Staff Product Manager, Identity & Access Management

About The Position

Requirements

• Hands-on identity depth
• Proven experience shipping identity and access systems end-to-end in production, with clear decision ownership
• Strong familiarity with modern authentication patterns, including MFA, passkeys/WebAuthn, session security, and account recovery design
• Working knowledge of OAuth 2.0 and OIDC.
• Builder mindset and execution
• Strong examples of building from scratch and then scaling, with real rollout discipline and measurable outcomes
• Strong judgment balancing security, user experience, and operational risk
• Comfortable in technical conversations and able to explain tradeoffs clearly to non-technical stakeholders
• Leadership behaviors
• High autonomy: you find problems and opportunities, form a point of view, and drive execution without waiting for perfect inputs or top-down direction
• Strong cross-functional leadership with Engineering, Security, Data, and other product teams
• AI proficiency (core)
• Uses AI tools in daily work to move faster and produce higher quality outputs (analysis, synthesis, PRDs/RFCs, experiment plans, incident or launch retros)
• Experience partnering with data science or ML engineers to ship model-driven or AI-assisted capabilities, with clear success metrics and monitoring
• Strong instincts around responsible use in a security-sensitive domain: quality, failure modes, guardrails, privacy and data handling, and human review where required

Nice To Haves

• SAML is a plus
• Experience with ATO investigations, fraud defenses, and incident response
• Prior experience as a software engineer, especially in security, infrastructure, or platform domains
• Experience improving device and risk signals, detection feedback loops, and operational tooling around account security

Responsibilities

• Own the strategy and execution for identity and account access across login, MFA, passkeys/WebAuthn, session management, and account recovery
• Drive measurable improvements across security and user outcomes, including login success, recovery success, conversion, ATO reduction, and reliability
• Lead 0 to 1 builds and 1 to 100 rollouts, including migrations from legacy flows with strong launch discipline, monitoring, and rollback plans
• Partner deeply with Engineering and Security on threat modeling and abuse cases, including recovery abuse, then turn those learnings into product and platform changes
• Build platform primitives, APIs, and shared components that other teams adopt, and drive adoption through documentation and enablement
• Own key authorization surfaces that matter to the platform today, such as admin access controls, roles, and permissions for internal tools, and auditing
• Make build vs buy decisions and lead vendor evaluations and integrations when needed, with a clear view of long-term operability and risk

Benefits

• Competitive pay
• Comprehensive healthcare benefits
• Equity
• Healthcare
• Dental
• Vision
• Life insurance
• 401(k) saving program
• Financial assistance for things like hybrid work
• Family planning
• Generous parental leave
• Flexible time-off policies
• Mental health and wellness resources
• Learning, development, and recognition programs
• Diversity, equity, and inclusion through ongoing initiatives and employee resource groups
• Volunteering program