Engineering Manager, Identity & Access Platform

Compensation

The base pay offered may vary depending on multiple individualized factors, including market location, job-related knowledge, skills, and experience. The salary range for this position is $293K – $490K, with generous equity, performance-related bonuses for eligible employees, and the following benefits:

• Medical, dental, and vision insurance for you and your family, with employer contributions to Health Savings Accounts
• Pre-tax accounts for Health FSA, Dependent Care FSA, and commuter expenses (parking and transit)
• 401(k) retirement plan with employer match
• Paid parental leave (up to 24 weeks for birth parents and 20 weeks for non-birthing parents), plus paid medical and caregiver leave (up to 8 weeks)
• Paid time off: flexible PTO for exempt employees and up to 15 days annually for non-exempt employees
• 13+ paid company holidays, and multiple paid coordinated company office closures throughout the year for focus and recharge, plus paid sick or safe time (1 hour per 30 hours worked, or more, as required by applicable state or local law)
• Mental health and wellness support
• Employer-paid basic life and disability coverage
• Annual learning and development stipend to fuel your professional growth
• Daily meals in our offices, and meal delivery credits as eligible
• Relocation support for eligible employees
• Additional taxable fringe benefits, such as charitable donation matching and wellness stipends, may also be provided.

About the Team

The Identity Infrastructure Engineering team is at the core of OpenAI's effort to design and build identity and access management solutions that protect model weights, customer data, and critical systems across multiple cloud environments. The team partners across OpenAI to provide secure and scalable platforms for identity, access management, permissioning, orchestration, and safe AI research.

About the Role

We're looking for an engineering leader to lead Identity Infrastructure Engineering, building systems that govern and scale access across OpenAI's research, engineering, and internal platforms. This role sits at the center of cloud infrastructure, identity, software engineering, and security-critical operations. You'll lead engineers building control planes, policy systems, workload and agent authorization patterns, infrastructure-as-code, and operational foundations that help OpenAI move quickly while keeping access reliable, auditable, least-privileged, and safe under failure.

Responsibilities

• Build and lead a high-performing Identity Infrastructure team, setting direction while empowering the team to own delivery.
• Define the strategy for the identity platform as the policy plane for access across people, agents, workloads, services, clouds, and internal systems.
• Scale Access Manager for evolving human and agent lifecycles, making routine access automatic and sensitive access contextual, time-bound, and accountable.
• Build the access graph and resource catalog that make access decisions explainable, risk-aware, and grounded in ownership, sensitivity, environment, and usage.
• Replace broad standing privilege with risk-tiered access, so routine work stays fast, privileged access is narrow and observable, and break-glass is exceptional.
• Establish first-class authorization for agents and workloads, with delegated, action-scoped permissions, time-bound access, full attribution, and no credential sharing.
• Partner across Security, Infrastructure, Applied, Research, IT, and product to turn identity standards into systems teams trust and adopt.
• Operate identity infrastructure as a mission-critical platform, with clear reliability goals, safe rollouts, strong observability, healthy on-call, and rigorous incident learning.
• Measure success by safer, faster, and more accountable access: reduced unnecessary privilege, stronger governance, broader coverage, clearer auditability, and less friction for legitimate work.

Requirements

• 10+ years building and developing engineering teams that own large-scale platforms.
• Experience owning security-critical production systems where reliability, least privilege, auditability, and operational rigor are essential.
• Deep judgment across cloud infrastructure, IAM, authentication, authorization, workload identity, privileged access, and policy enforcement.
• Hands-on technical depth to go into code and architecture, pressure-test designs, and guide tradeoffs across correctness, performance, scale, and operability.
• Track record turning complex infrastructure problems into adopted platforms across Engineering, Security, Research, and internal teams.
• High bar for engineering quality, operational discipline, and long-term ownership.