Senior Staff Security Engineer, Identity

<h2>About Nscale</h2> <p>Nscale is the GPU cloud engineered for AI. We provide cost-effective, high-performance infrastructure for AI start-ups and large enterprise customers. Nscale enables AI-focused companies to achieve superior results by reducing the complexity of AI development. Our GPU cloud bolsters technical capabilities and directly supports strategic business outcomes, including cost management, rapid innovation, and environmental responsibility.</p> <p>We thrive on a culture of relentless innovation, ownership, and accountability, where every team member takes pride in their work and drives it with excellence and urgency. As an Nscaler, you’ll build trust through openness and transparency, where everyone is inspired to do their best work. If you join our team, you’ll be contributing to building the technology that powers the future.</p> <h2>About the Role</h2> <p>We’re hiring a <strong><strong class="textBold">Senior Staff Security Engineer, Identity</strong></strong> to define and lead Nscale’s identity and access architecture at scale.</p> <p>This is a <strong><strong class="textBold">high-impact</strong></strong> role focused on shaping how identity, authentication, and authorization operate across <strong><strong class="textBold">infrastructure, platform, and internal systems</strong></strong>. You’ll set long-term technical direction, design foundational systems, and partner closely with <strong><strong class="textBold">engineering leadership</strong></strong> as well as <strong><strong class="textBold">infrastructure, platform, and security teams</strong></strong> to embed identity into every layer of the stack.</p> <p>Your work will directly influence how Nscale secures <strong><strong class="textBold">highly distributed systems</strong></strong>, supports <strong><strong class="textBold">safe multi-tenant workloads</strong></strong>, and builds scalable identity primitives for <strong><strong class="textBold">both humans and services</strong></strong>. This role matters because identity is a foundational part of secure, scalable infrastructure—and you’ll help define how it evolves across the company.</p> <p>This role will be part of the global CISO organization.</p> <h2>What you'll be doing</h2> <p><strong><strong class="textBold">Identity strategy and architecture</strong></strong></p> <ul> <li value="1"><strong><strong class="textBold">Define</strong></strong> Nscale’s identity vision and multi-year roadmap in line with platform and infrastructure strategy.</li> <li value="2"><strong><strong class="textBold">Set</strong></strong> the long-term technical direction for identity, authentication, and authorization across core systems.</li> <li value="3"><strong><strong class="textBold">Design</strong></strong> foundational identity architecture that can scale across distributed infrastructure environments.</li> </ul> <p><strong><strong class="textBold">Authentication and federation</strong></strong></p> <ul> <li value="1"><strong><strong class="textBold">Architect</strong></strong> and standardize authentication systems, including <strong><strong class="textBold">SSO</strong></strong> and federation patterns.</li> <li value="2"><strong><strong class="textBold">Implement</strong></strong> identity integrations using protocols such as <strong><strong class="textBold">SAML</strong></strong> and <strong><strong class="textBold">OIDC</strong></strong>.</li> <li value="3"><strong><strong class="textBold">Establish</strong></strong> scalable approaches for working with identity providers across internal and platform systems.</li> </ul> <p><strong><strong class="textBold">Authorization and access control</strong></strong></p> <ul> <li value="1"><strong><strong class="textBold">Design</strong></strong> and evolve authorization frameworks using models such as <strong><strong class="textBold">RBAC</strong></strong>, <strong><strong class="textBold">ABAC</strong></strong>, and policy-based access control.</li> <li value="2"><strong><strong class="textBold">Drive</strong></strong> consistent access patterns for complex, distributed systems where security and usability must both scale.</li> <li value="3"><strong><strong class="textBold">Standardize</strong></strong> policy-as-code and automation approaches for identity and access control enforcement.</li> </ul> <p><strong><strong class="textBold">Workload identity and zero trust</strong></strong></p> <ul> <li value="1"><strong><strong class="textBold">Build</strong></strong> and scale service-to-service authentication and workload identity patterns, including <strong><strong class="textBold">short-lived credentials</strong></strong> and identity-based access.</li> <li value="2"><strong><strong class="textBold">Establish</strong></strong> zero trust architecture principles and ensure they are enforced consistently across infrastructure.</li> <li value="3"><strong><strong class="textBold">Define</strong></strong> identity patterns for <strong><strong class="textBold">cloud</strong></strong>, <strong><strong class="textBold">Kubernetes</strong></strong>, and <strong><strong class="textBold">GPU-based infrastructure</strong></strong> environments.</li> <li value="4"><strong><strong class="textBold">Lead</strong></strong> the design of <strong><strong class="textBold">privileged access management</strong></strong>, <strong><strong class="textBold">secrets management</strong></strong>, and secure access workflows.</li> </ul> <p><strong><strong class="textBold">Cross-functional technical leadership</strong></strong></p> <ul> <li value="1"><strong><strong class="textBold">Partner</strong></strong> with infrastructure, platform, and security teams to integrate identity into core systems and services.</li> <li value="2"><strong><strong class="textBold">Influence</strong></strong> large-scale initiatives across organizational boundaries as a senior technical leader.</li> <li value="3"><strong><strong class="textBold">Mentor</strong></strong> senior engineers and raise the bar for security engineering across teams.</li> </ul> <h2>KPIs</h2> <ul> <li value="1"><strong><strong class="textBold">Multi-year identity roadmap delivery</strong></strong></li> <li value="2"><strong><strong class="textBold">Standardization of authentication and federation systems</strong></strong></li> <li value="3"><strong><strong class="textBold">Adoption of authorization and policy-as-code frameworks</strong></strong></li> <li value="4"><strong><strong class="textBold">Consistent zero trust and workload identity enforcement</strong></strong></li> </ul> <h2>About You</h2> <ul> <li value="1"><strong><strong class="textBold">10–15+ years</strong></strong> of experience in security engineering or distributed systems, with deep expertise in <strong><strong class="textBold">identity and access management</strong></strong>.</li> <li value="2">Proven experience designing and operating <strong><strong class="textBold">large-scale identity systems</strong></strong> in <strong><strong class="textBold">cloud-native</strong></strong> or infrastructure-heavy environments.</li> <li value="3">Strong expertise in authentication and federation protocols, including <strong><strong class="textBold">SAML, OIDC, and OAuth2</strong></strong>.</li> <li value="4">Deep understanding of authorization models and policy systems such as <strong><strong class="textBold">RBAC, ABAC, and Rego/OPA</strong></strong>.</li> <li value="5">Experience with <strong><strong class="textBold">cloud IAM</strong></strong> and <strong><strong class="textBold">Kubernetes-native identity</strong></strong> patterns, including workload identity and service accounts.</li> <li value="6">Experience designing <strong><strong class="textBold">service identity systems</strong></strong>, <strong><strong class="textBold">mTLS</strong></strong>, or identity-based networking in distributed systems.</li> <li value="7">Strong architectural judgment with the ability to balance <strong><strong class="textBold">security, usability, and performance</strong></strong>.</li> <li value="8">Demonstrated ability to operate at a <strong><strong class="textBold">Senior Staff</strong></strong> level by setting direction, influencing across org boundaries, and leading large-scale initiatives.</li> <li value="9">Nice to have: experience in <strong><strong class="textBold">AI infrastructure</strong></strong>, <strong><strong class="textBold">high-performance computing</strong></strong>, or <strong><strong class="textBold">GPU-based environments</strong></strong>.</li> <li value="10">Nice to have: familiarity with <strong><strong class="textBold">multi-tenant system design</strong></strong>, <strong><strong class="textBold">zero trust implementations</strong></strong>, developer-facing security systems, or identity support for compliance frameworks such as <strong><strong class="textBold">SOC2</strong></strong> and <strong><strong class="textBold">ISO</strong></strong>.</li> </ul> <h2>What we can offer you</h2> <p>At Nscale, you'll find a collaborative, supportive, and innovative environment where your contributions spark real impact. We're building something extraordinary, and we want you at the core.</p> <p>Highly competitive US compensation package (base + bonus + equity), with performance reviews every 12 months. 🚀</p> <p>Join one of the fastest-growing AI infrastructure companies — your chance to directly shape how global AI capacity is planned and deployed. ✨</p> <p>Expect a dynamic progression plan tailored to your ambitions. Grow by leading critical cross-functional initiatives and shaping capital strategy — always with our full support.</p> <p>Human-First Flexibility: We treat you as humans first. 🫶🏽 Our flexible workplace trusts Nscalers to deliver, giving you the autonomy to shape your day around life's moments.</p> <h2>Equal Opportunities Statement</h2> <p>We strongly encourage applications from people of colour, the LGBTQ+ community, people with disabilities, neurodivergent people, parents, carers, and people from lower socio-economic backgrounds.</p> <p>If there’s anything we can do to accommodate your specific situation, please let us know.</p> <p>The responsibilities outlined in this job description are not exhaustive and are intended to provide a general overview of the position. The employee may be required to perform additional duties, tasks, and responsibilities as assigned by management, consistent with the skills and qualifications required for the role.</p> <p>For information on how Nscale handles candidate personal data, please see our Employee &amp; Candidate Privacy Notice: Here.</p> <h2>Salary Range</h2> <p>The range below reflects the base salary for the position. Actual compensation may vary based on job-related factors such as skill set, experience, education, and location. In addition to base salary, this role may be eligible for bonus, equity, and/or commission programs. Nscale may offer a competitive benefits package including medical, dental, vision, flexible paid time off, parental leave, and retirement plan participation.</p><div class="content-pay-transparency"><div class="pay-input"><div class="description"><p>The range below reflects the base salary for the position. Actual compensation may vary based on job-related factors such as skill set, experience, education, and location. In addition to base salary, this role may be eligible for bonus, equity, and/or commission programs. Nscale may offer a competitive benefits package including medical, dental, vision, flexible paid time off, parental leave, and retirement plan participation.</p></div><div class="title">Salary Range</div><div class="pay-range"><span>$175,000</span><span class="divider">&mdash;</span><span>$225,000 USD</span></div></div></div><div class="content-conclusion"><p><em>For information on how Nscale handles candidate personal data, please see our Employee &amp; Candidate Privacy Notice:&nbsp;<a href="https://drive.google.com/file/d/1QK5Yg04WHD9K9IAtJgQWubJZC9oLvatK/view?usp=sharing" target="_blank" data-saferedirecturl="https://www.google.com/url?q=https://drive.google.com/file/d/1QK5Yg04WHD9K9IAtJgQWubJZC9oLvatK/view?usp%3Dsharing&amp;source=gmail&amp;ust=1765375172804000&amp;usg=AOvVaw2Ncte4rmlGl8OKuFuDgDtx">Here.</a></em></p></div>