Role:Identity Governance Automation Engineer
Location: Burbank, CA, & Alternate Locations: Seattle, Orlando
Duration : 6+ months contract
Description/Comment: Role Overview
We are seeking a Senior Automation Engineer to design and build continuous, policy-driven remediation automation for identity governance and compliance gaps across a complex enterprise directory ecosystem.
This role is critical to achieving our FY26 FY27 outcomes, including automated enforcement of identity hygiene, elimination of manual remediation, continuous compliance monitoring, and scalable governance for both human and non-human identities. The engineer will work closely with IAM architects, security, and platform teams to move the organization from reactive remediation to self-healing identity controls by default.
Basic Qualifications
Key Responsibilities
1. Automated Governance & Compliance Remediation
Build automation that detects and remediates identity governance violations across Active Directory and Entra ID, including inactive accounts, orphaned identities, misconfigurations, and policy drift.
Implement event- and time-based remediation workflows, such as:
o Automatic disablement of inactive accounts after defined thresholds (e.g., 90 days)
o Automatic deletion of disabled accounts after remediation windows elapse
Automate remediation of identified AD and identity security findings, eliminating manual, ticket-driven cleanup.
2. Continuous Identity Hygiene Automation
Engineer automated controls for:
o Service account password rotation and expiration notifications
o Enforcement of baseline identity security standards across domains and tenants
Ensure identities remain compliant throughout their entire lifecycle, not just at creation or audit time.
3. Identity Lifecycle & Zero Standing Privilege
Partner with IAM architects to automate least-privilege and just-in-time access models, reducing and eliminating standing privileged access.
Support automated human and non-human identity governance, including lifecycle enforcement and privilege clean-up.
4. Monitoring, Signals, and Self-Healing Controls
Build automation that integrates monitoring signals, policy outcomes, and directory health data into closed-loop remediation pipelines.
Enable continuous monitoring and regular AD health checks with automated response where feasible.
5. Scale, Standardization, and Platform Thinking
Design reusable automation frameworks and remediation patterns that can be applied across:
o Multiple domains and tenants
o Business units with varying maturity
Help evolve Directory Services into a standardized, automated identity platform, not a collection of scripts.
Never miss an opportunity! Create an alert based on the job you applied for.
