Senior Security Engineer

Job Description Scope - Provide critical support for our Identity Governance and Administration (IGA) program while advancing our MFA everywhere initiative. The IGA program is essential to meet our identity compliance controls and internal audit requirements, and enhanced MFA maturity directly impacts customer confidence in our security posture What you'll do: - Design, implement, and maintain Identity Governance and Administration (IGA) solutions, including user lifecycle management, access certification workflows, and automated provisioning/deprovisioning processes - Support mentorship of more junior team members and upleveling the overall technical skill of the identity and access management team - Identify strategic gaps in identity governance capabilities, analyzing current state and recommending improvements to IAM roadmaps and organizational identity strategy - Collaborate with cross-functional teams to integrate IAM best practices into application development, cloud deployments, and system architecture, ensuring secure identity integration across environments - Develop and maintain IAM automation tools for identity lifecycle management, access reviews, policy enforcement, and continuous identity risk assessment - Monitor and remediate identity-related vulnerabilities, excessive privileges, and policy violations from IGA platforms, identity scanners, and access analytics tools - Stay current with emerging IAM technologies, identity standards (SAML, OAuth, OIDC), and governance frameworks, influencing organizational identity architecture with industry best practices - Support the detection, investigation, and resolution of identity-related security incidents, including compromised accounts and unauthorized access events - Configure and optimize identity management platforms, directory services, privileged access management solutions, and identity analytics tools - Support compliance efforts (SOX, PCI-DSS, ISO 27001, SOC 2) by implementing identity controls, access governance reporting, and audit capabilities for regulatory requirements - Document IAM policies, identity governance processes, access standards, and identity architecture diagrams What we are looking for: - 5+ years of experience in Identity and Access Management, Security Engineering, or IAM-focused technical roles with hands-on IGA platform experience - Expert knowledge of Identity Governance and Administration platforms (e.g., SailPoint, Saviynt, Oracle IGM, Microsoft Identity Manager) and their implementation across enterprise environments - Deep understanding of IAM fundamentals including identity lifecycle management, access certification, role-based access control (RBAC), attribute-based access control (ABAC), and segregation of duties (SoD) enforcement - Strong experience with cloud IAM services across AWS, Azure, and GCP, including identity federation, directory integration, and cross-platform identity governance - Proficient with identity-related scripting and automation (e.g., PowerShell, Python, REST APIs) for IGA workflows, identity connectors, and access provisioning processes - Experience implementing IAM solutions in fast-paced or highly regulated environments (finance, healthcare, SaaS, etc.) with demonstrated ability to manage complex identity governance requirements and regulatory compliance at enterprise scale. - Preferred Qualifications: - Hands-on experience with any of the following: - Saviynt IGA Platform - IAM Lifecycle Automation - API Integrations (REST, SOAP, GraphQL, Webhooks) - AI-integrated workflows - Experience leading organization wide initiatives and driving security outcomes that empower business goals. Our Values If you want to know the heart of a company, take a look at their values. Ours unite us. They are what drive our success - and the success of our customers. Does your heart beat like ours Find out here: All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status.