Associate Director, Information Security Engineering – IAM

About The Position

Requirements

• Deep IAM Domain Expertise: A leader with the ability to translate strategy into concrete engineering execution and act as the sole IAM architecture and engineering authority in a complex enterprise.
• Strategic & Tactical Execution: A proven ability to think strategically to create a long-term vision and the tactical skills to drive the execution of that vision.
• Problem-Solving: The ability to own complex problems from start to finish, driving toward creative and effective solutions in a dynamic environment.
• Leadership & Influence: A collaborative leader who seeks input, fosters partnerships, and can influence effectively across all levels of the organization, delivering crisp, concise messages tailored for maximum impact.
• Bachelor's degree in Computer Science, Information Security, or a related field.
• 10+ years of experience in information security, with a minimum of 5 years in a leadership role focused on building and managing an IAM/IGA/PAM program in a large, complex enterprise.
• Expert-level knowledge of identity protocols (SAML, OAuth 2.0, OpenID Connect)
• Hands-on experience with leading IAM, IGA, and PAM solutions (e.g., Active Directory, Entra ID, SailPoint, Ping, ForgeRock, Delinea).
• Solid experience managing and mentoring senior engineers and technologists.
• Strong understanding of cloud security (AWS, GCP, Azure) and experience securing SaaS, APIs, and non-human identities.

Nice To Haves

• Master’s degree and/or relevant certifications (e.g., CISSP, CISM, CCSP) are preferred.
• Exposure to Zero Trust architecture and securing GenAI platforms is a plus.

Responsibilities

• Partner with senior leadership and your product management counterpart to define and execute the technical strategy and roadmap for IAM, IGA, and PAM, aligned with Zero Trust principles.
• Serve as the lead design authority for all identity security architecture, defining the enterprise standards, patterns, and engineering decisions to be followed.
• Lead the end-to-end engineering lifecycle for all workforce and customer IAM solutions, including authentication, authorization, SSO, MFA, and conditional access.
• Drive the automation of Identity Governance and Administration (IGA), including joiner/mover/leaver (JML) processes, access certifications, and the implementation of role-based and attribute-based access models (RBAC/ABAC).
• Own and mature the enterprise Privileged Access Management (PAM) program, focusing on reducing standing privileges through credential vaulting, rotation, and Just-in-Time (JIT) access.
• Architect modern identity solutions for cloud platforms (AWS, Azure, GCP) and SaaS ecosystems, securing federated identities, APIs, and non-human workload identities.
• Partner with Cloud and Platform teams to embed identity controls directly into CI/CD pipelines and DevOps workflows (DevSecOps).
• Lead the integration of IAM, IGA, and PAM telemetry with SIEM and SOAR platforms to enhance the organization's threat detection and response capabilities.
• Act as the senior technical expert during security investigations and incident response related to account compromise, privilege escalation, and insider risk.
• Lead the strategy for the intersection of AI and Identity by both governing the secure implementation of AI-enabled identity capabilities and architecting the identity framework required to secure the company’s AI platforms and non-human workloads.
• Drive key, cross-functional IAM initiatives from concept to completion, defining and tracking measurable outcomes tied to risk reduction and operational efficiency.
• Lead, mentor, and grow a high-performing team of security engineers and architects, fostering a culture of innovation and excellence.
• Build strong, collaborative relationships with stakeholders across IT, Engineering, HR, Legal, and Risk to ensure IAM services enable the business securely.
• Communicate identity risks, architecture decisions, and program progress effectively to executive stakeholders.

Benefits

• We offer comprehensive package of benefits including paid time off, medical/dental/vision insurance, 401(k), and a suite of well-being benefits to eligible employees.