is also determined by job-related skills, experience, and relevant education or training. Your recruiter can share more about the specific salary range for your preferred location during the hiring process.
In addition, Upstart provides employees with target bonuses, equity compensation, and generous benefits packages (including medical, dental, vision, and 401k).
Upstart is a proud Equal Opportunity Employer. We are dedicated to ensuring that underrepresented classes receive better access to affordable credit, and are just as committed to embracing diversity and inclusion in our hiring practices. We celebrate all cultures, backgrounds, perspectives, and experiences, and know that we can only become better together.
If you require reasonable accommodation in completing an application, interviewing, completing any pre-employment testing, or otherwise participating in the employee selection process, please email [email protected]
Upstart
A lending platform using AI to provide personal loans and credit solutions with a focus on fair and fast approvals.
See more jobsSafe Remote Job Search Tips
Verify Employer Thoroughly
Research the company's identity thoroughly before applying. Check for a professional website with contacts, active social media, and LinkedIn profiles. Verify details across platforms and look for reviews on Glassdoor or Trustpilot to confirm legitimacy.
Never Pay to Get a Job
Legitimate employers never require payment for applications, training, background checks, or equipment. Always reject upfront payment requests or demands for bank details, even if they claim it's for purchasing necessary work gear on your behalf.
Safeguard Your Personal Information
Protect sensitive data like SSN, bank details, or ID copies. Share this only after accepting a formal, written job offer. Ensure it's submitted via a secure company system or portal, never through insecure channels like standard email attachments.
Scrutinize Communication & Interviews
Watch for communication red flags: poor grammar, generic emails (@gmail), vague details, or undue pressure. Be highly suspicious of interviews held only via text or chat apps; legitimate companies typically use video or phone calls.
Beware of Unrealistic Offers
If an offer's salary or benefits seem unrealistically high for the work involved, be cautious. Research standard pay for similar roles. Offers that appear 'too good to be true' are often scams designed to lure you into providing information or payment.
Insist on a Formal Contract
Always secure and review a formal, written job offer or employment contract before starting work or sharing final personal details. Ensure it clearly defines your role, compensation, key terms, and conditions to avoid misunderstandings or scams.