Figma logo

IT Engineer

Figma
Full-time
Remote
United States
$122,000 - $238,000 USD yearly
Support

As a member of the IT Engineering team, you will collaborate closely with IT, Security, and other multi-functional partners to develop, handle, and secure Figma’s internal IT services. This role has a strong emphasis on Identity & Access Management (IAM), Identity Governance, and GitOps-driven automation, while also supporting endpoint management and SaaS platforms used daily by Figmates.

Our team owns and supports crucial services such as Okta, Google Workspace, and Slack, as well as backend solutions including Jamf, Okta Workflows, and Terraform-based infrastructure. You’ll help scale and automate these systems to ensure security, compliance, and a seamless employee experience.

This is a full time role that can be held from one of our US hubs or remotely in the United States.

What you'll do at Figma:

  • Be responsible for the ongoing management and optimization of the Okta Identity and Access Management platform, including advanced configurations and lifecycle policies
  • Build, develop, and maintain IAM workflows and integrations using Okta Workflows, APIs, or custom code to automate repetitive and manual tasks
  • Define and implement Identity Governance practices (RBAC, ABAC, access reviews, device trust policies) to strengthen Figma’s security posture
  • Assist in the management and maintenance of our macOS endpoint infrastructure, ensuring efficient performance and security
  • Deploy and handle systems via GitOps practices, using GitHub, Terraform, YAML, or similar tooling
  • Collaborate with Security and IT Ops to ensure endpoints and SaaS integrations align with company policies and compliance standards
  • Build and maintain documentation and runbooks for supported applications, processes, and training materials for internal employees and IT staff

We’d love to hear from you if you have:

  • 3+ years of experience managing Okta Identity Engine and Okta Workflows
  • Proven experience with GitOps/configuration as code (GitHub, Terraform)
  • In-depth knowledge of identity and access management concepts and practices
  • Knowledge of device trust and zero trust security models
  • Knowledge of macOS endpoint management (Jamf Pro or similar)
  • Good communication and interpersonal skills; able to work cross-functionally with Security, Ops, and Engineering teams
Apply now
Share this job
Twitter Facebook Linkedin Email