Skip to content
SmithRxSmithRxLehi, UT

Senior Identity Engineer

Lead modernization of identity stack as technical cornerstone of Identity & Access pod, focusing on Non-Human Identity (NHI), AI agent governance, Okta/Workday integration, AWS IAM, OPA/Rego policies, and zero-trust solutions in a HIPAA-regulated healthcare environment. Requires 5+ years IAM experience with deep Okta and cloud expertise.

Salary not listed
Hybrid5+ YOESecurity Engineering

About the role

Responsibilities

  • Architect and manage HR-driven provisioning by integrating Okta with Workday (Workday-as-a-Master) to automate complex attribute mapping and secure JML lifecycles.
  • Engineer and deploy robust SSO (SAML 2.0, OIDC, OAuth 2.0) and SCIM provisioning for major enterprise applications, particularly Salesforce and Google Workspace.
  • Design least-privilege policies and manage AWS Identity Security, including cross-account role assumption, identity federation via Okta, and AWS SSO (Identity Center).
  • Implement decoupled authorization for cloud-native applications utilizing Open Policy Agent (OPA) and authoring strict access policies in Rego.
  • Secure autonomous AI workflows by assigning distinct identities to AI models, governing their API access, and applying strict sandboxing.
  • Own the lifecycle for traditional non-human identities (service accounts, OAuth tokens, API keys, X.509 certificates) to prevent secret sprawl.
  • Implement zero-trust device posture checks by integrating MDM telemetry and device certificates with Okta for macOS and Windows endpoints.
  • Mentor junior engineers, conduct architecture reviews, write documentation/runbooks, and elevate identity security maturity.

Requirements

  • 5+ years of hands-on experience engineering, deploying, and managing enterprise IAM environments with deep Okta expertise.
  • Strong hands-on background in AWS IAM, OPA, Rego, and designing zero-trust cloud architectures.
  • Proven track record discovering, managing, and rotating machine identities, with a forward-looking approach to securing programmatic AI workflows.
  • Advanced experience integrating core HRIS platforms (Workday) with Identity Providers, and managing complex fleet authentication (macOS/Windows).
  • Solid understanding of access control principles in highly regulated sectors (e.g., Healthcare, HIPAA, Privacy), including continuous access reviews and audit logging.
  • Passion for maintaining detailed documentation and translating complex identity concepts into scalable, automated solutions.

Nice-to-Haves

  • Okta, AWS or SANS relevant Identity certifications.
  • Deep experience mapping identity controls directly to ISO, SOC2, HITRUST, and specific privacy regulation frameworks.

Skills

OktaAws IamOpaRegoWorkdaySAMLOIDCOauth 2.0SCIMAws SsoZero TrustHIPAA
Snowflake

Senior Software Engineer

SnowflakeBellevue, WA +1

Senior Software Engineer building Snowflake's core identity, access management, and AI-native security infrastructure for the Data Cloud. Design secure agent workflows, IAM systems, encryption, and policy enforcement tooling at massive scale.

200k – 288k
Hybrid5+ YOESecurity Engineering
Anthropic

Software Security Engineering Manager, Secure Frameworks

AnthropicSan Francisco, CA +1

Lead the Secure Frameworks Research team at Anthropic to build high-leverage security libraries and frameworks (cryptographic, serialization, authorization) that prevent vulnerabilities in AI model development. Manage engineers, drive adoption across teams, and balance security rigor with development velocity; requires 5+ years security/software engineering and 3+ years managing security teams.

405k – 485k
Hybrid8+ YOESecurity Engineering
Forus

Founding Security Engineer

ForusNew York, NY

Founding Security Engineer owning cloud (AWS/GCP), product, AI data, detection/response, and compliance (HIPAA/SOC 2) for a healthcare AI platform handling PHI at scale. Requires 7+ years security engineering on strong SWE foundation, hands-on IaC, and multi-domain expertise.

Salary not listed
On-site7+ YOESecurity Engineering
Flexport

Manager, Supply Chain Protection & Loss Intelligence

FlexportMiami, FL

Manager responsible for global supply chain protection, loss prevention, and physical security programs at Flexport. Oversees 50+ security officers, electronic systems (CCTV/access control), data-driven investigations, policy/SOP authoring, and new facility stand-up across offices and fulfillment centers.

Salary not listed
On-site8+ YOESecurity Engineering
Crusoe

Physical Security Manager

CrusoeDallas, TX

Lead day-to-day operations of Crusoe's 24/7 Global Security Operations Center (GSOC), overseeing monitoring, incident response, intelligence, and crisis management to protect facilities and infrastructure. Requires experience building high-performing teams, driving operational maturity, and ensuring compliance in a fast-growing environment.

Salary not listed
On-site7+ YOESecurity Engineering