Lead modernization of identity stack as technical cornerstone of Identity & Access pod, focusing on Non-Human Identity (NHI), AI agent governance, Okta/Workday integration, AWS IAM, OPA/Rego policies, and zero-trust solutions in a HIPAA-regulated healthcare environment. Requires 5+ years IAM experience with deep Okta and cloud expertise.
Salary not listed
Hybrid5+ YOESecurity Engineering
About the role
Responsibilities
Architect and manage HR-driven provisioning by integrating Okta with Workday (Workday-as-a-Master) to automate complex attribute mapping and secure JML lifecycles.
Engineer and deploy robust SSO (SAML 2.0, OIDC, OAuth 2.0) and SCIM provisioning for major enterprise applications, particularly Salesforce and Google Workspace.
Design least-privilege policies and manage AWS Identity Security, including cross-account role assumption, identity federation via Okta, and AWS SSO (Identity Center).
Implement decoupled authorization for cloud-native applications utilizing Open Policy Agent (OPA) and authoring strict access policies in Rego.
Secure autonomous AI workflows by assigning distinct identities to AI models, governing their API access, and applying strict sandboxing.
Own the lifecycle for traditional non-human identities (service accounts, OAuth tokens, API keys, X.509 certificates) to prevent secret sprawl.
Implement zero-trust device posture checks by integrating MDM telemetry and device certificates with Okta for macOS and Windows endpoints.
5+ years of hands-on experience engineering, deploying, and managing enterprise IAM environments with deep Okta expertise.
Strong hands-on background in AWS IAM, OPA, Rego, and designing zero-trust cloud architectures.
Proven track record discovering, managing, and rotating machine identities, with a forward-looking approach to securing programmatic AI workflows.
Advanced experience integrating core HRIS platforms (Workday) with Identity Providers, and managing complex fleet authentication (macOS/Windows).
Solid understanding of access control principles in highly regulated sectors (e.g., Healthcare, HIPAA, Privacy), including continuous access reviews and audit logging.
Passion for maintaining detailed documentation and translating complex identity concepts into scalable, automated solutions.
Nice-to-Haves
Okta, AWS or SANS relevant Identity certifications.
Deep experience mapping identity controls directly to ISO, SOC2, HITRUST, and specific privacy regulation frameworks.
Senior Software Engineer building Snowflake's core identity, access management, and AI-native security infrastructure for the Data Cloud. Design secure agent workflows, IAM systems, encryption, and policy enforcement tooling at massive scale.
Lead the Secure Frameworks Research team at Anthropic to build high-leverage security libraries and frameworks (cryptographic, serialization, authorization) that prevent vulnerabilities in AI model development. Manage engineers, drive adoption across teams, and balance security rigor with development velocity; requires 5+ years security/software engineering and 3+ years managing security teams.
405k – 485k
Hybrid8+ YOESecurity Engineering
Founding Security Engineer
ForusNew York, NY
Founding Security Engineer owning cloud (AWS/GCP), product, AI data, detection/response, and compliance (HIPAA/SOC 2) for a healthcare AI platform handling PHI at scale. Requires 7+ years security engineering on strong SWE foundation, hands-on IaC, and multi-domain expertise.
Salary not listed
On-site7+ YOESecurity Engineering
Manager, Supply Chain Protection & Loss Intelligence
FlexportMiami, FL
Manager responsible for global supply chain protection, loss prevention, and physical security programs at Flexport. Oversees 50+ security officers, electronic systems (CCTV/access control), data-driven investigations, policy/SOP authoring, and new facility stand-up across offices and fulfillment centers.
Salary not listed
On-site8+ YOESecurity Engineering
Physical Security Manager
CrusoeDallas, TX
Lead day-to-day operations of Crusoe's 24/7 Global Security Operations Center (GSOC), overseeing monitoring, incident response, intelligence, and crisis management to protect facilities and infrastructure. Requires experience building high-performing teams, driving operational maturity, and ensuring compliance in a fast-growing environment.