Sales Engineer - Identity Access Management

Solution Architect Cybersecurity Professional Services

Location: New York, NY (on-site / hybrid)

Overview

We are seeking an experienced Solution Architect with deep expertise in enterprise security, identity systems, and Privileged Access Management (PAM). This is a client-facing Professional Services role that blends architecture, implementation, automation, technical leadership, and pre-sales support. You will work closely with customers to design secure, scalable solutions that strengthen identity, access, and operational security across complex environments.

Key Responsibilities

Client Engagement & Pre-Sales Support

• Serve as the primary technical resource for both pre-sales and post-sales engagements.
• Lead technical discovery sessions, assess customer environments, and translate business needs into technical architectures.
• Present solution approaches, deliver demos, conduct workshops, and support proofs of concept.
• Contribute technical content for proposals, statements of work, and RFP responses.

Architecture & Solution Design

• Lead the design of secure, enterprise-grade architectures supporting IAM, PAM, access governance, key lifecycle management, and zero-trust principles.
• Develop scalable deployment models that integrate with identity providers, authentication systems, and existing customer infrastructure.
• Define high availability, resiliency, disaster recovery, and performance tuning strategies.

Privileged Access Management (PAM)

• Design and implement PAM architectures, including credential vaulting, just-in-time access, least-privilege workflows, privileged session management, and strong authentication models.
• Integrate PAM workflows with SSO/identity providers, directory services, and existing customer access frameworks.
• Assist customers in maturing their privileged access policies, processes, and governance.

Deployment, Configuration & Integration

• Lead installation, configuration, upgrades, and migrations across Linux/Unix, cloud, and hybrid environments.
• Integrate solutions with enterprise authentication systems (SAML, OAuth, OIDC), directory services, ticketing tools, and automation pipelines.
• Implement secure file transfer, key rotation, access controls, API integrations, and system-to-system communication workflows.

Automation, Scripting & Engineering

• Develop automation and tooling (Shell, Python, Go, or Perl) to improve deployment repeatability, visibility, monitoring, and configuration management.
• Use automation platforms (Ansible, Puppet, Chef, Terraform, etc.) to streamline customer implementations.

Troubleshooting, Support & Customer Success

• Act as a technical escalation point to resolve complex issues quickly.
• Lead root-cause analyses, status calls, and resolution strategies for customer incidents.
• Provide training, knowledge transfer sessions, and documentation such as runbooks, operating procedures, and troubleshooting guides.

Continuous Improvement & Feedback Loop

• Gather customer insights and recommend enhancements to internal teams.
• Identify opportunities to improve architecture patterns, deployment automation, and overall service delivery.
• Assist customers with ongoing operational improvements, security assessments, and access risk reduction.

Required Qualifications

• Bachelor s degree in Computer Science, Information Systems, Engineering, or related field.
• 7+ years in Linux/Unix systems engineering, infrastructure operations, or similar technical roles.
• 5+ years working with major cloud platforms (AWS, Azure, Google Cloud Platform).
• Deep understanding of core security and networking concepts (SSH, TCP/IP, DNS, LDAP, SFTP, firewalls, encryption, etc.).
• Strong proficiency in scripting (Shell, Python, Go, or Perl).
• Experience with configuration automation tools (Ansible, Puppet, Chef) and virtualization technologies.
• Hands-on experience integrating solutions with IAM/SSO systems (SAML, OAuth2, OIDC, MFA, directory services).
• Strong, hands-on experience with Privileged Access Management (PAM) preferred including architecture, deployment, policy design, access workflows, credential vaulting, and privileged session controls.
• Proven experience in pre-sales, customer-facing consulting, or technical solution leadership.
• Excellent communication and presentation skills.

Preferred Qualifications

• Experience in enterprise consulting, professional services, or customer success engineering.
• Familiarity with zero-trust security architectures and identity-centric access models.
• Experience implementing risk and compliance controls related to privileged access.
• Background supporting customers in regulated industries (finance, healthcare, energy, government).
• Professional certifications (CISSP, AWS Solutions Architect, Linux certifications, IAM/PAM certifications).

#Contech