New The Skills of Tomorrow: how AI-exposed is every skill in 2026? See the data →
EarnIn

Staff Systems Administrator

EarnIn
Apply →
hybrid staff full-time $221,900 - $271,200 Mountain View, US

First indexed 28 May 2026

Description

Join EarnIn's IT team to own enterprise identity architecture end-to-end and lead AI-enabled automation that replaces manual workflows with scalable, auditable systems.

The base salary range for this full-time position is $221,900 - $271,200, plus equity and benefits. Our salary ranges are determined by role, level, and location. This is a hybrid position in Mountain View (Headquarters) and will require in-office work 2 days a week.

Key responsibilities include:

Design and evolve EarnIn's enterprise identity model with Workday as the authoritative HRIS source and Okta as the central control plane. Drive zero-touch joiner/mover/leaver provisioning and own the program's First-Pass Automation Yield (FPAY) metric.

Architect privileged access management at scale: just-in-time elevation, time-bound exceptions, managed-device enforcement, and policy-driven entitlement reviews. Build and maintain the IAM Roles Catalog with expiring exceptions and clear ownership for every entitlement.

Lead federation strategy across AWS, Databricks, and the SaaS estate. Standardize entitlements via Identity-as-Code (Terraform) so every change is reviewable, diffable, and reversible.

Design a Continuous Access Evaluation pipeline -- manual-grant detection, quarterly evidence packaging, tamper-resistant sealing -- so audit readiness is a standing capability rather than a quarterly scramble.

Lead the design and rollout of agentic AI workflows that replace ticket-driven, human-in-the-loop IT processes: access intake, approvals routing, ownership reconciliation, helpdesk triage, and drift remediation.

Build reusable AI patterns, guardrails, and components (eval harnesses, tool-use scaffolds, prompt and policy libraries) that other EarnIn teams can adopt to AI-enable their own workflows. Partner with team leads across the company to turn working automations into a repeatable practice.

Set architectural direction for the IT team: tool selection, identity protocols (SAML, OAuth2, OIDC, SCIM), automation patterns, observability, and build-vs-buy decisions. Mentor IT engineers through code review, ADRs, runbooks, and design docs.

This listing is enriched and indexed by YubHub. To apply, use the employer's original posting: https://job-boards.greenhouse.io/earnin/jobs/7955177