Apply on Employer Site

ID.me · 5 days ago

Principal Privacy Engineer

Mountain View, CA

Full-time

Onsite

Senior Level, Lead/Staff

$241K/yr - $279K/yr

4+ years exp

ID.me is a next-generation digital identity wallet that simplifies how individuals securely prove their identity online. The Principal Privacy Engineer will design and implement privacy-centric solutions across the digital platform, ensuring compliance with global privacy laws and enhancing identity governance.

Cloud Data ServicesCyber SecurityFraud DetectionIdentity ManagementPrivacySoftware

H1B Sponsor Likely

Responsibilities

Design and implement privacy-preserving identity solutions including federated identity, decentralized identifiers (DIDs), and verifiable credentials

Integrate privacy-by-design into authentication, authorization, and identity federation workflows (e.g., OAuth2, OpenID Connect, SAML)

Assist with conducting privacy impact assessments (PIAs) specifically related to identity and access management systems

Evaluate and deploy privacy-enhancing technologies (PETs) such as zero-knowledge proofs (ZKPs), secure multi-party computation (SMPC), and anonymization, pseudonymization, and data minimization methods

Develop and enforce technical standards for identity data minimization, encryption, pseudonymization, and secure storage

Collaborate with IAM and security engineering teams to enhance identity governance with strong privacy controls

Review architecture and code for identity systems to ensure compliance with privacy regulations (GDPR, CCPA, eIDAS, etc.)

Monitor and assess threats to identity-related data and respond to incidents involving identity data exposure

Assist in managing privacy risk assessments and reviews for identity systems, including digital onboarding, credential issuance, and account recovery flows

Collaborate with security, IAM, DevOps, and compliance teams to build identity solutions that enforce Privacy-by-Design principles

Review identity system architecture and source code to ensure privacy and data protection controls are correctly implemented

Contribute to tooling for secure and automated DSAR (data subject access request) identity verification and privacy dashboards

Participate in incident response planning and investigations for identity-related security or privacy events

Map and enforce privacy principles (ISO/IEC 29100) including consent, purpose limitation, data minimization, and transparency in digital identity systems

Develop identity data lifecycle controls covering collection, processing, retention, and deletion per ISO/IEC and GDPR guidelines

Develop and implement solutions to ensure privacy policies are correctly implemented. The implementations should advance compliance with legal forms of data use as well as support business use of data

Qualification

Privacy engineeringDigital identity protocolsNIST SP 800-63IdentityAccess managementPrivacy-enhancing technologiesProgramming skillsCloud-based identityPrivacy certificationsRisk assessmentUser autonomyCommunication skills

Required

Bachelor's or Master's degree in Computer Science, Information Security, Engineering, or related technical field

4+ years of technical experience in privacy engineering, IAM, or cybersecurity with a focus on digital identity

1-2 years - Deep familiarity with NIST SP 800-63, including IAL, AAL, and FAL requirements

4+ years of experience with identity protocols (OAuth2, OpenID Connect, SAML, SCIM), authentication systems, and modern IAM platforms

4+ years of strong programming/scripting skills (e.g., Python, Go, Java, Node.js)

4+ years resulting in proficiency in identity and data protection standards (e.g., FIDO2, TLS, JWT, PKI, encryption at rest and in transit)

Preferred

Experience with cloud-based identity (AWS IAM, Azure AD, Okta, Google Identity Platform)

Familiarity with decentralized identity technologies (e.g., Hyperledger Aries/Indy, Sovrin, Entra Verified ID)

Certifications: CIPT, CIPP, CISSP, GIAC GLEG, or other privacy/security credentials

Understanding of privacy threat modeling techniques such as LINDDUN

Benefits

Comprehensive medical, dental, vision

Health savings account

Flexible spending accounts (medical, limited purpose, dependent care, commuter benefit accounts)

Basic and voluntary life and AD&D insurance

401(k) with company match

Parental leave

Ability to participate in unlimited paid time off subject to the terms and conditions of the PTO policy, including 8 company wide holidays

Short and long-term disability insurance

Accident and critical illness insurance

Referral bonus policy

Employee assistance program

Pet insurance

Travel assistant program

Wellbeing and childcare discounts

Benefit advocates

Learning and development benefit

Company

ID.me

Glassdoor3.1

ID.me is a digital identity wallet that allows users to securely prove their identity online.

Founded in 2010

Mclean, Virginia, USA

1001-5000 employees

https://www.ID.me

H1B Sponsorship

ID.me has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Represents job field similar to this job

Trends of Total Sponsorships

2025 (12)

2024 (2)

Funding

Current Stage

Late Stage

Total Funding

$814.25M

Key Investors

Ribbit CapitalAres ManagementViking Global Investors

2025-09-03Series E· $65M

2025-01-30Debt Financing· $275M

2024-11-25Secondary Market· $67M

Leadership Team

Blake Hall

Co-Founder and CEO

Samantha Greenberg

Chief Financial Officer

Recent News

BiometricUpdate.com

US Treasury awards ID.me $1B five-year contract

2026-01-07

BiometricUpdate.com

ID.me scores big roll outs with FINRA and CMS

2025-12-18

PR Newswire

ID.me Announces Contract with CMS to Advance Access, Security, and User Experience on Medicare.gov

2025-12-16

Company data provided by crunchbase