Senior Identity Security Engineer
Automate your job search with Sonara.
Submit 10x as many applications with less effort than one manual application.1
Reclaim your time by letting our AI handle the grunt work of job searching.
We continuously scan millions of openings to find your top matches.
Overview
Schedule
Full-time
Career level
Senior-level
Remote
Hybrid remote
Compensation
$95,000-$142,000/year
Benefits
Health Insurance
Dental Insurance
Vision Insurance
Job Description
A World-Changing Company
Palantir builds the world’s leading software for data-driven decisions and operations. By bringing the right data to the people who need it, our platforms empower our partners to develop lifesaving drugs, forecast supply chain disruptions, locate missing children, and more.
The Role
As a Senior Identity Security Engineer on Palantir's Identity Security team, you will own the security posture of the identity infrastructure that Palantirians, customers, and services rely on every day. The Identity Security team is responsible for all identity types at Palantir - workforce, customer, workload, and agentic - giving you the rare ability to architect, threat model, and drive security outcomes across the full identity surface. You will help shape the technical direction for identity security at Palantir, reduce standing access, lead identity threat modeling, and contribute to the next generation of identity primitives including agent identity, JIT-native governance, and unified policy enforcement across workforce and customer IAM. As part of Palantir's best-in-class Information Security organization, you will research, architect, and scale solutions that help Palantir stay ahead of a dynamic identity threat landscape.Core Responsibilities
- Own the day-to-day identity security posture across corporate, production, customer, and US Government identity planes
- Drive the rollout of agent identity infrastructure - short-lived credentials, lifecycle bound to a human principal, controlled workload onboarding
- Architect authentication, federation, and authorization systems - including SAML, OIDC, and policy-driven access control models (RBAC, ABAC, policy-as-code) - across workforce and workload identity
- Scale non-human identity patterns across service, workload, and agent populations - short-lived credentials, mTLS, identity-based networking
- Drive adoption of just-in-time access patterns across the identity program, partnering with platform and engineering teams on governance rollout and policy enforcement
- Lead identity threat modeling on a regular cadence; publish findings and track remediation
- Serve as a primary security reviewer on identity architecture decisions and cross-team RFCs
- Research and drive adoption of emerging identity security primitives and standards in partnership with Security Engineers across InfoSec
- Partner with engineering teams across Palantir to reduce the attack surface of identity integrations at scale
What We Value
- Experience with cloud IAM and workload identity patterns - service accounts and identity-based access in distributed environments
- Experience designing or evaluating non-human identity (NHI) architectures - service, workload, and agent - and a strong point of view on where the industry is headed
- Familiarity with privileged access management and secrets management patterns at scale
- A track record of reducing standing access and shifting organizations toward just-in-time access postures in production environments
- Experience with identity governance platforms and a clear-eyed view of their security implications
- Identity threat detection and response experience, including detection engineering against identity telemetry
- Red team, offensive security, or incident response background - especially with an identity focus
- Exposure to regulated environments (FedRAMP, SOX, IL-levels)
- Desire to further the identity security community through substantive contributions (e.g. conference talks, blog posts, public tool development, RFCs)
- Current US security clearance, or eligibility to obtain clearance
What We Require
- 5+ years of experience in Information Security, Identity and Access Management, or an equivalent discipline, with demonstrated depth in identity-specific security
- Hands-on production experience with at least one enterprise identity provider (Entra ID, Okta, or equivalent), including its governance and security surface
- Deep technical proficiency in identity protocols (SAML, OIDC, OAuth 2.0, SCIM, FIDO2, WebAuthn) and their attack surface
- Working proficiency in Go, Python, PowerShell, or TypeScript - enough to prototype tooling, analyze identity-handling code for security defects, scale automation across the environment, and engage in code review
- Strong communication skills and ability to communicate to a wide-ranging audience - from engineer-facing design reviews to leadership-facing risk calls
Salary
The salary range for this position is estimated to be $95,000 - $142,000/year. Total compensation for this position may also include Restricted Stock units, sign-on bonus and other potential future incentives. Further note that total compensation for this position will be determined by each individual's relevant qualifications, work experience, skills, and other factors. This estimate excludes the value of any potential sign-on bonus; the value of any benefits offered; and the potential future value of any long-term incentives.
Our benefits aim to promote health and wellbeing across all areas of Palantirians’ lives. We work to continuously improve our offerings and listen to our community as we design and update them. The list below details our available benefits and some of the perks that can be enjoyed as an employee of Palantir Technologies.
Benefits
Employees are automatically covered by Palantir’s basic life, AD&D and disability insurance
Take what you need paid time off, not accrual based
10 paid holidays throughout the calendar year
Paid leave for new parents and subsidized back-up care for all parents
Stipend to help with expenses that come with a new child
• Employees can enroll in Palantir’s 401k plan
Life at Palantir
We want every Palantirian to achieve their best outcomes, that’s why we celebrate individuals’ strengths, skills, and interests, from your first interview to your longterm growth, rather than rely on traditional career ladders. Paying attention to the needs of our community enables us to optimize our opportunities to grow and helps ensure many pathways to success at Palantir. Promoting health and well-being across all areas of Palantirians’ lives is just one of the ways we’re investing in our community. Learn more at Life at Palantir and note that our offerings may vary by region.
In keeping consistent with Palantir’s values and culture, we believe employees are “better together” and in-person work affords the opportunity for more creative outcomes. Therefore, we encourage employees to work from our offices to foster connectivity and innovation. Many teams do offer hybrid options (WFH a day or two a week), allowing our employees to strike the right trade-off for their personal productivity. Based on business need, there are a few roles that allow for “Remote” work on an exceptional basis. If you are applying for one of these roles, you must work from the state in which you are employed. If the posting is specified as Onsite, you are required to work from an office.
If you want to empower the world's most important institutions, you belong here. Palantir values excellence regardless of background. We are proud to be an Equal Opportunity Employer for all, including but not limited to Veterans and those with disabilities. Palantir is committed to making the application and hiring process accessible to everyone and will provide a reasonable accommodation for those living with a disability. If you need an accommodation for the application or hiring process, please reach out and let us know how we can help.
Please note that you will never be asked to submit a payment or share financial information to participate in our interview process. If you suspect that you've been contacted by a scammer, we recommend you cease all communication with the individual and consider reporting them to the relevant authorities, such as the US FBI Internet Crime Complaint Center (IC3).If you would like to understand more about how your personal data will be processed by Palantir, please see our Privacy Policy.
Automate your job search with Sonara.
Submit 10x as many applications with less effort than one manual application.
FAQs About Senior Identity Security Engineer Jobs at Palantir Technologies
What is the work location for this position at Palantir Technologies?
This job at Palantir Technologies is located in Palo Alto, CA, according to the details provided by the employer. Some roles may also include multiple work locations depending on the requirement.
What pay range can candidates expect for this role at Palantir Technologies?
Candidates can expect a pay range of $95,000 and $142,000 per year.
What employment applies to this position at Palantir Technologies?
Palantir Technologies lists this role as a Full-time position.
What experience level is required for this role at Palantir Technologies?
Palantir Technologies is looking for a candidate with "Senior-level" experience level.
What benefits are offered by Palantir Technologies for this role?
Palantir Technologies offers following benefits: Health Insurance, Dental Insurance, Vision Insurance, Disability Insurance, Life Insurance, Family/Dependent Health, Paid Holidays, Paid Vacation, Parental and Family Leave, Flexible/Unlimited PTO, 401k Matching/Retirement Savings, and Health & Wellness Programs for this position. Actual benefits may vary depending on the employer's policies and employment terms.
What is the process to apply for this position at Palantir Technologies?
You can apply for this role at Palantir Technologies either through Sonara's automated application system, which helps you submit applications 10X faster with minimal effort, or by applying manually using the direct link on the job page.