This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more. Role Description As a Senior Security Engineer II for Identity and Access Management (IAM) at Aledade, you will play a central role in enhancing the security posture of our enterprise, cloud-native environments, and applications. We are seeking a dedicated professional with in-depth knowledge of IAM principles, standards, and best practices to help safeguard our systems and support our security compliance initiatives. In this role, you will work to design, implement, and maintain robust IAM solutions, managing authentication, authorization, and provisioning across diverse platforms. You will also collaborate closely with various teams to ensure alignment between IAM solutions and organizational security requirements, enabling secure and seamless access across the enterprise and cloud services. Your ability to partner cross-functionally will be key to driving impactful outcomes and further strengthening our digital landscape. Primary Duties - Working cross functionally to design, build, and operate solutions that continuously improve and automate our security capabilities. - Leveraging data to understand trends, metrics, and opportunities to improve our security posture and then helping execute on those opportunities with stakeholders. - Leading and enhancing incident response efforts, spearheading analysis, containment, and mitigation strategies in a cross-functional environment to ensure effective resolution and remediation of security incidents. - Helping craft and refine security documentation pertinent to our Security Program, such as policies, standards, baselines, and standard operating procedures. - Mentoring and coaching more junior engineers or analysts. Qualifications - BS / BTech (or higher) in Computer Science, Information Technology, Cybersecurity or a related field, 8 years security domain experience without degree. - 6+ years of experience in software or security engineering within Cloud Native environments. - 4+ years of experience working with large datasets to identify opportunities for security posture improvements or to detect, investigate and respond to threats. - 4+ years of experience acting as a trusted advisor in a team setting, solving for short-term and long-term business value. - 4+ years of experience coaching other engineers or analysts. Requirements - Identity & Access Management experience. - In-depth knowledge of authentication protocols, authorization mechanisms, and directory services. - Strong proficiency implementing IAM solutions within very complex environments. - Familiarity with regulatory compliance and security standards. - Experience generating automated metrics to measure service and program effectiveness and consistency. - Strong communication skills, both written and verbal, with the capability to articulate complex security issues to a diverse audience. - Automation skills: Powershell, Python, Terraform. - Expertise on Okta products - Directory, SSO, MFA, Workflows, ISPM and IGA. - Experience with tools in the security stack strongly preferred: Auth0/Entra ID/Ping Identity, Cloud Platforms - AWS/Azure/GCP. Benefits - Flexible work schedules and the ability to work remotely are available for many roles. - Health, dental and vision insurance paid up to 80% for employees, dependents and domestic partners. - Robust time-off plan (21 days of PTO in your first year). - Two paid volunteer days and 11 paid holidays. - 12 weeks paid parental leave for all new parents. - Six weeks paid sabbatical after six years of service. - Educational Assistant Program and Clinical Employee Reimbursement Program. - 401(k) with up to 4% match. - Stock options. - And much more!

• Leading the design and implementation of a policy- and standards-driven cybersecurity governance program supported by GRC tooling • Establishing and maturing a data governance and protection program across the full data lifecycle • Defining and enforcing data classification, labeling, and handling requirements • Establishing and maintaining enterprise security governance structures, roles, and accountability • Serving as a trusted advisor to business and technology stakeholders on governance, risk, and compliance matters • Driving identification, escalation, and resolution of cybersecurity GRC risks and issues • Supporting and maintaining cybersecurity compliance certifications and initiatives

• Collaborate with other teams within the Cyber Fusion Center and the wider organization. • Support Offensive Security's engagement at multiple organizational levels. • Participate in performing physical exploitation, network exploitation, and social engineering assessments. • Leverage Cyber Threat Intelligence and Offensive Security Research to develop test cases. • Help establish and lead Social Engineering and Human Risk Assurance functions. • Work with the team to provide remediation recommendations across the organization. • Develop scripts, tools, and methodologies to increase Offensive Security's capabilities. • Use AI tools to assist with Offensive Security activities. • Use MITRE ATT&CK Framework and structured attack analysis tools.

• Lead the end-to-end software supply chain security architecture for GitLab’s CI/CD platform, including SLSA Level 3 implementation and CI infrastructure hardening. • Drive cross-team technical strategy and decisions across our Software Supply Chain Security (SSCS) stage teams, aligning engineering work to SSCS strategic plans. • Collaborate with infrastructure and CI/CD teams to design and land long-term initiatives for secure, scalable runner architecture, container isolation, and pipeline security at scale. • Propose and validate technical implementations that support architectural changes to improve CI/CD scaling and performance on critical paths. • Teach, mentor, and coach Staff Engineers and individual contributors, raising the bar on supply chain threat modeling, secrets management, artifact signing, and SBOM lifecycle practices. • Partner with Engineering Managers and senior leadership to define roadmaps, break down complex initiatives, and enable Staff Engineers to lead sub-department-wide efforts. • Engage with customers and external stakeholders as a technical consultant and spokesperson for GitLab’s software supply chain security capabilities and roadmap. • Collaborate with product, security, and compliance stakeholders to ensure features meet enterprise security, governance, and regulatory expectations in the software supply chain security market.