Threat Detection and Response (ITDR) Engineer

Overview

On Site
Hybrid
Depends on Experience
Accepts corp to corp applications
Contract - W2
50% Travel

Skills

SaaS
IAM
AuthMind
Network Architecture
Security Operations & Monitoring
Data Analysis & Reporting

Job Details

Threat Detection and Response (ITDR) Engineer -

We are seeking an Identity Threat Detection and Response (ITDR) Engineer to lead the operational integration of the AuthMind SaaS platform into our identity and access management ecosystem. This role will be instrumental in designing and managing processes that leverage AuthMind s identity observability capabilities to enhance threat detection, response, and overall security posture. The ideal candidate will have a strong background in identity and access management (IAM), network architecture (on-prem and cloud), and security operations, with the ability to translate identity insights into actionable operational workflows.

Key Responsibilities
- Design and implement operational processes to consume and act on AuthMind findings.
- Develop playbooks and runbooks for identity threat detection and response.
- Collaborate with security operations, engineering, and compliance teams to operationalize identity observability.
- Monitor and analyze identity activity across hybrid environments (cloud, SaaS, on-prem).
- Create dashboards and reports to communicate identity-related risks and trends.

Technical Skills
1. Identity and Access Management (IAM) Expertise
- Deep understanding of authentication and authorization protocols (e.g., SAML, OAuth, OpenID Connect).
- Experience with IAM platforms like Okta, Azure AD, Ping Identity, etc.
- Experience with PKI and certificate management

2. Network Architecture (On-Prem & Cloud)
- Strong understanding of network design principles, segmentation, and traffic flow
- Experience with cloud networking
- Knowledge of hybrid environments and secure connectivity between on-prem and cloud resources

3. Security Operations & Monitoring
- Ability to correlate identity activity with network and endpoint telemetry
- Familiarity with Identity Threat Detection and Response (ITDR) and Identity Security Posture Management (ISPM)
- Experience operationalizing identity insights from platforms like AuthMind
- Experience integrating identity data into SIEM/SOAR platforms

4. Data Analysis & Reporting
- Ability to interpret identity and network activity data to generate actionable insights

Strategic & Operational Experience
1. Operational Process Design
- Proven ability to design and implement workflows for identity observability and threat response
- Experience creating runbooks, playbooks, and escalation procedures
- Experience using Service Now

2. Preferred Experience with AuthMind or Similar Platforms
- Experience in environments with complex identity flows across SaaS, cloud, and on-prem systems.
- Exposure to zero trust architectures and identity-centric security models.
- Hands-on experience with AuthMind or similar platforms that offer:
- Real-time identity activity observability
- AI-powered threat detection and contextual analysis
- Coverage of both human and non-human identities

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.