Job Closed
This listing is no longer active.
Health as it should be.
Security Engineer – Identity and Access Management
Location
United States
Posted
177 days ago
Salary
$110.8K - $149.6K / year
Seniority
Senior
Job Description
Security Engineer – Identity and Access Management
Crossover Health
• Serve as the primary administrator for Okta and other IAM platforms, managing user identities, access policies, and integrations with internal and third-party applications. • Design, configure, and maintain SSO and SAML/OIDC integrations to enable secure and efficient authentication for both internal and external users across SaaS and custom applications. • Develop and deploy Okta Workflows and APIs to automate identity lifecycle events, access requests, access grants, and deprovisioning processes to ensure timely and compliant access control. • Collaborate with Security, HR, and IT to implement access review programs and ensure role-based access control (RBAC), least privilege, and segregation of duties across the environment. • Translate security policies and compliance requirements into technical IAM controls and configurations, ensuring alignment with company policies and industry best practices. • Support incident response and audit activities by providing identity-related data, analysis, and remediation recommendations for access-related events or anomalies. • Maintain detailed documentation of identity systems, integrations, and workflows, and provide training and guidance to IT and business stakeholders on access management best practices.
Job Requirements
- 6+ years of experience in Information Security or IT with a focus on IAM
- 2+ years of hands-on experience administering Okta or equivalent enterprise IAM platforms
- Proven experience building and maintaining SSO/SAML/OIDC integrations
- Proficiency with Okta Workflows, Okta APIs, and automation using scripting (e.g., Python, PowerShell)
- Familiarity with modern authentication standards (SAML, OAuth2, OIDC, SCIM, MFA)
- Experience implementing RBAC, JIT provisioning, and lifecycle management across multiple environments
- Strong understanding of IAM principles, Zero Trust architecture, and security best practices
- Demonstrated ability to partner effectively across Security, IT, and HR functions
- Experience supporting audits, compliance reviews, or SOX/SOC2-related access controls
- Excellent communication, documentation, and problem-solving skills
- Ability to manage competing priorities in a dynamic, fast-paced environment
- Available to work after hours and weekends as needed
- Security related certifications, such as CISSP and/or other professional certifications
- Okta Certified Professional or Okta Certified Expert certification
- Experience with other IAM platforms (e.g., Azure AD, Ping Identity, ForgeRock, CyberArk, Saviynt, SailPoint)
- Experience with identity governance and access review tools or IGA implementations
- Familiarity with cloud platform IAM (AWS IAM, Azure AD, GCP IAM)
- Experience integrating identity data from HRIS and ITSM systems (e.g., Workday, ServiceNow)
- Experience with identity analytics and reporting for compliance and audit support
- Knowledge of infrastructure-as-code and automation frameworks (e.g., Terraform, GitHub Actions)
- Strong understanding of data privacy regulations (HIPAA, GDPR, CCPA) and their impact on identity management.
Benefits
- Medical Insurance
- Dental Insurance
- Vision Insurance
- Short- and Long-Term Disability
- Life Insurance
- Paid Time Off
- 401K
Related Guides
Related Categories
Related Job Pages
More Security Engineer Jobs
Principal Security Engineer, Emerging Technology
DraftKings Inc.Defining what it means to build and deliver the most extraordinary sports & entertainment experiences.The Crown is Yours
• Lead large-scale security reviews of new capabilities. • Design, build and implement tools for safe technology use. • Spearhead automation of security processes. • Drive remediation efforts of complex, cross-functional security issues. • Collaborate with technical and non-technical contributors to balance usability and safety.
Information Security Director – Governance, Risk, and Compliance (GRC)
Procter & GambleProcter & Gamble, or P&G, is the parent company behind some of the world's most recognizable household and personal care brands. The company was established in
• Maintain and evolve the information security policy framework and controls • Manage the enterprise risk management process including risk identification • Ensure compliance with applicable regulations and frameworks • Collaborate cross-functionally with IT, Legal, Privacy, and Business Operations teams
Product Security Engineer
ClickHouseClickHouse is an open-source, column-oriented OLAP database management system.
• Collaborate with engineering and product on improving existing and building new product features with focus on threat modeling, assurance and secure implementation, some examples of recent work include implementation of secure key management, passwordless authentication, m2m authentication, sandboxing and compute/network/storage isolation • Identify security gaps and vulnerabilities in ClickHouse Cloud and OSS, triage a wide range of vulnerabilities reported via our bug bounty program, responsible disclosure, GitHub Issues covering web, API and server - client assets including low level memory issues like heap or buffer overflows • Improve and develop security assurance activities - pentests, vulnerability assessments, bug bounty programs, fuzzing • Drive implementation and usage of engineering security tools - static, dynamic code analysis, dependency checks, code licensing compliance (working knowledge of Snyk, Semgrep, GitHub CodeQL) • Nurture the engineering - security relationship, identify and implement process and technology improvements • Handle information security events and incidents across ClickHouse products and services • Develop processes, tooling and automation to scale security processes and mitigate risks to the business
Product Security Engineer
ClickHouseClickHouse is an open-source, column-oriented OLAP database management system.
• Collaborate with engineering and product on improving existing and building new product features with focus on threat modeling, assurance and secure implementation, some examples of recent work include implementation of secure key management, passwordless authentication, m2m authentication, sandboxing and compute/network/storage isolation • Identify security gaps and vulnerabilities in ClickHouse Cloud and OSS, triage a wide range of vulnerabilities reported via our bug bounty program, responsible disclosure, GitHub Issues covering web, API and server - client assets including low level memory issues like heap or buffer overflows • Improve and develop security assurance activities - pentests, vulnerability assessments, bug bounty programs, fuzzing • Drive implementation and usage of engineering security tools - static, dynamic code analysis, dependency checks, code licensing compliance (working knowledge of Snyk, Semgrep, GitHub CodeQL) • Nurture the engineering - security relationship, identify and implement process and technology improvements • Handle information security events and incidents across ClickHouse products and services • Develop processes, tooling and automation to scale security processes and mitigate risks to the business
