IAM Security Engineer
Job Description
As an Identity and Access Management (IAM) Security Engineer, you will play a crucial role in designing, implementing, and managing identity and access management solutions. You will be responsible for safeguarding our systems, applications, and data by ensuring secure user access, authentication, and authorization mechanisms.
A Security engineers work may include reviewing reports from various sources (automated scanners, employee reports, logs, etc.), managing and configuring automated tooling (Terraform, Open Policy Agent, Workers, etc.), building controls to enforce policy (two factor authentication requirements, role based access, etc), creating tools, reports or platforms to support the team's goals.
Responsibilities
A Security engineers work may include reviewing reports from various sources (automated scanners, employee reports, logs, etc.), managing and configuring automated tooling (Terraform, Open Policy Agent, Workers, etc.), building controls to enforce policy (two factor authentication requirements, role based access, etc), creating tools, reports or platforms to support the team's goals.
Job Requirements
Security engineers take part in a wide variety of tasks and projects in the team. One individual is not expected to know everything, but a working knowledge in several of the following areas is required:
Strong understanding of identity federation (SAML, OAuth, OpenID Connect, etc.)
Experience with Identity and Access Management policy application and enforcement
Experience designing, implementing, and managing IAM solutions
Experience working with Open Policy Agent
Experience working in DevOps / DevSecOps
Experience working with configuration management tools like Terraform, Ansible, etc.
Experience working with Information Technology platforms and systems
Experience with SaaS security (Google Workspace, Salesforce, Workday, Atlassian, etc.)
Experience in configuration, troubleshooting and maintenance of network security infrastructure (Web content filtering, Firewall, IDS and DLP controls)
Experience with API gateways and API security
Experience with Zero Trust security
Experience in secure configuration of cloud-based storage and data management systems
Experience with secure configuration of containerized application platforms (e.g. Kubernetes)
