IAM Security Engineer 3

📋 Description

• Operate IAM platforms (Okta, AWS IAM, GCP IAM, Azure AD) for least-privilege access.
• Implement and support SSO integrations (SAML/OIDC/OAuth2) and MFA.
• Maintain RBAC models, groups, and policies with audit alignment.
• Automate identity lifecycle (provisioning to access changes) with Terraform/OpenTofu, Python, Tines.
• Harden non-human identities and manage keys/secrets for security.
• Support FedRAMP High and other compliance programs; assist audits.

🎯 Requirements

• 3–5 years of IAM/Security/Cloud Security experience.
• Hands-on with Okta for workforce identity (groups, policies, app integrations, MFA).
• IAM in at least one major cloud provider (AWS IAM strongly preferred; GCP IAM or Azure AD a plus).
• Understanding of OAuth2, OIDC, SAML, and MFA.
• Familiarity with FedRAMP High or Moderate or similar frameworks; interest in NIST 800‑53, ATO, POA&M.
• Scripting or programming (Python, Bash) to automate IAM tasks.

🎁 Benefits

• Equity and employee stock purchase program.
• Flexible paid time off; 20 weeks fully-paid parental leave.
• Fertility and adoption assistance.
• 401(k) plan.
• Mental health counseling.
• Transgender-inclusive health insurance coverage.