Lead Security Engineer

Job Description

About Tekion:

Positively disrupting an industry that has not seen any innovation in over 50 years, Tekion has challenged the paradigm with the first and fastest cloud-native automotive platform that includes the revolutionary Automotive Retail Cloud (ARC) for retailers, Automotive Enterprise Cloud (AEC) for manufacturers and other large automotive enterprises and Automotive Partner Cloud (APC) for technology and industry partners. Tekion connects the entire spectrum of the automotive retail ecosystem through one seamless platform. The transformative platform uses cutting-edge technology, big data, machine learning, and AI to seamlessly bring together OEMs, retailers/dealers and consumers. With its highly configurable integration and greater customer engagement capabilities, Tekion is enabling the best automotive retail experiences ever. Tekion employs close to 3,000 people across North America, Asia and Europe.

The IAM Engineer is responsible for designing, implementing, and managing Tekion's identity and access management systems to ensure secure and compliant access across AWS and Azure environments. This role plays a critical part in safeguarding sensitive data and enabling secure collaboration across teams and platforms.

Responsibilities & Deliverables:

- Design and deploy scalable IAM solutions that align with Tekion's security policies and business needs
- Implement authentication and authorization mechanisms across cloud platforms (e.g., AWS, Azure) and enterprise applications.
- Maintain and enforce user, group, and role assignment policies, including access reviews and entitlement management.
- Integrate IAM workflows with HRIS and ITSM systems to ensure seamless identity lifecycle operations.
- Work closely with DevOps, IT, and application teams to embed IAM controls into CI/CD pipelines and cloud-native services
- Lead the integration of new internal applications and services into SSO and IAM platforms, collaborating with cross-functional teams to ensure secure and efficient onboarding.
- Conduct regular access audits and generate reports to support compliance with ISO, SOC 2, GDPR etc
- Maintain documentation of IAM policies, procedures, and configurations.
- Provide technical support for IAM-related issues, including access failures, role misconfigurations, and policy conflicts
- Monitor IAM system performance and implement optimizations as needed.
- Develop and manage documentation, knowledge bases, operational procedures, and user training related to identity management.
- Stay current with emerging IAM technologies and threat landscapes.

Qualifications:

- Bachelor's or Master's degree in Computer Science, Cybersecurity, or related field.
- 7+ years of experience in IAM engineering or related security roles.
- Proficiency in IAM platforms such as Okta, Azure AD, AWS IAM.
- Experience with IAM automation, scripting, and API integrations.
- Strong understanding of RBAC, ABAC, SAML, OAuth, OpenID Connect and directory services (Active Directory, Azure AD).
- Strong understanding of regulatory and compliance requirements (e.g., SOX, ISO, GDPR) as they pertain to identity and access management.
- Certifications such as CIAM, CISSP, or Microsoft/AWS Security Specialty preferred.

Tekion is proud to be an Equal Employment Opportunity employer. We do not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, victim of violence or having a family member who is a victim of violence, the intersectionality of two or more protected categories, or other applicable legally protected characteristics.

For more information on our privacy practices, please refer to our Applicant Privacy Notice here.