Manager, Identity Engineering

About The Position

Requirements

• Bachelor’s Degree in Computer Science or equivalent experience
• Demonstrated experience leading enterprise-scale IAM or security platform engineering teams
• Deep expertise in IAM and PAM architectures, including identity federation, access governance, and privileged access models
• 7+ years of experience in identity services
• Experience leading analysts and auditors on user entitlement reviews and access certifications, including interpretation of findings and translation into durable IAM and RBAC improvements
• Strong understanding of access governance concepts such as RBAC, entitlement modeling, separation of duties, and attestation frameworks
• Experience setting technical standards and architectural direction for identity services across a large organization
• Background in engineering or architecture roles supporting IAM/PAM platforms, with an emphasis on automation and scalability
• Ability to translate business, risk, and compliance drivers into durable technical solutions
• Experience with onboarding applications for access to entitlements, provisioning, and de-provisioning of users
• Participation in technical research and development to enable continuing innovation for Cyber Security and Information Risk management

Responsibilities

• Own the enterprise IAM & PAM engineering delivery, multi‑year roadmaps aligned to Zero Trust, cloud adoption, and regulatory requirements.
• Provide oversight and subject‑matter leadership for user entitlement reviews, including review scope, frequency, and risk-based criteria, validating findings, and partnering with analysts and control owners to remediate access gaps and strengthen access governance.
• Lead and mentor a team of identity engineers, fostering a culture of automation, reliability engineering, and continuous improvement.
• Serve as the architectural authority for identity services, including authentication, authorization, federation, and privileged access patterns.
• Drive the evolution of Role-Based Access Control (RBAC) and access governance as scalable, policy-driven platforms rather than manual processes.
• Partner with Security, Compliance, Legal, and Enterprise Architecture to translate regulatory and risk requirements into engineered identity capabilities.
• Establish standards and guardrails for application onboarding, entitlement modeling, and lifecycle integration across the enterprise.
• Influence and align with adjacent platform teams (cloud, infrastructure, application engineering) to ensure identity is embedded by design.
• Champion modernization initiatives such as API-driven provisioning, identity federation expansion, and privileged access automation.
• Represent Identity Engineering in enterprise forums, architecture reviews, and strategic initiatives.