Staff IAM Engineer (Cybersecurity)
ΠΠ°ΠΊΠ°Π½ΡΠΈΡ ΠΈΠ· Hirify Global, ΡΠΏΠΈΡΠΊΠ° ΠΌΠ΅ΠΆΠ΄ΡΠ½Π°ΡΠΎΠ΄Π½ΡΡ
tech-ΠΊΠΎΠΌΠΏΠ°Π½ΠΈΠΉΠΠ»Ρ ΠΌΡΡΡΠ° ΠΈ ΠΎΡΠΊΠ»ΠΈΠΊΠ° Π½ΡΠΆΠ΅Π½ Plus
ΠΡΡΡ & Π‘ΠΎΠΏΡΠΎΠ²ΠΎΠ΄
ΠΠ»Ρ ΠΌΡΡΡΠ° Ρ ΡΡΠΎΠΉ Π²Π°ΠΊΠ°Π½ΡΠΈΠ΅ΠΉ Π½ΡΠΆΠ΅Π½ Plus
ΠΠΏΠΈΡΠ°Π½ΠΈΠ΅ Π²Π°ΠΊΠ°Π½ΡΠΈΠΈ
TL;DR
Staff IAM Engineer (Cybersecurity): Owns security-critical identity and corporate security controls that protect βs people, systems, and data with an accent on access control design and continuous improvement of identity controls. Focus on integrating new SaaS applications into SSO and MFA ecosystem, evolving corporate device trust program, and supporting endpoint security efforts.
Location: Hybrid role based in San Francisco, California. Office attendance is required at least twice a week on Tuesdays and Thursdays.
Salary: $170,000 - $190,000
Company
is the leading AI contracting platform that transforms agreements into assets.
What you will do
- Support implementation and operations of Identity Governance & Administration (IGA) platform to ensure appropriate access and efficient access revocation.
- Define and enforce Role-Based Access Control (RBAC) standards for sensitive systems.
- Improve identity controls by reducing standing privileges and hardening authentication policies (SSO, MFA).
- Lead the integration of new SaaS applications into SSO and MFA ecosystem.
- Evolve corporate device trust program to ensure only compliant devices can access corporate and production systems.
- Partner with Security Detection & Response and Trust & Compliance to ensure visibility into corporate systems and streamline evidence collection for audits.
Requirements
- 4+ years of experience in security-focused software engineering, corporate engineering, IT, and/or program management.
- Demonstrated ability to identify risks and vulnerabilities in IT and business systems and communicate risk to stakeholders.
- Strong understanding of IAM protocols and standards, including SAML 2.0, OIDC, SCIM, LDAP, OAuth, and familiarity with X.509.
- Experience with IdP and identity tooling (e.g., Okta, Active Directory, Google Workspace), including defining and enforcing Role-Based Access Control (RBAC) policies and Least Privilege principles across enterprise applications.
- Familiarity with endpoint engineering for macOS and Windows.
- SW Eng/Dev engineering and DevOps proficiency: Python and/or Go, Terraform, GAM scripting, Powershell scripting, JSON, Javascript.
Nice to have
- Experience with Okta, Salesforce, NetSuite, Workday, GCP, GWP, Microsoft Entra/Azure/Intune, JAMF.
- Backend and API testing/experience is a plus.
Culture & Benefits
- 100% health coverage for employees (medical, dental, and vision), and 75% coverage for dependents with buy-up plan options available.
- Market-leading leave policies, including gender-neutral parental leave and compassionate leave.
- Paid time off - take the time you need, when you need it.
- Monthly stipends for wellbeing, hybrid work, and (if applicable) cell phone use.
- 401(k) plan with Fidelity with employer match (US Employees).
- Regular team events to connect, recharge, and have fun.
ΠΡΠ΄ΡΡΠ΅ ΠΎΡΡΠΎΡΠΎΠΆΠ½Ρ: Π΅ΡΠ»ΠΈ ΡΠ°Π±ΠΎΡΠΎΠ΄Π°ΡΠ΅Π»Ρ ΠΏΡΠΎΡΠΈΡ Π²ΠΎΠΉΡΠΈ Π² ΠΈΡ ΡΠΈΡΡΠ΅ΠΌΡ, ΠΈΡΠΏΠΎΠ»ΡΠ·ΡΡ iCloud/Google, ΠΏΡΠΈΡΠ»Π°ΡΡ ΠΊΠΎΠ΄/ΠΏΠ°ΡΠΎΠ»Ρ, Π·Π°ΠΏΡΡΡΠΈΡΡ ΠΊΠΎΠ΄/ΠΠ, Π½Π΅ Π΄Π΅Π»Π°ΠΉΡΠ΅ ΡΡΠΎΠ³ΠΎ - ΡΡΠΎ ΠΌΠΎΡΠ΅Π½Π½ΠΈΠΊΠΈ. ΠΠ±ΡΠ·Π°ΡΠ΅Π»ΡΠ½ΠΎ ΠΆΠΌΠΈΡΠ΅ "ΠΠΎΠΆΠ°Π»ΠΎΠ²Π°ΡΡΡΡ" ΠΈΠ»ΠΈ ΠΏΠΈΡΠΈΡΠ΅ Π² ΠΏΠΎΠ΄Π΄Π΅ΡΠΆΠΊΡ. ΠΠΎΠ΄ΡΠΎΠ±Π½Π΅Π΅ Π² Π³Π°ΠΉΠ΄Π΅ β
ΠΠΎΡ ΠΎΠΆΠΈΠ΅ Π²Π°ΠΊΠ°Π½ΡΠΈΠΈ
Senior Cyber Engineer, Security Endpoint
Senior Corporate Security Engineer
Senior Security Engineer (Cybersecurity)
Staff Application Security Engineer (Cybersecurity)
Security Lead Engineer