Site Reliability Engineer, Enterprise IAM

About the Team

OpenAI’s IT Engineering organization advances the mission of deploying artificial general intelligence (AGI) for the benefit of all by delivering secure, scalable, and resilient technology solutions. Our team builds and maintains robust infrastructure that safeguards OpenAI’s data and systems while ensuring employees are well-equipped and seamlessly connected. By prioritizing security, reliability, and user-centric solutions, we empower OpenAI employees to drive impactful AI research, corporate operations, and product innovation.

About the Role

As an SRE, Enterprise IAM at OpenAI, you will be responsible for designing, building, and maintaining scalable Identity and Access Management (IAM) solutions that empower our teams while ensuring security and compliance. You will leverage automation, Infrastructure-as-Code (IaaC), and CI/CD methodologies to optimize identity lifecycle management, primarily within AzureAD, while integrating across multi-cloud environments such as AWS and GCP.

This role requires a proactive, engineering-first mindset to build automation-driven identity workflows, improve security posture through zero-trust frameworks, and collaborate with security and DevOps teams to implement scalable IAM solutions. You will play a critical role in shaping and evolving IAM processes by adopting cutting-edge technologies, automating access management, and ensuring seamless and secure user experiences across OpenAI.

By implementing best practices in identity automation, observability, and policy enforcement, you will directly contribute to the efficiency and productivity for teams across OpenAI.

In this role, you will:

• Design, build, and maintain scalable IAM automation workflows using Python, PowerShell, and Terraform to support user lifecycle management.
• Develop Infrastructure-as-Code (IaC) solutions for IAM environments, leveraging Terraform to manage Azure/Entra lifecycle workflows at scale.
• Implement CI/CD pipelines to automate IAM deployments and ensure seamless integration across cloud platforms (Azure, AWS, GCP).
• Define and implement monitoring and observability strategies to proactively manage IAM system health and compliance.
• Own the configuration and optimization of AzureAD identity access, ensuring seamless user provisioning through automated birthright access solutions.
• Collaborate with security and DevOps teams to integrate IAM solutions within a Zero Trust framework, driving security automation and compliance.
• Lead initiatives to improve IAM practices by adopting emerging technologies, automating processes, and optimizing for scalability and efficiency.

You may be a fit for this role if you have:

• Advanced proficiency in scripting and automation, particularly in Python and PowerShell, with the ability to develop scalable automation solutions that enhance operational efficiency, drive self-service capabilities, and enforce security policies, including automating birthright access workflows.
• Experience in an IT or IT-adjacent field.
• Extensive hands-on experience with Azure Active Directory (AzureAD) and identity management systems, with a proven track record of designing and implementing automated provisioning and de-provisioning solutions at scale using Azure/Entra lifecycle workflows and Infrastructure-as-Code (IaC) principles.
• Strong experience in Infrastructure-as-Code (IaC) and cloud automation tools, such as Terraform, to provision, configure, and manage identity services programmatically across complex cloud environments.
• The proven ability to architect, deploy, and manage access control mechanisms, leveraging best-in-class security frameworks such as Zero Trust, RBAC, and ABAC to enhance security postures while maintaining user productivity.
• Deep understanding of identity governance and administration (IGA) platforms, with expertise in designing robust access controls and automating identity lifecycle processes to ensure compliance, security, and seamless user experiences.
• Demonstrated expertise in optimizing IAM processes through engineering best practices, including CI/CD integrations, policy-as-code implementations, and automation of access reviews and approvals.
• Experience in designing and enforcing scalable access policies and automated governance frameworks, ensuring compliance with evolving security standards and adapting to the needs of a high-growth, security-conscious organization.

  You might thrive in this role if you have:

  • Deep experience with open-source IAM tools and frameworks.
  • Experience with containerization technologies such as Docker and Kubernetes.
  • Familiarity with compliance frameworks such as SOC 2, ISO 27001, FedRAMP, and NIST.
  • Strong soft skills, including stakeholder communication and cross-functional collaboration.
  • Relevant professional certifications such as CISSP, CISA, CISM, CCSP
  • A track record as a security thought leader with contributions to IAM-related open-source projects or technical communities.

 This is a hybrid role and will require 3 days a week in our San Francisco office.

About OpenAI

OpenAI is an AI research and deployment company dedicated to ensuring that general-purpose artificial intelligence benefits all of humanity. We push the boundaries of the capabilities of AI systems and seek to safely deploy them to the world through our products. AI is an extremely powerful tool that must be created with safety and human needs at its core, and to achieve our mission, we must encompass and value the many different perspectives, voices, and experiences that form the full spectrum of humanity. 

We are an equal opportunity employer and do not discriminate on the basis of race, religion, national origin, gender, sexual orientation, age, veteran status, disability or any other legally protected status. 

OpenAI Affirmative Action and Equal Employment Opportunity Policy Statement

For US Based Candidates: Pursuant to the San Francisco Fair Chance Ordinance, we will consider qualified applicants with arrest and conviction records.

We are committed to providing reasonable accommodations to applicants with disabilities, and requests can be made via this link.

OpenAI Global Applicant Privacy Policy

At OpenAI, we believe artificial intelligence has the potential to help people solve immense global challenges, and we want the upside of AI to be widely shared. Join us in shaping the future of technology.