Job Details

Figma is growing our team of passionate creatives and builders on a mission to make design accessible to all. Figma's platform helps teams bring ideas to life—whether you're brainstorming, creating a prototype, translating designs into code, or iterating with AI.

As a member of the IT Engineering team, you will collaborate closely with IT, Security, and other multi-functional partners to develop, handle, and secure Figma's internal IT services. This role has a strong emphasis on Identity & Access Management (IAM), Identity Governance, and GitOps-driven automation, while also supporting endpoint management and SaaS platforms used daily by Figmates.

Our team owns and supports crucial services such as Okta, Google Workspace, and Slack, as well as backend solutions including Jamf, Okta Workflows, and Terraform-based infrastructure. You'll help scale and automate these systems to ensure security, compliance, and a seamless employee experience.

This is a full-time role that can be held from one of our US hubs or remotely in the United States.

What you'll do at Figma:

• Be responsible for the ongoing management and optimization of the Okta Identity and Access Management platform, including advanced configurations and lifecycle policies
• Build, develop, and maintain IAM workflows and integrations using Okta Workflows, APIs, or custom code to automate repetitive and manual tasks
• Define and implement Identity Governance practices (RBAC, ABAC, access reviews, device trust policies) to strengthen Figma's security posture
• Assist in the management and maintenance of our macOS endpoint infrastructure, ensuring efficient performance and security
• Deploy and handle systems via GitOps practices, using GitHub, Terraform, YAML, or similar tooling
• Collaborate with Security and IT Ops to ensure endpoints and SaaS integrations align with company policies and compliance standards
• Build and maintain documentation and runbooks for supported applications, processes, and training materials for internal employees and IT staff

We'd love to hear from you if you have:

• 3+ years of experience managing Okta Identity Engine and Okta Workflows
• Proven experience with GitOps/configuration as code (GitHub, Terraform)
• In-depth knowledge of identity and access management concepts and practices
• Knowledge of device trust and zero trust security models
• Knowledge of macOS endpoint management (Jamf Pro or similar)
• Good communication and interpersonal skills; able to work cross-functionally with Security, Ops, and Engineering teams

Figma offers a competitive package of benefits, including health, dental & vision, retirement with company contribution, parental leave & reproductive or family planning support, mental health & wellness benefits, generous PTO, company recharge days, a learning & development stipend, a work from home stipend, and cell phone reimbursement.

At Figma, one of our values is Grow as you go. We believe in hiring smart, curious people who are excited to learn and develop their skills. If you're excited about this role but your past experience doesn't align perfectly with the points outlined in the job description, we encourage you to apply anyways.

Figma is an equal opportunity workplace - we are dedicated to equal employment opportunities regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity/expression, veteran status, or any other characteristic protected by law.

We will work to ensure individuals with disabilities are provided reasonable accommodation to apply for a role, participate in the interview process, perform essential job functions, and receive other benefits and privileges of employment.