PAM Security Engineer

This Jobot Job is hosted by: Amanda Preston Are you a fit? Easy Apply now by clicking the "Apply Now" button and sending us your resume.

Salary:

$90,000 - $110,000 per year A bit about us: We are a mission-driven financial services organization focused on delivering secure, innovative, and technology-forward solutions to support millions of members and customers. With a strong emphasis on collaboration, operational excellence, and long-term stability, we invest heavily in modernizing our infrastructure and cybersecurity capabilities to stay ahead of evolving threats and technology trends. Our technology and security teams play a critical role in shaping the future of the organization through enterprise-scale initiatives across identity, cloud, automation, and risk management. We foster a culture that values curiosity, continuous learning, and teamwork while empowering employees to make a meaningful impact across the business. Why join us? This is an opportunity to join a highly collaborative cybersecurity team supporting large-scale IAM and identity modernization initiatives within a complex enterprise environment. You will have the chance to work with modern IAM technologies including SailPoint, Okta, cloud identity platforms, PAM, SSO, MFA, and CIAM while helping drive strategic security initiatives that directly impact the organization's overall security posture. Job Details About the Role We are seeking a Senior Security Engineer - IAM to help drive the design, development, and advancement of a large enterprise Identity and Access Management program. This is a highly visible role supporting strategic cybersecurity initiatives across identity governance, authentication, privileged access, and cloud identity technologies. This individual will serve as a technical lead and subject matter expert responsible for the implementation, optimization, and continuous improvement of IAM solutions including Privileged Access Management (PAM), Single Sign-On (SSO), Identity Governance & Administration (IGA), Multi-Factor Authentication (MFA), Active Directory, Customer Identity & Access Management (CIAM), and cloud identity platforms. The ideal candidate will bring strong technical depth within IAM along with the ability to collaborate cross-functionally across cybersecurity, infrastructure, cloud, and business teams. This role will also mentor junior engineers, support enterprise-scale security initiatives, and help strengthen the organization's overall security posture. Responsibilities Assist with the implementation, administration, and maintenance of enterprise security and IAM solutions Support planning, deployment coordination, documentation, change management, and user training activities Configure and optimize security tools while integrating them with enterprise platforms and controls Evaluate new technologies and vendor solutions to improve security operations and responsiveness Identify opportunities for process improvements, automation, operational efficiency, and cost savings Participate in governance, audit, and compliance initiatives to ensure adherence to security standards and regulatory requirements Support IAM-related incident response and remediation activities Participate in on-call support rotation for security technologies and IAM systems Mentor junior engineers and provide technical guidance across IAM initiatives Stay current on cybersecurity trends, IAM technologies, and industry best practices through ongoing training and certifications Participate in special projects and cross-functional cybersecurity initiatives as needed Required Qualifications Candidate must reside in North Carolina or a contiguous state Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or related field Additional relevant experience may be considered in lieu of degree requirements Minimum 5 years of experience within Identity & Access Management, Cybersecurity, or related areas Required Technical Experience IAM Platforms & Technologies Strong experience with SailPoint IdentityNow (IDN) Experience with Okta and cloud identity solutions such as Entra ID and AWS Identity services preferred Experience implementing or supporting multiple IAM technologies including:

PAM SSO IGA MFA CIAM

Directory Services IAM Integrations & Cloud Identity Experience integrating multiple IAM platforms and enterprise applications Knowledge of hybrid IAM environments and cloud-to-cloud identity integrations Understanding of APIs and how they are leveraged within IAM ecosystems Familiarity with cloud directories including Entra ID, AWS Directory Services, and Google Cloud Identity Authentication & Authorization Strong understanding of authentication and authorization protocols including: OAuth 2.0 OIDC

SAML LDAP

Kerberos

XACML IAM

Governance & Compliance Familiarity with security and governance frameworks including

NIST, ISO

27001, SOX, and GDPR Experience supporting audit and compliance reporting activities User Lifecycle Management Experience with Joiner-Mover-Leaver (JML) processes Experience automating provisioning and de-provisioning workflows Experience with RBAC and ABAC models Ability to leverage scripting tools such as PowerShell, Python, or Bash for automation Security & Risk Management Understanding of IAM's role within enterprise security and risk management frameworks Experience supporting identity-related incident response and remediation efforts Understanding of identity threat modeling and risk assessment concepts Collaboration & Leadership Experience partnering with cybersecurity, infrastructure, development, and business teams Strong communication, troubleshooting, and analytical problem-solving skills Ability to lead initiatives and mentor junior team members Preferred Qualifications 5+ years of direct IAM engineering experience Industry certifications such as CISSP, CISA, CISM, GIAC, CRISC, CGEIT, or similar Experience working within DevOps environments Experience leading IAM projects from inception through delivery Understanding of financial services regulatory and audit environments preferred Interested in hearing more? Easy Apply now by clicking the "Apply Now" button. Jobot is an Equal Opportunity Employer. We provide an inclusive work environment that celebrates diversity and all qualified candidates receive consideration for employment without regard to race, color, sex, sexual orientation, gender identity, religion, national origin, age (40 and over), disability, military status, genetic information or any other basis protected by applicable federal, state, or local laws. Jobot also prohibits harassment of applicants or employees based on any of these protected categories. It is Jobot's policy to comply with all applicable federal, state and local laws respecting consideration of unemployment status in making hiring decisions. Sometimes Jobot is required to perform background checks with your authorization. Jobot will consider qualified candidates with criminal histories in a manner consistent with any applicable federal, state, or local law regarding criminal backgrounds, including but not limited to the Los Angeles Fair Chance Initiative for Hiring and the San Francisco Fair Chance Ordinance. Information collected and processed as part of your Jobot candidate profile, and any job applications, resumes, or other information you choose to submit is subject to Jobot's Privacy Policy, as well as the Jobot California Worker Privacy Notice and Jobot Notice Regarding Automated Employment Decision Tools which are available at jobot.com/legal. By applying for this job, you agree to receive calls, AI-generated calls, text messages, or emails from Jobot, and/or its agents and contracted partners. Frequency varies for text messages. Message and data rates may apply. Carriers are not liable for delayed or undelivered messages. You can reply STOP to cancel and HELP for help. You can access our privacy policy here: jobot.com/privacy-policy