about 4 hours ago
Base Salary
$189k - $256k/yr
Responsibilities
- Drive the organization's zero trust strategy end to end.
- Design and maintain least-privilege access patterns and Privileged Access Management controls.
- Deploy and maintain MDM infrastructure for macOS devices.
- Enforce SSO-required policies and audit third-party integration access.
- Build processes to detect shadow IT and unauthorized OAuth app grants.
- Evaluate and deploy AI-native security tooling.
- Define and enforce security standards for AI agent identities.
- Develop and enforce CIS/NIST-aligned configuration baselines.
- Reduce manual toil through automation and AI-assisted tooling.
Requirements
- 5+ years in a security engineering or IAM-focused role.
- Deep, hands-on IdP expertise, preferably with Okta.
- Experience implementing zero trust architecture in practice.
- Strong knowledge of identity protocols: SAML, OIDC, OAuth 2.0, and SCIM.
- Proficiency managing macOS endpoints at scale using an MDM platform.
- Foundational cloud IAM experience across at least one major provider.
- Demonstrated track record of building automation to eliminate manual work.
- Scripting proficiency in at least one language, preferably Python.
- Excellent communication skills for engaging with technical and non-technical stakeholders.
- Strong understanding of operating systems fundamentals.
Benefits
- Flexible hybrid work arrangement with in-office collaboration.
- Employees are expected to be on-site 3 days per week.