PAM Security Engineer

This Jobot Job is hosted by: Amanda Preston
Are you a fit? Easy Apply now by clicking the "Apply Now" button and sending us your resume.
Salary: $90,000 - $110,000 per year

A bit about us:

We are a mission-driven financial services organization focused on delivering secure, innovative, and technology-forward solutions to support millions of members and customers. With a strong emphasis on collaboration, operational excellence, and long-term stability, we invest heavily in modernizing our infrastructure and cybersecurity capabilities to stay ahead of evolving threats and technology trends.

Our technology and security teams play a critical role in shaping the future of the organization through enterprise-scale initiatives across identity, cloud, automation, and risk management. We foster a culture that values curiosity, continuous learning, and teamwork while empowering employees to make a meaningful impact across the business.

Why join us?

This is an opportunity to join a highly collaborative cybersecurity team supporting large-scale IAM and identity modernization initiatives within a complex enterprise environment. You will have the chance to work with modern IAM technologies including SailPoint, Okta, cloud identity platforms, PAM, SSO, MFA, and CIAM while helping drive strategic security initiatives that directly impact the organization's overall security posture.

Job Details

About the Role

We are seeking a Senior Security Engineer - IAM to help drive the design, development, and advancement of a large enterprise Identity and Access Management program. This is a highly visible role supporting strategic cybersecurity initiatives across identity governance, authentication, privileged access, and cloud identity technologies.

This individual will serve as a technical lead and subject matter expert responsible for the implementation, optimization, and continuous improvement of IAM solutions including Privileged Access Management (PAM), Single Sign-On (SSO), Identity Governance & Administration (IGA), Multi-Factor Authentication (MFA), Active Directory, Customer Identity & Access Management (CIAM), and cloud identity platforms.

The ideal candidate will bring strong technical depth within IAM along with the ability to collaborate cross-functionally across cybersecurity, infrastructure, cloud, and business teams. This role will also mentor junior engineers, support enterprise-scale security initiatives, and help strengthen the organization's overall security posture.

Responsibilities
Assist with the implementation, administration, and maintenance of enterprise security and IAM solutions
Support planning, deployment coordination, documentation, change management, and user training activities
Configure and optimize security tools while integrating them with enterprise platforms and controls
Evaluate new technologies and vendor solutions to improve security operations and responsiveness
Identify opportunities for process improvements, automation, operational efficiency, and cost savings
Participate in governance, audit, and compliance initiatives to ensure adherence to security standards and regulatory requirements
Support IAM-related incident response and remediation activities
Participate in on-call support rotation for security technologies and IAM systems
Mentor junior engineers and provide technical guidance across IAM initiatives
Stay current on cybersecurity trends, IAM technologies, and industry best practices through ongoing training and certifications
Participate in special projects and cross-functional cybersecurity initiatives as needed
Required Qualifications
Candidate must reside in North Carolina or a contiguous state
Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or related field
Additional relevant experience may be considered in lieu of degree requirements
Minimum 5 years of experience within Identity & Access Management, Cybersecurity, or related areas
Required Technical Experience
IAM Platforms & Technologies
Strong experience with SailPoint IdentityNow (IDN)
Experience with Okta and cloud identity solutions such as Entra ID and AWS Identity services preferred
Experience implementing or supporting multiple IAM technologies including:
PAM
SSO
IGA
MFA
CIAM
Directory Services
IAM Integrations & Cloud Identity
Experience integrating multiple IAM platforms and enterprise applications
Knowledge of hybrid IAM environments and cloud-to-cloud identity integrations
Understanding of APIs and how they are leveraged within IAM ecosystems
Familiarity with cloud directories including Entra ID, AWS Directory Services, and Google Cloud Identity
Authentication & Authorization

Strong understanding of authentication and authorization protocols including:

OAuth 2.0
OIDC
SAML
LDAP
Kerberos
XACML
IAM Governance & Compliance
Familiarity with security and governance frameworks including NIST, ISO 27001, SOX, and GDPR
Experience supporting audit and compliance reporting activities
User Lifecycle Management
Experience with Joiner-Mover-Leaver (JML) processes
Experience automating provisioning and de-provisioning workflows
Experience with RBAC and ABAC models
Ability to leverage scripting tools such as PowerShell, Python, or Bash for automation
Security & Risk Management
Understanding of IAM's role within enterprise security and risk management frameworks
Experience supporting identity-related incident response and remediation efforts
Understanding of identity threat modeling and risk assessment concepts
Collaboration & Leadership
Experience partnering with cybersecurity, infrastructure, development, and business teams
Strong communication, troubleshooting, and analytical problem-solving skills
Ability to lead initiatives and mentor junior team members
Preferred Qualifications
5+ years of direct IAM engineering experience
Industry certifications such as CISSP, CISA, CISM, GIAC, CRISC, CGEIT, or similar
Experience working within DevOps environments
Experience leading IAM projects from inception through delivery
Understanding of financial services regulatory and audit environments preferred

Interested in hearing more? Easy Apply now by clicking the "Apply Now" button.

Jobot is an Equal Opportunity Employer. We provide an inclusive work environment that celebrates diversity and all qualified candidates receive consideration for employment without regard to race, color, sex, sexual orientation, gender identity, religion, national origin, age (40 and over), disability, military status, genetic information or any other basis protected by applicable federal, state, or local laws. Jobot also prohibits harassment of applicants or employees based on any of these protected categories. It is Jobot's policy to comply with all applicable federal, state and local laws respecting consideration of unemployment status in making hiring decisions.

Sometimes Jobot is required to perform background checks with your authorization. Jobot will consider qualified candidates with criminal histories in a manner consistent with any applicable federal, state, or local law regarding criminal backgrounds, including but not limited to the Los Angeles Fair Chance Initiative for Hiring and the San Francisco Fair Chance Ordinance.

Information collected and processed as part of your Jobot candidate profile, and any job applications, resumes, or other information you choose to submit is subject to Jobot's Privacy Policy, as well as the Jobot California Worker Privacy Notice and Jobot Notice Regarding Automated Employment Decision Tools which are available at jobot.com/legal.

By applying for this job, you agree to receive calls, AI-generated calls, text messages, or emails from Jobot, and/or its agents and contracted partners. Frequency varies for text messages. Message and data rates may apply. Carriers are not liable for delayed or undelivered messages. You can reply STOP to cancel and HELP for help. You can access our privacy policy here: jobot.com/privacy-policy