openashbyhqa16z
Senior Security Engineer, Identity & Access Management
Valon Labs
LocationRemote
WorkplaceRemote
EmploymentFullTime
Posted2026-05-14T22:30:02.148+00:00
Last observed2026-06-16 14:52:49.723630
Job ida16z-valon-labs:ashbyhq:7e06aa3c-8cdc-4b3d-ab0b-d82c8c2e4911
ABOUT THE COMPANY Valon is building the AI-native operating system for regulated finance, starting with mortgage servicing. We're a Series C company backed by a16z, transforming industries that others have written off as too complex to innovate. Rather than build on top of broken legacy systems, we took a different approach: we built and operate our own mortgage servicing business managing $110+ billion in loans. This wasn't the end goal, it was how we deeply understood the complexity needed to build software that actually works in regulated industries. The results speak for themselves. We've transformed mortgage servicing from a 0% margin business into 60%+ margins while dramatically improving customer experience. Major enterprise contracts are now deploying across the industry. ValonOS is our unified platform that makes every process structured and programmable and it is perfectly positioned for the AI era. When everything flows through one system with rich data, AI agents don't just automate tasks, they continuously improve entire operations. Mortgage servicing is just the beginning of our vision to transform regulated industries and beyond. SECURITY AT VALON Our customers entrust us with some of their most sensitive and personal financial information, and it is the ultimate mission of Valon’s Security team to ensure we have sound programs, processes, and automation in place to safeguard our customers’ data. The Security team protects the infrastructure and data for processing billions of dollars of mortgage loans. In addition to protecting Valon’s internal systems, the Security team partners closely with Product and Engineering to design and deliver secure, scalable, and trustworthy capabilities for ValonOS. As AI becomes central to how Valon builds and operates, our team is responsible for securing AI-powered systems and pipelines while also leveraging AI tools to optimize security and defense capabilities. We work cross-functionally across all teams at Valon to enable security throughout the organization. We engage with external security auditors, pentesting firms, and partners to continuously evaluate Valon’s security posture. Valon offices are located in New York City and San Francisco, but we fully support remote work! ABOUT THE ROLE We are seeking a skilled and experienced Senior Security Engineer, Identity & Access Management to join our team. In this role, you'll own the design, implementation, and operation of IAM systems for Valon’s enterprise identity stack that powers Valon's workforce, and support security for customer-facing authentication and authorization capabilities embedded in ValonOS. You'll be the connective tissue between IT, Engineering, and Security — ensuring every identity, human or machine, is governed consistently and securely. RESPONSIBILITIES - Design and support end-to-end lifecycle of workforce identity systems including identity automation, access management, and least-privilege enforcement across internal systems - Support design of secure identity design patterns for product teams building on ValonOS - Manage and evolve Valon's IdP in conjunction with IT including SSO integrations, MFA policies, conditional access rules, and directory synchronization - Define and enforce RBAC and group-based access policies for internal applications, cloud environments, and development tooling - Support privileged access management (PAM) for internal infrastructure in conjunction with Engineering teams - Design and build AI-assisted workflows that automate and accelerate core IAM operations - Evaluate AI risks across IAM pipelines, ensuring appropriate security controls around data exposure, prompt injection and other threats - Collaborate with Product, Engineering, Data, Compliance, Legal, and other teams to identify and drive mitigation for data security risks - Support other operational and on-call duties such as vulnerability management, regulatory compliance (SOC 2, CCPA, NYDFS, FTC), policy developm
This page is generated from the committed OpenOpps static snapshot. Use the source posting or apply link for the employer's current canonical posting state.