Design and implement secure identity automation across a complex, global environment with diverse identity providers. This role plays a central part in shaping the organization's IAM strategy, ensuring systems are resilient, scalable, and aligned with compliance standards.
Key Responsibilities
- Develop and refine solution designs for identity automation, collaborating with stakeholders to ensure technical accuracy and operational feasibility
- Build and maintain identity governance and administration (IGA) implementations to support access control and policy enforcement
- Create automated testing frameworks to validate identity system behaviors and detection capabilities
- Develop tooling for continuous policy assessment, posture reporting, and compliance monitoring
- Integrate identity controls into Infrastructure as Code workflows to ensure consistent deployment
- Construct CI/CD pipelines for IAM solutions and supporting tooling
- Provide technical leadership in automating interactions with security platforms and services
- Stay current with evolving security technologies and recommend improvements to IAM practices
- Support audits and compliance initiatives by designing systems with certification requirements in mind
- Work closely with engineering teams on architecture reviews, security assessments, and process improvements
Required Qualifications
- Proven experience in DevSecOps principles and secure development lifecycle practices
- Proficiency in Python or another high-level programming language
- Familiarity with DevOps tools including Terraform, shell scripting, and CI/CD pipelines
- Hands-on experience with privileged access management platforms such as CyberArk, SailPoint, Okta, Delinea, or Clutch
- Working knowledge of secrets management systems like HCP Vault
- Intermediate expertise with AWS IAM and AWS Identity Center (IDC)
- Understanding of Azure Entra ID and cloud identity patterns
- Background in security roles, preferably within financial services or technology sectors
- Strong collaboration skills with architects, engineers, and business stakeholders
- Deep understanding of identity protocols including LDAP, SAML, OAuth, and OpenID Connect
- Experience with identity governance platforms and compliance frameworks such as PCI-DSS, ISO 27001, and NIST
- Practical knowledge of cloud IAM best practices across AWS, Azure, or equivalent platforms
Preferred Qualifications
- Industry certifications such as CISSP, AWS Security Specialty, Azure SC-300, or Kubernetes-related credentials
Work Environment
This role supports remote work and operates within a global context, allowing flexibility in location. The culture emphasizes ownership, customer focus, and mutual respect, with a commitment to inclusion and work-life balance. Employee resource groups, social engagement, and learning opportunities support professional growth and team connection.
