Software Engineer, Identity & Access Management

Hadrian - Manufacturing the Future Hadrian is building autonomous factories that help aerospace and defense companies manufacture rockets, satellites, jets, and ships up to 10x faster and up to 2x cheaper. By combining advanced software, robotics, and full-stack manufacturing, we are reinventing how America produces its most critical parts. We’re accelerating our mission with the launch of Factory 3 in Mesa, Arizona, a 290,000-square-foot facility creating 350 new jobs. We are expanding rapidly to support thousands of future hires, launching Hadrian Maritime to expand into naval production, and introducing a Factory-as-a-Service model that delivers complete systems instead of individual parts. Hadrian is backed by leading investors including T. Rowe Price, Lux Capital, Founders Fund, and Andreessen Horowitz, our fast-growing team is united around reindustrializing American manufacturing for the 21st century and beyond. The Role Hadrian's API Platform is how the outside world connects to our manufacturing systems. Every partner integration, every internal service, and every factory floor system that touches that platform depends on one thing being right: identity. Who is allowed in, what they can do, and how credentials are managed across a complex, multi-cloud, physically distributed environment. As Staff Software Engineer, Identity and Access Management, you will build the security foundation that the API Platform is built on. You will own authentication, authorization, and credential automation across cloud infrastructure, Kubernetes workloads, and factory floor systems — and you will work in close partnership with the API Platform PM to ensure that IAM capabilities are surfaced as first-class developer experiences, not bolted-on compliance requirements. This is not a supporting role. IAM is a product pillar here. You will own the technical layer end to end, set the direction for how it scales, and help define what secure-by-default looks like across everything Hadrian builds. What You'll Do Design and implement scalable authentication and authorization systems covering both human operators and machine identities across cloud and factory floor environments — serving as the security foundation for the API Platform Own Hadrian's authentication stack: SSO, MFA, OIDC/SAML integrations, and service-to-service auth across AWS, GCP, and future cloud environments Build fine-grained access control systems (RBAC/ABAC/ReBAC) that scale across internal engineering teams, factory systems, and external API partners Develop frameworks, APIs, and CLI tools that automate credential provisioning, rotation, and policy enforcement for both internal teams and external API consumers Build identity and access models for machine-to-machine communication across factory floor systems, Kubernetes workloads, and cloud services Partner with Security to ensure IAM systems meet compliance and audit requirements; troubleshoot complex identity and access issues across distributed systems Work with the API Platform PM to define how IAM capabilities are surfaced as developer-friendly product experiences — for internal engineers and external partners alike Build tooling, SDKs, and documentation that make it easy to integrate with IAM correctly and hard to do so incorrectly Set IAM standards across the engineering org and act as the domain expert on access-sensitive architecture decisions What We're Looking For 8–12+ years in software engineering, with 3+ years of focused experience in identity, authentication, or authorization systems at scale Deep, hands-on expertise in modern auth protocols: OAuth 2.0, OpenID Connect (OIDC), SAML, and SCIM Strong understanding of access control models — RBAC, ABAC, and ReBAC — and the ability to make sound architectural tradeoffs between them Experience designing IAM systems across multi-cloud environments (AWS, GCP, Azure) Security-first mindset: you understand threat modeling, risk assessment, and least-privilege principles, and you embed security throughout the SDLC Proficiency in Go, Python, or similar; track record of writing high-quality, maintainable code Ability to set technical direction independently, write clear design docs, and drive alignment across teams Comfort working alongside a PM counterpart — you can divide technical and product ownership clearly and collaborate effectively Bachelor's degree in Computer Science or related field, or equivalent experience What Will Set You Apart Experience building IAM systems that serve external developer ecosystems — not just internal users Experience building identity systems for non-human entities: service accounts, workload identity, machine certificates, Kubernetes service accounts Familiarity with policy-as-code frameworks (OPA, Casbin, or similar) Experience with zero-trust network architecture Hands-on experience with secrets management platforms (Vault or equivalent) at scale Prior experience in aerospace, defense, or manufacturing environments with ITAR or export control considerations Experience working alongside a PM on a developer-facing platform product Growth & Trajectory This is a founding role with a clear path upward. As Hadrian's API Platform scales and the IAM function grows in complexity — more factory locations, more partners, more systems — so does the scope of this role. The natural trajectory leads toward technical lead or architect of a broader Security and Identity platform org, with the potential to grow a team around you. Compensation For this role, the target salary range is $192,000-$273,500 , plus offers equity. This is the lowest to highest salary we reasonably and in good faith believe we would pay for this role at the time of this posting. We may ultimately pay more or less than the posted range, and the range may be modified in the future. An employee's pay position within the salary range will be based on several factors, including, but not limited to, relevant education, qualifications, certifications, experience, skills, geographic location, performance, and business or organizational needs. Benefits for Full-time Employees Medical, dental, vision, and life insurance plans for employees 401k Relocation support may be provided for certain situations, based on business need. Flexible vacation policy ITAR Requirements To conform to U.S. Government space technology export regulations, including the International Traffic in Arms Regulations (ITAR) you must be a U.S. citizen, lawful permanent resident of the U.S., protected individual as defined by 8 U.S.C. 1324b(a)(3), or eligible to obtain the required authorizations from the U.S. Department of State. Learn more about the ITAR here . Hadrian Is An Equal Opportunity Employer It is the Company’s policy to provide equal employment opportunity for all applicants and employees. The Company does not unlawfully discriminate on the basis of race inclusive of traits historically associated with race (including, but not limited to, hair texture and protective hairstyles, such as braids, locks and twists), color, religion, sex (including pregnancy, childbirth, or related medical conditions), gender identity, gender expression, transgender status, national origin (including, in California, possession of a drivers license), ancestry, citizenship, age, physical or mental disability, height or weight, medical condition, family care status, military or veteran status, marital status, domestic partner status, sexual orientation, genetic information, exercise of reproductive rights, any other basis protected by local, state, or federal laws, or any combination of the above characteristics. When necessary, the Company also makes reasonable accommodations for disabled candidates and employees, including for candidates or employees who are disabled by pregnancy, childbirth, or related medical conditions.

{
  "content_hash": "2f62b10631fde980e4d165162f642eb5432ca078274b29fa6114d708469224a7",
  "source_hash": "2f1bb70d268344a396edaaacc77d7af7ee820c2eb37919a3c3f6da0157568c48",
  "last_changed_at": "2026-05-29T05:41:35.213Z",
  "active_status": "active"
}

{
  "language": "en",
  "location": {
    "raw": "Los Angeles, CA",
    "city": "Los Angeles",
    "region": "CA",
    "country": "United States",
    "is_remote": false,
    "confidence": 0.9
  },
  "salary_max": null,
  "salary_min": null,
  "inferred_at": "2026-06-06T19:35:35.980Z",
  "launch_scope": {
    "reason": "english_us_canada",
    "included": true,
    "language": "en",
    "location": {
      "raw": "Los Angeles, CA",
      "city": "Los Angeles",
      "region": "CA",
      "country": "United States",
      "is_remote": false,
      "confidence": 0.9
    },
    "countries": [
      "United States"
    ]
  },
  "remote_policy": null,
  "salary_period": null,
  "workplace_type": "on_site",
  "salary_currency": null
}

{}

{
  "id": "7cd509b3-5e8b-476b-9a36-8293671a2454",
  "team": "Automation & Enablement, Infrastructure, IT & Security",
  "title": "Software Engineer, Identity & Access Management",
  "jobUrl": "https://jobs.ashbyhq.com/hadrian-automation/7cd509b3-5e8b-476b-9a36-8293671a2454",
  "address": null,
  "applyUrl": "https://jobs.ashbyhq.com/hadrian-automation/7cd509b3-5e8b-476b-9a36-8293671a2454/application",
  "isListed": true,
  "isRemote": false,
  "location": "Los Angeles, CA",
  "updatedAt": null,
  "apiVersion": "ashby-non-user-graphql-v1",
  "department": "Automation & Enablement",
  "publishedAt": null,
  "workplaceType": "OnSite",
  "employmentType": "FullTime",
  "secondaryLocations": []
}