Staff Security Engineer, IAM
New
Flexible remote work environment within the United StatesFull-TimeStaff
Salary168,000 - 238,000 USD per year
Apply NowOpens the employer's application page
Job Details
- Experience
- 8+ years
- Required Skills
- PythonTerraform
Requirements
- 8+ years of experience in Identity and Access Management, including senior or staff-level ownership of enterprise-scale IAM systems.
- Deep expertise in Okta (Identity Engine, authentication policies, lifecycle management, and API automation).
- Strong experience with Terraform and infrastructure-as-code for identity platforms and cloud security systems.
- Hands-on experience securing or governing enterprise AI platforms and awareness of AI-related security risks such as prompt injection and data leakage.
- Strong programming and automation skills in Python, along with experience using identity automation or iPaaS tools.
- Experience with identity governance platforms and non-human identity management tools in complex enterprise environments.
- Solid understanding of compliance frameworks such as FedRAMP, SOC2, or SOX, including audit readiness and control implementation.
- Strong communication skills with proven ability to influence technical direction and lead cross-functional initiatives.
Responsibilities
- Lead the design and evolution of enterprise IAM systems, building scalable identity architectures that support workforce, service accounts, and AI agent identities across the organization.
- Define and implement advanced authentication and authorization frameworks, including conditional access, zero trust policies, device trust, and risk-based authentication.
- Drive the modernization of identity platforms by codifying IAM systems using Terraform and migrating workflows from manual processes to infrastructure-as-code.
- Own governance for non-human identities, including service accounts, API tokens, OAuth grants, certificates, and AI-driven agents.
- Architect and manage IAM integrations across enterprise AI tools, SaaS platforms, and internal systems, ensuring secure SSO, SCIM provisioning, and audit logging.
- Partner cross-functionally with Security, IT, Engineering, and Compliance teams to translate business needs into scalable technical identity solutions.
- Mentor engineers and contribute to design reviews, technical strategy, and best practices across identity and security engineering domains.
View Full Description & ApplyYou'll be redirected to the employer's site
