Plus
Π’ΠΊΠ»ΡŽΡ‡ΠΈΡ‚ΡŒ Plus
Назад
Company hidden
ΠΎΠ±Π½ΠΎΠ²Π»Π΅Π½ΠΎ 6 Π΄Π½Π΅ΠΉ Π½Π°Π·Π°Π΄

Staff IAM Engineer (Cybersecurity)

170Β 000 - 190Β 000$
Π€ΠΎΡ€ΠΌΠ°Ρ‚ Ρ€Π°Π±ΠΎΡ‚Ρ‹
hybrid
Π’ΠΈΠΏ Ρ€Π°Π±ΠΎΡ‚Ρ‹
fulltime
Π“Ρ€Π΅ΠΉΠ΄
middle
Английский
b2
Π‘Ρ‚Ρ€Π°Π½Π°
US
Вакансия ΠΈΠ· списка Hirify.GlobalВакансия ΠΈΠ· Hirify Global, списка ΠΌΠ΅ΠΆΠ΄ΡƒΠ½Π°Ρ€ΠΎΠ΄Π½Ρ‹Ρ… tech-ΠΊΠΎΠΌΠΏΠ°Π½ΠΈΠΉ
Для мэтча ΠΈ ΠΎΡ‚ΠΊΠ»ΠΈΠΊΠ° Π½ΡƒΠΆΠ΅Π½ Plus

ΠœΡΡ‚Ρ‡ & Π‘ΠΎΠΏΡ€ΠΎΠ²ΠΎΠ΄

Для мэтча с этой вакансиСй Π½ΡƒΠΆΠ΅Π½ Plus

ОписаниС вакансии

ВСкст:
/

TL;DR

Staff IAM Engineer (Cybersecurity): Owns security-critical identity and corporate security controls that protect hirify.global’s people, systems, and data with an accent on access control design and continuous improvement of identity controls. Focus on integrating new SaaS applications into SSO and MFA ecosystem, evolving corporate device trust program, and supporting endpoint security efforts.

Location: Hybrid role based in San Francisco, California. Office attendance is required at least twice a week on Tuesdays and Thursdays.

Salary: $170,000 - $190,000

Company

hirify.global is the leading AI contracting platform that transforms agreements into assets.

What you will do

  • Support implementation and operations of Identity Governance & Administration (IGA) platform to ensure appropriate access and efficient access revocation.
  • Define and enforce Role-Based Access Control (RBAC) standards for sensitive systems.
  • Improve identity controls by reducing standing privileges and hardening authentication policies (SSO, MFA).
  • Lead the integration of new SaaS applications into SSO and MFA ecosystem.
  • Evolve corporate device trust program to ensure only compliant devices can access corporate and production systems.
  • Partner with Security Detection & Response and Trust & Compliance to ensure visibility into corporate systems and streamline evidence collection for audits.

Requirements

  • 4+ years of experience in security-focused software engineering, corporate engineering, IT, and/or program management.
  • Demonstrated ability to identify risks and vulnerabilities in IT and business systems and communicate risk to stakeholders.
  • Strong understanding of IAM protocols and standards, including SAML 2.0, OIDC, SCIM, LDAP, OAuth, and familiarity with X.509.
  • Experience with IdP and identity tooling (e.g., Okta, Active Directory, Google Workspace), including defining and enforcing Role-Based Access Control (RBAC) policies and Least Privilege principles across enterprise applications.
  • Familiarity with endpoint engineering for macOS and Windows.
  • SW Eng/Dev engineering and DevOps proficiency: Python and/or Go, Terraform, GAM scripting, Powershell scripting, JSON, Javascript.

Nice to have

  • Experience with Okta, Salesforce, NetSuite, Workday, GCP, GWP, Microsoft Entra/Azure/Intune, JAMF.
  • Backend and API testing/experience is a plus.

Culture & Benefits

  • 100% health coverage for employees (medical, dental, and vision), and 75% coverage for dependents with buy-up plan options available.
  • Market-leading leave policies, including gender-neutral parental leave and compassionate leave.
  • Paid time off - take the time you need, when you need it.
  • Monthly stipends for wellbeing, hybrid work, and (if applicable) cell phone use.
  • 401(k) plan with Fidelity with employer match (US Employees).
  • Regular team events to connect, recharge, and have fun.

Π‘ΡƒΠ΄ΡŒΡ‚Π΅ остороТны: Ссли Ρ€Π°Π±ΠΎΡ‚ΠΎΠ΄Π°Ρ‚Π΅Π»ΡŒ просит Π²ΠΎΠΉΡ‚ΠΈ Π² ΠΈΡ… систСму, ΠΈΡΠΏΠΎΠ»ΡŒΠ·ΡƒΡ iCloud/Google, ΠΏΡ€ΠΈΡΠ»Π°Ρ‚ΡŒ ΠΊΠΎΠ΄/ΠΏΠ°Ρ€ΠΎΠ»ΡŒ, Π·Π°ΠΏΡƒΡΡ‚ΠΈΡ‚ΡŒ ΠΊΠΎΠ΄/ПО, Π½Π΅ Π΄Π΅Π»Π°ΠΉΡ‚Π΅ этого - это мошСнники. ΠžΠ±ΡΠ·Π°Ρ‚Π΅Π»ΡŒΠ½ΠΎ ΠΆΠΌΠΈΡ‚Π΅ "ΠŸΠΎΠΆΠ°Π»ΠΎΠ²Π°Ρ‚ΡŒΡΡ" ΠΈΠ»ΠΈ ΠΏΠΈΡˆΠΈΡ‚Π΅ Π² ΠΏΠΎΠ΄Π΄Π΅Ρ€ΠΆΠΊΡƒ. ΠŸΠΎΠ΄Ρ€ΠΎΠ±Π½Π΅Π΅ Π² Π³Π°ΠΉΠ΄Π΅ β†’