RemoteLeaf Logo
Log in Sign up

Senior IAM Engineer

1 week, 5 days ago
United States
Full-time
Senior
Security Engineer
DevOps and Infrastructure
Active Directory AWS Azure HashiCorp Vault OpenID Connect PowerShell Python SAML Terraform
Apply Now
Ensono

Ensono

Ensono provides comprehensive hybrid IT solutions and governance, enabling businesses to navigate complexity and modernize their technology infrastructure, from cloud services to mainframe systems, tailored to each client's unique journey.

IT Services
1K-5K
Founded 1969
View All Jobs 50

Description

  • Lead the design and implementation of IAM solutions across authentication, authorization, secrets management, identity governance, and privileged access domains.
  • Define and maintain IAM reference architectures, integration patterns, and best practices aligned to enterprise standards.
  • Provide technical recommendations and trade-off analysis balancing security, usability, scalability, and operational efficiency.
  • Participate in architecture reviews and help shape client IAM roadmaps and modernization strategies.
  • Own IAM outcomes for assigned programs and migrations, ensuring solutions meet security, compliance, and performance expectations.
  • Lead IAM readiness activities for migrations and cutovers, including risk identification, mitigation planning, and execution support.
  • Guide and execute IAM configuration and integrations for SSO, MFA, federation, PAM, and secrets management.
  • Develop accelerators, automation, and self-service capabilities to improve delivery efficiency and consistency.
  • Ensure IAM implementations align with enterprise security policies, regulatory requirements, and audit standards.
  • Lead or coordinate IAM-related security testing, including authentication/authorization validation and vulnerability assessments.
  • Serve as an escalation point for complex IAM issues and defect resolution.
  • Mentor junior engineers and review IAM designs, configurations, and documentation.
  • Collaborate with application teams, cloud engineers, security operations, and governance partners to drive successful IAM adoption.
  • Document IAM architectures, configurations, and operational procedures for long-term sustainability.

Requirements

  • 7+ years of progressive experience in Identity and Access Management engineering, including leadership of complex IAM initiatives.
  • Proven experience designing and implementing IAM solutions in large-scale, hybrid, or cloud environments.
  • Demonstrated ability to act as a technical authority and advisor, influencing IAM decisions and standards.
  • Hands-on expertise with CyberArk, including Enterprise Password Vault, Privileged Session Manager, Central Credential Provider, and Conjur.
  • Hands-on expertise with HashiCorp Vault, including secrets engines, policies, authentication methods, and dynamic credentials.
  • Experience with ForgeRock Access Management, Identity Management, Directory Services, and Identity Gateway.
  • Experience with RSA SecurID Authentication Manager, MFA, and Identity Governance & Lifecycle.
  • Experience with SailPoint IdentityIQ and IdentityNow, including access certifications, provisioning, and role management.
  • Experience with entitlement management and access controls using ESF (Enterprise Security Framework).
  • Strong experience with authentication and federation protocols, including SAML, OAuth 2.0, OpenID Connect, and Kerberos.
  • Advanced knowledge of Active Directory, LDAP, and identity integrations.
  • Experience with AWS, Azure, and cloud-native IAM services.
  • Strong scripting and automation capabilities with PowerShell, Python, Terraform, or equivalent.
  • Excellent troubleshooting, analytical, and communication skills.
  • CyberArk Certified Defender or Delivery Engineer preferred.
  • HashiCorp Certified Vault Associate or Professional preferred.
  • ForgeRock Certified Engineer preferred.
  • SailPoint Certified IdentityIQ Engineer preferred.
  • RSA Certified Administrator preferred.
  • Experience in financial services or highly regulated industries preferred.

Benefits

  • Unlimited Paid Days Off.
  • Three health plan options.
  • 401(k) with company match.
  • Dental, vision, short- and long-term disability, life, AD&D coverage, and flexible spending accounts.
  • Family Forming Benefit, including fertility coverage and adoption/surrogacy reimbursement.
  • Paid childbearing and paternal leave.
  • Education reimbursement, student loan assistance, or 529 college funding.
  • Sabbatical leave.
  • Wellness program.
  • Flexible work schedule.
  • Remote work options when not required on client site.
  • Annual bonus plan based on company and individual performance, subject to eligibility.
  • Equity grant under the Associate Equity Appreciation Program.
  • Salary range of $125,000 to $150,000 annually based on a full-time schedule.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

JMA Wireless

IT Infrastructure Security Operations Engineer

JMA Wireless 251-1K Wireless Telecommunication Services

JMA is hiring an IT Infrastructure Security Operations Engineer in Syracuse, NY to own the day-to-day security posture of its enterprise infrastructure and keep Windows and Linux environments continuously hardened and audit-ready.

United States Full-time Senior Security Engineer
$100k-$120k
Active Directory Ansible Bash Linux PowerShell Puppet Python SIEM
1 hour, 43 minutes ago
Anduril Industries

Endpoint Engineer - Factory Systems

Anduril Industries 1K-5K Aerospace & Defense

Anduril Industries is hiring an Endpoint Engineer to own and scale device management across enterprise and factory-floor endpoints, supporting secure, reliable operations in a defense technology environment.

United States Full-time Mid Level Security Engineer Systems Engineer
$129k-$171k
Android Ansible Bash Go iOS Linux PowerShell Python Terraform
1 hour, 45 minutes ago
instacart.careers

Senior Security Engineer, Cloud, AI, Product Security

instacart.careers 1K-5K Internet Software & Services

Instacart is hiring a Security Engineer for its CAPS team to secure cloud infrastructure, AI systems, and product surfaces while helping the company roll out new features and internal tools safely.

United States Full-time Senior Security Engineer
$192k-$242k
2 hours, 15 minutes ago
Alphasense

Senior Business Applications Security Engineer

Alphasense 51-250 Industrial Conglomerates

AlphaSense is hiring a Senior Business Applications Security Engineer to build and own the security program for its business application ecosystem, centralizing and hardening access, integrations, and lifecycle controls across hundreds of tools.

India Full-time Lead Application Security Engineer Security Engineer
OAuth Salesforce SAML
2 hours, 29 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers