Staff Identity and Access Management Engineer

About Us

Diligent is the AI leader in governance, risk and compliance (GRC) SaaS solutions, helping more than 1 million users and 700,000 board members to clarify risk and elevate governance. The Diligent One Platform gives practitioners, the C-Suite and the board a consolidated view of their entire GRC practice so they can more effectively manage risk, build greater resilience and make better decisions, faster. 

At Diligent, we're building the future with people who think boldly and move fast.  Whether you're designing systems that leverage large language models or part of a team reimaging workflows with AI, you'll help us unlock entirely new ways of working and thinking.  Curiosity is in our DNA, we look for individuals willing to ask the big questions and experiment fearlessly - those who embrace change not as a challenge, but as an opportunity.  The future belongs to those who keep learning, and we are building it together.  At Diligent, you're not just building the future - you're an agent of positive change, joining a global community on a mission to make an impact.

Learn more at  or follow us on LinkedIn and Facebook

Position Overview:
Diligent is seeking a Staff IAM Engineer to strengthen the security and efficiency of our global identity and access management ecosystem. In this role, you will design, implement, and manage enterprise IAM solutions—including Okta, AWS IAM, BeyondTrust PAM, and IGA platforms—ensuring secure access for employees, partners, and applications. You will collaborate across IT, Security, HR, and Application teams to enforce identity policies, manage access lifecycles, and support regulatory compliance. This is a high-impact role offering the opportunity to shape IAM strategy, mentor engineers, and enhance Diligent's overall security posture.

Key Responsibilities:

Design & Implementation

• Architect, implement, and manage IAM solutions across cloud and on-premises environments.

• Develop automated provisioning and deprovisioning workflows using IGA platforms (e.g., SailPoint, Saviynt).

• Configure and maintain role-based access control, single sign-on (SSO), and multi-factor authentication (MFA).

Security & Compliance

• Develop and enforce IAM policies, standards, and procedures.

• Lead or support IAM-related audits, risk assessments, and compliance initiatives (SOC2, HIPAA, ISO

• Monitor IAM systems for security incidents and respond to threats.

• Conduct regular access reviews and audits to ensure adherence to policies.

Collaboration & Leadership

• Partner with InfoSec, SRE, HR, and application teams to ensure seamless identity lifecycle processes.

• Mentor junior IAM engineers and provide guidance to cross-functional stakeholders.

• Document IAM processes and best practices for accessibility and consistency.

• Provide training and awareness sessions on IAM best practices and security protocols.

Required Experience & Skills:

• 6+ years in Information Security roles, with 4+ years in IAM-focused positions.

• Bachelor's degree in Computer Science or related field, or equivalent experience.

• Proven experience with enterprise IAM solutions, including Okta (SSO, MFA, Access Gateway, Lifecycle Management) and AWS IAM services (including Identity Center).

• Hands-on experience with PAM solutions (BeyondTrust, CyberArk, or Delinea) and IGA platforms (SailPoint, Saviynt, Omada).

• Strong understanding of IAM protocols and standards: SAML, OIDC, OAuth 2.0, SCIM, LDAP.

• Experience with scripting/automation (Python, PowerShell, Terraform, CDK).

• Knowledge of security frameworks (NIST, ISO) and directory technologies (Active Directory, LDAP, virtual directories).

• Excellent problem-solving, communication, and project management skills.

• Ability to work collaboratively in cross-functional teams.

Preferred Experience & Certifications:

• Relevant certifications: Okta Certified Professional, AWS Certified Security – Specialty, CISSP, BeyondTrust, or IGA platform certifications.

• Familiarity with DevOps pipelines and IAM integration into CI/CD workflows.

• Experience with virtualized or containerized environments (Kubernetes) and securing service identities.

• Knowledge of compliance frameworks (SOC2, HIPAA, ISO 27001, NIST).

• Strong awareness of emerging IAM threats and advanced security practices.

What Diligent Offers You 

• Creativity is ingrained in our culture. We are innovative collaborators by nature. We thrive in exploring how things can be differently both in our internal processes and to help our clients
• We care about our people. Diligent offers a flexible work environment, global days of service, comprehensive health benefits, meeting free days, generous time off policy and wellness programs to name a few
• We have teams all over the world. We may be headquartered in New York City, but we have office hubs in Washington D.C., Vancouver, London, Galway, Budapest, Munich, Bengaluru, Singapore, and Sydney.
• Diversity is important to us. Growing, maintaining and promoting a diverse team is a top priority for us. We foster and encourage diversity through our Employee Resource Groups and provide access to resources and education to support the education of our team, facilitate dialogue, and foster understanding.

Diligent created the modern governance movement. Our world-changing idea is to empower leaders with the technology, insights and connections they need to drive greater impact and accountability – to lead with purpose. Our employees are passionate, smart, and creative people who not only want to help build the software company of the future, but who want to make the world a more sustainable, equitable and better place. 

Headquartered in New York, Diligent has offices in Washington D.C.,  London, Galway, Budapest, Vancouver, Bengaluru, Munich, Singapore and Sydney.   To foster strong collaboration and connection, this role will follow a hybrid work model. If you are within a commuting distance to one of our Diligent office locations, you will be expected to work onsite at least 50% of the time. We believe that in-person engagement helps drive innovation, teamwork, and a strong sense of community.

We are a drug free workplace. Diligent is proud to be an equal opportunity employer. We do not discriminate based on race, color, religious creed, sex, national origin, ancestry, citizenship status, pregnancy, childbirth, physical disability, mental disability, age, military status, protected veteran status, marital status, registered domestic partner or civil union status, gender (including sex stereotyping and gender identity or expression), medical condition (including, but not limited to, cancer related or HIV/AIDS related), genetic information, or sexual orientation in accordance with applicable federal, state and local laws. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. See also Diligent's EEO Policy and Know Your Rights. We are committed to providing reasonable accommodations for qualified individuals with disabilities and disabled veterans in our job application procedures. If you need assistance or an accommodation due to a disability, you may contact us at

To all recruitment agencies: Diligent does not accept unsolicited agency resumes. Please do not forward resumes to our jobs alias, Diligent employees or any other organization location. Diligent is not responsible for any fees related to unsolicited resumes.

---