Principal Privacy Engineer

Company Overview

is the next-generation digital identity wallet that simplifies how individuals securely prove their identity online. Consumers can verify their identity with  once and seamlessly login across websites without having to create a new login and verify their identity again. Over 152 million users experience streamlined login and identity verification with  at 20 federal agencies, 45 state government agencies, and 70+ healthcare organizations.

More than 600+ consumer brands use  to verify communities and user segments to honor service and build more authentic relationships. ’s technology meets the federal standards for consumer authentication set by the Commerce Department and is approved as a NIST 800-63-3 IAL2 / AAL2 credential service provider by the Kantara Initiative.  is committed to “No Identity Left Behind” to enable all people to have a secure digital identity.

To learn more, visit (Use the "Apply for this Job" box below)..

We are seeking a Privacy Engineer with deep expertise in Digital Identity to design and implement privacy-centric solutions across our digital platform - including facilitating data retention, anonymization, and conducting Privacy threshold and impact assessments, as well as providing technical product and engineering consultation. This role requires strong technical knowledge of identity protocols, privacy-enhancing technologies, and regulatory frameworks. You will help ensure that identity systems are aligned with global privacy laws and the NIST Digital Identity Guidelines (SP 800-63), emphasizing secure and privacy-respecting authentication, identity proofing, and federation.

This is an onsite position in one of our hub locations (Mountain View CA or McLean VA)

• Design and implement privacy-preserving identity solutions including federated identity, decentralized identifiers (DIDs), and verifiable credentials.
• Integrate privacy-by-design into authentication, authorization, and identity federation workflows (e.g., OAuth2, OpenID Connect, SAML).
• Assist with conducting privacy impact assessments (PIAs) specifically related to identity and access management systems.
• Evaluate and deploy privacy-enhancing technologies (PETs) such as zero-knowledge proofs (ZKPs), secure multi-party computation (SMPC), and anonymization, pseudonymization, and data minimization methods.
• Develop and enforce technical standards for identity data minimization, encryption, pseudonymization, and secure storage.
• Collaborate with IAM and security engineering teams to enhance identity governance with strong privacy controls.
• Review architecture and code for identity systems to ensure compliance with privacy regulations (GDPR, CCPA, eIDAS, etc.).
• Monitor and assess threats to identity-related data and respond to incidents involving identity data exposure.
• Assist in managing privacy risk assessments and reviews for identity systems, including digital onboarding, credential issuance, and account recovery flows.
• Collaborate with security, IAM, Dev Ops, and compliance teams to build identity solutions that enforce Privacy-by-Design principles.
• Review identity system architecture and source code to ensure privacy and data protection controls are correctly implemented.
• Contribute to tooling for secure and automated DSAR (data subject access request) identity verification and privacy dashboards.
• Participate in incident response planning and investigations for identity-related security or privacy events.
• Map and enforce privacy principles (ISO/IEC 29100) including consent, purpose limitation, data minimization, and transparency in digital identity systems.
• Develop identity data lifecycle controls covering collection, processing, retention, and deletion per ISO/IEC and GDPR guidelines.
• Develop and implement solutions to ensure privacy policies are correctly implemented. The implementations should advance compliance with legal forms of data use as well as support business use of data.

• Bachelor’s or Master’s degree in Computer Science, Information Security, Engineering, or related technical field.
• 4+ years of technical experience in privacy engineering, IAM, or cybersecurity with…