Principal Engineering Manager, Identity & Access Management

Skip to Main Content Back Principal Engineering Manager, Identity & Access ManagementJOB_DESCRIPTION.SHARE.HTMLCAROUSEL_PARAGRAPHJOB_DESCRIPTION.SHARE.HTMLUnited StatesEngineeringExperienced ProfessionalSenior DirectorYes5489Full Timemail_outlineGet future jobs matching this searchLoginorRegister Job Description About GitHubGitHub is the world’s leading platform for agentic software development — powered by Copilot to build, scale, and deliver secure software. Over 180 million developers, including more than 90% of the Fortune 100 companies, use GitHub to collaborate, and more than 77,000 organisations have adopted GitHub Copilot. LocationsIn this role you can work from Remote, United States OverviewGitHub is looking for a Principal Engineering Manager to lead Identity & Access Management for GitHub’s workforce and production systems. Identity is foundational to GitHub’s regulatory commitments, cloud strategy, internal security model, and the trust boundaries that protect access to critical infrastructure. Getting it right is one of the highest-leverage things we can do to secure GitHub at scale.  You will lead the team responsible for GitHub’s IAM platform across identity lifecycle, entitlements, privileged access, identity federation, workforce identity providers, and secured administrative access patterns. These systems sit on the critical path for Hubber productivity and production security, and they must operate with high reliability, strong usability, and clear security guarantees.  This role requires both deep technical judgment and strong organizational leadership. You will partner across Security, Infrastructure, IT, Legal, Compliance, and Engineering teams to define strategy, build paved paths, improve operational maturity, and make least-privilege and just-in-time access the default across GitHub. You will lead engineers, create clarity in ambiguous spaces, and help the team deliver durable systems rather than one-off policy-driven solutions.  This is a unique opportunity to shape the identity foundation that protects GitHub’s internal systems today while preparing the company for a future where access decisions must be increasingly automated, policy-driven, and consumable by both humans and agents. ResponsibilitiesLead the engineering strategy and technical roadmap for GitHub’s Identity & Access Management service area, spanning identity lifecycle, entitlements, privileged access, identity federation, and workforce identity providers. Build and support high-performing engineering teams by coaching engineers, managing performance, growing technical leadership, and fostering a culture of ownership, inclusion, operational excellence, and learning. Drive multi-quarter IAM platform evolution, including programs such as identity provider migrations, privileged access maturation, least-privilege access models, access automation, and identity platform consolidation. Partner with Security, Infrastructure, IT, Compliance, Legal, and product engineering teams to define requirements, resolve dependencies, and ensure IAM systems meet GitHub’s security, regulatory, reliability, and usability needs. Make secure access the easiest path by investing in paved paths, automation, APIs, and agent-consumable interfaces rather than relying on manual processes or policy memos. Oversee reliability, supportability, and operational maturity for Tier-0 IAM services, including incident response, postmortems, observability, deployment safety, rollback strategies, and systemic reduction of operational toil. Guide teams in designing scalable, secure, observable systems that support least privilege, just-in-time access, strong authentication, authorization, auditability, and identity governance at GitHub scale. Create clarity across ambiguous security and infrastructure programs, balancing long-term correctness with pragmatic delivery, phased cutovers, parity validation, and safe migration strategies. Raise the engineering...