Senior Security Engineer (IAM)

TL;DR

Senior Security Engineer (IAM): Designing and maintaining secure identity and access solutions across cloud and on-prem ecosystems with an accent on federated identity, SSO, and RBAC. Focus on automating IAM provisioning, integrating security into CI/CD pipelines, and managing secrets across multi-cloud environments.

Location: Remote (Must be authorized for employment in the United States)

Salary: $99,400 – $134,715

Company

World-leading specialty retail brand recognized globally for innovation and excellence in lingerie and fashion.

What you will do

• Design and implement IAM solutions including federated identity, SSO, RBAC, and lifecycle management.
• Integrate IAM with AWS, Azure, SaaS applications, and internal services to enforce least privilege and compliance.
• Automate IAM provisioning and de-provisioning using infrastructure-as-code and CI/CD pipelines.
• Support operational security tools including Email Security, SASE, EDR, and SIEM.
• Secure container platforms such as Kubernetes and Docker using Terraform and CloudFormation.
• Collaborate with SOC and security analysts to investigate IAM-related incidents and perform root cause analysis.

Requirements

• 6+ years of professional cybersecurity experience.
• Deep expertise in IAM technologies such as PingIdentity, Azure AD, GCP, or similar systems.
• Strong understanding of authentication protocols (OAuth2, OIDC, SAML) and access control models (RBAC, ABAC, PBAC).
• Proficiency in infrastructure-as-code (Terraform, Pulumi) and CI/CD systems (GitHub Actions, GitLab CI, Jenkins).
• Experience with secrets management tools like CyberArk or HashiCorp Vault.
• Must be authorized for employment in the United States.

Culture & Benefits

• 401(k) savings plan with company match.
• Comprehensive medical, dental, vision, and pharmacy coverage.
• Paid parental leave and tuition reimbursement.
• Merit increases, performance bonuses, and on-the-spot recognition.
• Employee stock purchase program and merchandise discounts.