PAM Security Engineer

This Jobot Job is hosted by: Amanda PrestonAre you a fit? Easy Apply now by clicking the "Apply Now" button and sending us your resume.Salary: $90,000 - $110,000 per yearA bit about us:We are a mission-driven financial services organization focused on delivering secure, innovative, and technology-forward solutions to support millions of members and customers. With a strong emphasis on collaboration, operational excellence, and long-term stability, we invest heavily in modernizing our infrastructure and cybersecurity capabilities to stay ahead of evolving threats and technology trends.Our technology and security teams play a critical role in shaping the future of the organization through enterprise-scale initiatives across identity, cloud, automation, and risk management. We foster a culture that values curiosity, continuous learning, and teamwork while empowering employees to make a meaningful impact across the business.Why join us?This is an opportunity to join a highly collaborative cybersecurity team supporting large-scale IAM and identity modernization initiatives within a complex enterprise environment. You will have the chance to work with modern IAM technologies including SailPoint, Okta, cloud identity platforms, PAM, SSO, MFA, and CIAM while helping drive strategic security initiatives that directly impact the organization's overall security posture.Job DetailsAbout The RoleWe are seeking a Senior Security Engineer - IAM to help drive the design, development, and advancement of a large enterprise Identity and Access Management program. This is a highly visible role supporting strategic cybersecurity initiatives across identity governance, authentication, privileged access, and cloud identity technologies.This individual will serve as a technical lead and subject matter expert responsible for the implementation, optimization, and continuous improvement of IAM solutions including Privileged Access Management (PAM), Single Sign-On (SSO), Identity Governance & Administration (IGA), Multi-Factor Authentication (MFA), Active Directory, Customer Identity & Access Management (CIAM), and cloud identity platforms.The ideal candidate will bring strong technical depth within IAM along with the ability to collaborate cross-functionally across cybersecurity, infrastructure, cloud, and business teams. This role will also mentor junior engineers, support enterprise-scale security initiatives, and help strengthen the organization's overall security posture.ResponsibilitiesAssist with the implementation, administration, and maintenance of enterprise security and IAM solutionsSupport planning, deployment coordination, documentation, change management, and user training activitiesConfigure and optimize security tools while integrating them with enterprise platforms and controlsEvaluate new technologies and vendor solutions to improve security operations and responsivenessIdentify opportunities for process improvements, automation, operational efficiency, and cost savingsParticipate in governance, audit, and compliance initiatives to ensure adherence to security standards and regulatory requirementsSupport IAM-related incident response and remediation activitiesParticipate in on-call support rotation for security technologies and IAM systemsMentor junior engineers and provide technical guidance across IAM initiativesStay current on cybersecurity trends, IAM technologies, and industry best practices through ongoing training and certificationsParticipate in special projects and cross-functional cybersecurity initiatives as neededRequired QualificationsCandidate must reside in North Carolina or a contiguous stateBachelor's degree in Computer Science, Information Technology, Cybersecurity, or related fieldAdditional relevant experience may be considered in lieu of degree requirementsMinimum 5 years of experience within Identity & Access Management, Cybersecurity, or related areasRequired Technical ExperienceIAM Platforms & TechnologiesStrong experience with SailPoint IdentityNow (IDN)Experience with Okta and cloud identity solutions such as Entra ID and AWS Identity services preferredExperience implementing or supporting multiple IAM technologies including:PAMSSOIGAMFACIAMDirectory ServicesIAM Integrations & Cloud IdentityExperience integrating multiple IAM platforms and enterprise applicationsKnowledge of hybrid IAM environments and cloud-to-cloud identity integrationsUnderstanding of APIs and how they are leveraged within IAM ecosystemsFamiliarity with cloud directories including Entra ID, AWS Directory Services, and Google Cloud IdentityAuthentication & AuthorizationStrong understanding of authentication and authorization protocols including:OAuth 2.0OIDCSAMLLDAPKerberosXACMLIAM Governance & ComplianceFamiliarity with security and governance frameworks including NIST, ISO 27001, SOX, and GDPRExperience supporting audit and compliance reporting activitiesUser Lifecycle ManagementExperience with Joiner-Mover-Leaver (JML) processesExperience automating provisioning and de-provisioning workflowsExperience with RBAC and ABAC modelsAbility to leverage scripting tools such as PowerShell, Python, or Bash for automationSecurity & Risk ManagementUnderstanding of IAM's role within enterprise security and risk management frameworksExperience supporting identity-related incident response and remediation effortsUnderstanding of identity threat modeling and risk assessment conceptsCollaboration & LeadershipExperience partnering with cybersecurity, infrastructure, development, and business teamsStrong communication, troubleshooting, and analytical problem-solving skillsAbility to lead initiatives and mentor junior team membersPreferred Qualifications5+ years of direct IAM engineering experienceIndustry certifications such as CISSP, CISA, CISM, GIAC, CRISC, CGEIT, or similarExperience working within DevOps environmentsExperience leading IAM projects from inception through deliveryUnderstanding of financial services regulatory and audit environments preferredInterested in hearing more? Easy Apply now by clicking the "Apply Now" button.Jobot is an Equal Opportunity Employer. We provide an inclusive work environment that celebrates diversity and all qualified candidates receive consideration for employment without regard to race, color, sex, sexual orientation, gender identity, religion, national origin, age (40 and over), disability, military status, genetic information or any other basis protected by applicable federal, state, or local laws. Jobot also prohibits harassment of applicants or employees based on any of these protected categories. It is Jobot's policy to comply with all applicable federal, state and local laws respecting consideration of unemployment status in making hiring decisions.Sometimes Jobot is required to perform background checks with your authorization. Jobot will consider qualified candidates with criminal histories in a manner consistent with any applicable federal, state, or local law regarding criminal backgrounds, including but not limited to the Los Angeles Fair Chance Initiative for Hiring and the San Francisco Fair Chance Ordinance.Information collected and processed as part of your Jobot candidate profile, and any job applications, resumes, or other information you choose to submit is subject to Jobot's Privacy Policy, as well as the Jobot California Worker Privacy Notice and Jobot Notice Regarding Automated Employment Decision Tools which are available at jobot.com/legal.By applying for this job, you agree to receive calls, AI-generated calls, text messages, or emails from Jobot, and/or its agents and contracted partners. Frequency varies for text messages. Message and data rates may apply. Carriers are not liable for delayed or undelivered messages. You can reply STOP to cancel and HELP for help. You can access our privacy policy here: jobot.com/privacy-policy