Client Platform Engineer, AI & Automation

Job summary

As a Client Platform Engineer, you will connect IT and Engineering for AI tools and automation at Nextdoor. You will manage IT platforms to ensure AI tools are safe and scalable, handling identity and access, overseeing governance and reviews for new agents and connectors, tracking usage, and managing costs and licenses. You will collaborate with Business Technology, Engineering, Security, and Finance to create processes for launching AI tools quickly while adhering to IT guidelines.

Qualifications

• 5+ years in IT engineering, client platform engineering, or IAM-focused security engineering, with clear ownership of production identity and access systems.
• Ability to perform at an advanced level in the domain.
• Deep hands-on Okta administration experience, including SSO/SAML/OIDC, SCIM, group rules, sign-on policies, and access certification.
• Strong understanding of audit and SOX implications.
• Working knowledge of OAuth 2.0, OIDC, and service account or workload identity patterns across Google Cloud and AWS.
• Ability to identify anti-patterns (e.g., domain-wide delegation, over-scoped service account keys) before they reach production.
• Comfortable writing scripts to automate IT operations in Python, Bash, or similar.
• Experience operating CI/CD or scheduled-job patterns (GitHub Actions, cron) for IT automation.
• Hands-on experience with AI development tools (Claude, GitHub Copilot, LangChain, etc.) as a practitioner.
• Familiarity with at least one observability platform, with Datadog preferred.
• Experience building dashboards, alerts, and ingestion pipelines from third-party APIs.
• Strong written communication and ability to author internal standards, runbooks, and review documentation.
• Direct experience with Claude Enterprise, GitHub Copilot, Cursor, or comparable AI tooling deployed at enterprise scale, including license and seat governance (Preferred).
• Working knowledge of MCP (Model Context Protocol), agent integration patterns, or comparable agent-to-tool connector frameworks (Preferred).
• Background working alongside Engineering on shared platform tooling, with the ability to operate at the boundary of IT and Engineering ownership (Preferred).
• Experience with Jamf Pro and macOS endpoint management (Preferred).
• Prior involvement in SOX access certification or quarterly UAR processes (Preferred).
• Experience evaluating SaaS vendors and MCP or connector marketplaces for security posture, data flow, and supply-chain risk (Bonus).
• Experience with AI governance frameworks (NIST AI RMF, ISO 42001, EU AI Act) (Bonus).
• Familiarity with Workato, Tray.io, Okta Workflows, or other iPaaS platforms (Bonus).

Responsibilities

• Design and operate identity, access, and credential lifecycle for AI agents, including non-human and user-delegated identities in Okta, OAuth 2.0, and OIDC scope minimization.
• Establish canonical authentication patterns (user OAuth, service accounts, workload identity federation) aligned with Nextdoor's Network and AV Standards.
• Build and run review processes for AI agents and connectors, covering pre-production review of tool surfaces, data scopes, and blast radius.
• Conduct intake review for new MCP servers and third-party connectors, including vendor diligence, OAuth scope approval, and hosted vs. self-hosted decisions.
• Develop the underlying policy framework for registration, data classification, and human-in-the-loop requirements.
• Maintain a centralized registry of AI agents and tooling deployed across Nextdoor.
• Own associated telemetry, including Datadog dashboards, vendor analytics ingestion (e.g., Anthropic Enterprise Analytics API), and recurring department-level adoption reporting.
• Manage seat governance and cost controls across Nextdoor's AI tool portfolio (Claude Enterprise, Cursor, Copilot, and emerging tools).
• Implement per-user and per-org spend caps, multi-tenant license allocation, quarterly access reconciliation against Okta, and monthly budget reviews.
• Participate in in-person Nextdoor events such as trainings, off-sites, volunteer days, and team building exercises.
• Build in-person relationships with team members and contribute to Nextdoor's company culture.

Skills

Relocation