Job Description
Job DescriptionWe are looking for a technically deep Engineering Manager to lead our Security Product Engineering team. This team owns the authentication and authorization services that underpin the entire ActiveCampaign platform — the systems that determine who gets in, what they can do, and how we prove it. You will also drive the consolidation of identity services onto a centralized platform and mature the broader platform security. This is a high-impact, player-coach role. You will lead a small, experienced team of 4–5 engineers while staying close enough to the code and architecture to make real technical decisions. You will directly report to our Head of Global Security, Risk and Compliance and partner closely with Platform Engineering, Product, and other security functions to translate complex security requirements into seamless, centralized identity services. You aren’t just approving decisions; you are deep in the architecture, guiding a senior team to eliminate technical debt and build a hardened, "security-by-default" future that directly enables our company’s global trajectory.On a typical day, you might:
- Lead and develop a team of senior and staff-level engineers — provide hands-on technical mentorship, clear prioritization, and career development that keeps strong ICs engaged.
- Spearhead the migration and standardization of identity services onto a centralized platform, partnering with Platform Engineering on the long-term architecture.
- Drive operational excellence by hardening the existing identity stack, reducing incident frequency, and building the observability and rigor necessary to run mission-critical infrastructure.
- Participate in architectural and code reviews — you should be able to evaluate an identity flow, review a platform configuration, or debug a token validation issue alongside your engineers.
- Partner with engineering teams across the organization to improve their integration experience with identity services — better documentation, clearer APIs, faster onboarding.
- Collaborate with security and compliance teams to ensure identity architecture supports regulatory requirements and fraud prevention initiatives.
- Shape the security culture by moving the team toward broader platform security concerns, establishing secure development patterns that allow other engineering teams to build with confidence.
- Represent the team in incident reviews and cross-functional planning, translating high-level security trade-offs for non-technical audiences without losing the underlying substance.
The ideal candidate will bring:
- 5+ years of hands-on software engineering experience with significant depth in identity, authentication, or authorization systems—you have built and operated these systems at scale.
- 3+ years of engineering management experience leading engineers (not just tech-leading projects) — you know how to run effective 1:1s, give hard feedback, and create clarity in ambiguous environments.
- Hands-on, current technical skills — you can read and review code, evaluate architecture decisions, and credibly challenge or support your team's technical direction.
- Proven success in system consolidation, ideally having led the migration from legacy or bespoke auth implementations to standardized, centralized platforms.
- Strong understanding of modern identity protocols and standards (authentication, authorization, federation, token-based architectures).
- Strategic vision to see beyond identity, with a background in infrastructure hardening and secure development lifecycles (SDLC).
- Strong communication skills — you can translate identity and security concepts for product managers, platform engineers, and executives without losing the technical substance.
Bonus:
- Experience working in a SaaS environment with multi-tenant identity concerns and the security implications that come with them.
- Familiarity with fraud-adjacent identity concerns: account takeover prevention, credential stuffing mitigation, adaptive authentication.
- Background in platform or application security beyond identity — secure development lifecycle, infrastructure hardening.
- You've built or significantly improved developer-facing documentation, SDKs, or integration guides for identity services.
- Experience operating in a security organization that functions as an engineering team, not a compliance checkpoint.
Compensation details listed in this posting reflect the base rate only and do not include bonus, equity, sales incentives or other role specific compensation that the role may be eligible for. ActiveCampaign believes in and is committed to equitable compensation practices. The salary range provided above is a good faith estimate of the pay range determined by the location associated with the job posting. The actual salary depends on a candidate’s skills, experience, and work location.About ActiveCampaign:ActiveCampaign is the autonomous marketing platform for people at the heart of the action. It empowers teams to automate their campaigns with AI agents that imagine, activate, and validate–freeing them from step-by-step workflows and unlocking limitless ways to orchestrate their marketing.
With AI, goal-based automation, and 1,000+ app integrations, agencies, marketers, and owners can build cross-channel campaigns in minutes–fine-tuned with billions of data points to drive real results for their unique business.
ActiveCampaign is the trusted choice to help businesses unlock a new world of boundless opportunities–where ideas become impact and potential turns into real results.
As a global multicultural company, we are proud of our inclusive culture which embraces diverse voices, backgrounds, and perspectives. We don’t just celebrate our differences, we believe our diversity is what empowers our innovation and success. You can find out more about our DEI initiatives here.
Perks and benefits:At ActiveCampaign, we prioritize employees’ well-being and professional growth by cultivating a culture centered on collaboration and innovation. When you join our team, you’ll not only have the opportunity to make a significant impact, but also enjoy a range of benefits tailored to support your personal and career development.
Here are some of the benefits we offer:-Comprehensive Health & Wellness: Top-tier benefits package that includes a fully-covered High Deductible Health Plan (HDHP), complimentary access to telehealth services, and a free subscription to Calm.-Growth & Development: Access to LinkedIn Learning, professional development programs, and career growth opportunities in a fast-growing organization.-Generous Paid Time Off: Recharge and take the time you need to maintain work-life balance with open PTO. -Total Rewards: Generous 401(k) matching with immediate vesting, quarterly perks with commuter and lunch benefits for hub based employees or a stipend for remote workers, and a four-week paid sabbatical with bonus after five years.-Collaborative Culture: Work alongside brilliant, passionate colleagues in an environment that values innovation, teamwork, and mutual support.
ActiveCampaign is an equal opportunity employer. We recruit, hire, pay, grow and promote no matter of gender, race, color, sexual orientation, religion, age, protected veteran status, physical and mental abilities, or any other identities protected by law.
Our Employee Resource Groups (ERGs) strive to foster a diverse inclusive environment by supporting each other, building a strong sense of belonging, and creating opportunities for mentorship and professional growth for their members.
We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.