CrawlJobs Logo

Identity and Access Management Engineer

archer.com Logo

Archer Aviation

Location Icon

Location:
United States , San Jose

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

133400.00 - 200000.00 USD / Year
Save Job
Save Icon
Apply Position

Job Description:

We are seeking an Identity and Access Management Engineer to design and protect Archer's identity ecosystem. You are a proactive, team-oriented communicator who understands the bigger picture. The ideal candidate will develop and deploy enterprise-level authentication, authorization, and privileged access solutions that support our critical systems while ensuring compliance with CMMC Level 2, NIST SP 800-171, SOX, and ITAR. This role requires deep technical expertise in modern identity platforms (such as Okta, Google Identity Platform, AWS Identity Center, Azure AD), privileged access management (Delinea), identity governance, and Zero Trust principles. You will collaborate with infrastructure, security, and compliance teams to create scalable, auditable access controls that improve operational efficiency and security.

Job Responsibility:

  • Design and implement Zero Trust Architecture (ZTA) across Archer's enterprise network, eliminating implicit trust and enforcing continuous verification of user identity and device posture before granting access
  • Architect and maintain Okta as the authoritative Identity Provider (IdP) for Archer, managing Single Sign-On (SSO), Multi-Factor Authentication (MFA), and user lifecycle management across all enterprise applications and SaaS platforms
  • Design and implement Privileged Access Management (PAM) using Delinea, including credential vaulting, privileged session management, and automated credential rotation for administrative and service accounts
  • Implement Identity Governance and Administration (IGA) controls to enforce role-based access control (RBAC), segregation of duties, periodic access reviews, and just-in-time (JIT) access provisioning
  • Build and maintain federated identity standards (OIDC, SAML, SCIM) to enable secure integration between Archer's identity platform and third-party applications, cloud providers, and vendor systems
  • Conduct access control audits and design remediation strategies to ensure compliance with NIST SP 800-171 Access Control (AC) requirements, CMMC Level 2 practices, and SOX ITGC expectations for financial systems
  • Implement automated audit logging and session recording for all authentication and privileged access events, ensuring that individual users' actions can be uniquely traced for compliance investigations and forensic analysis
  • Secure third-party and contractor access by implementing time-limited, role-restricted access provisioning and automated de-provisioning upon project completion or relationship termination
  • Stay current with emerging identity threats, attack vectors, and security best practices, including insider threats, account takeover (ATO), and lateral movement techniques
  • Provide technical guidance and training to IT, application, and security teams on identity best practices and policy enforcement

Requirements:

  • 5 plus years of experience in Identity and Access Management or related roles, with a minimum of 2 years in a senior or architect-level capacity
  • Hands-on design and implementation experience with enterprise Identity Providers such as Okta, Azure AD (Active Directory), or Ping Identity
  • Deep technical understanding of authentication protocols and standards, including OIDC, SAML, OAuth 2.0, and LDAP
  • Extensive experience designing and operating Privileged Access Management (PAM) solutions, preferably Delinea, including credential vaulting, session recording, and approval workflows
  • Working knowledge of RBAC (Role-Based Access Control) design and implementation, with the ability to map complex organizational hierarchies to access policies
  • Experience implementing and managing Multi-Factor Authentication (MFA) technologies such as FIDO2, Okta Verify, Duo Security, YubiKey, and PKI-based authentication
  • Strong understanding of NIST SP 800-171 and CMMC Level 2 requirements, specifically as they relate to access control, audit logging, and identity governance
  • Proficiency in scripting and automation using PowerShell, Python, or Bash to automate identity workflows, audit processes, and integrations
  • Excellent communication skills to translate complex identity architecture and compliance requirements to both technical teams and executive leadership

Nice to have:

  • Hands-on experience architecting and implementing Zero Trust Architecture (ZTA) across enterprise networks
  • Experience with Identity Governance and Administration (IGA) platforms such as SailPoint or Okta Identity Governance
  • Knowledge of SCIM (System for Cross-Domain Identity Management) and REST APIs for automating user provisioning and de-provisioning across SaaS applications and HR systems
  • Familiarity with aerospace, defense, or federal contractor environments, including experience with ITAR, CMMC enforcement, or DoD contract requirements
  • Experience conducting or participating in CMMC Level 2 assessments or NIST 800-171 compliance audits
  • Relevant security certifications such as CISSP, CISM, and Okta Certified Administrator, or Azure Administrator (AZ-104)
  • Experience with insider threat detection, behavioral analytics, and anomalous access pattern identification
  • Knowledge of Single Sign-On (SSO) attacks, credential stuffing, phishing-resistant MFA, and modern attack techniques against identity systems
  • Direct experience with compliance frameworks, ISO 27001, PCI, HIPAA, ITAR/ EAR, NIST 800-171, CMMC, CUI, and DO-326A
  • Advanced degrees in Computer Science, Cybersecurity, or Engineering

Additional Information:

Job Posted:
March 10, 2026

Employment Type:
Fulltime
Work Type:
Hybrid work
Icon
Archer Aviation - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Identity and Access Management Engineer

Identity & Access Management (IAM) Engineer

As a member of the Information Services Department, the Identity & Access Manage...
Location
Location
United States , Pittsburg, Philadelphia, Warrington, Exton, or Blue Bell
Salary
Salary:
Not provided
benchmarkmakers.com Logo
Benchmark Makers
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in information security or related field required
  • Minimum of five years in an IAM role required
  • Knowledge of Authentication Frameworks (SAML, OAuth, JWT, API Tokens)
  • Experience using languages such as Powershell, Python, or other current programming and scripting languages
  • Working knowledge of Active Directory/EntraID and their sub-services (Authentication, Authorization, Conditional Access, Multifactor, etc.)
  • Strong analytical and problem-solving skills to enable effective security event and problem resolution
  • Proficiency in working with APIs using Rest/Soap/Oauth
  • IGA experience required, preferably Sailpoint
  • Knowledge of compliance standards (HIPAA, CCPA, GDPR, etc.)
  • Knowledge of RBAC/ABAC principles and their implementations
Job Responsibility
Job Responsibility
  • Design and Implement Authentication and Authorization frameworks to protect systems and information
  • Develop and Maintain Single Sign-On configurations used by the organization
  • Create and develop IAM solutions for internal requirements and client requests
  • Collaborate and coordinate with other teams to establish security protocols across the Firm
  • Develop and maintain IGA solutions to provide efficient and effective lifecycle and access management
  • Create, develop, and maintain enforcement mechanisms to ensure that Firm policies are being adhered to across the Firm
  • Administration of Active Directory and EntraID services
  • Management of Enterprise and Team level projects while achieving deadlines set by the Firm
  • Respond and resolve to tickets incoming from End Users and other IT Members
  • Responsible for the development and administration of the IGA and PAM systems
  • Fulltime
Read More
Arrow Right

Identity & Access Management (IAM) Engineer

As a member of the Information Services Department, the Identity & Access Manage...
Location
Location
United States , Raleigh
Salary
Salary:
Not provided
benchmarkmakers.com Logo
Benchmark Makers
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in information security or related field required
  • Minimum of five years in an IAM role required
  • Knowledge of Authentication Frameworks (SAML, OAuth, JWT, API Tokens)
  • Experience using languages such as Powershell, Python, or other current programming and scripting languages
  • Working knowledge of Active Directory/EntraID and their sub-services (Authentication, Authorization, Conditional Access, Multifactor, etc.)
  • Strong analytical and problem-solving skills
  • Proficiency in working with APIs using Rest/Soap/Oauth
  • IGA experience required, preferably Sailpoint
  • Knowledge of compliance standards (HIPAA, CCPA, GDPR, etc.)
  • Knowledge of RBAC/ABAC principles and their implementations
Job Responsibility
Job Responsibility
  • Design and Implement Authentication and Authorization frameworks to protect systems and information
  • Develop and Maintain Single Sign-On configurations used by the organization
  • Create and develop IAM solutions for internal requirements and client requests
  • Collaborate and coordinate with other teams to establish security protocols across the Firm
  • Develop and maintain IGA solutions to provide efficient and effective lifecycle and access management
  • Create, develop, and maintain enforcement mechanisms to ensure that Firm policies are being adhered to across the Firm
  • Administration of Active Directory and EntraID services
  • Management of Enterprise and Team level projects while achieving deadlines set by the Firm
  • Respond and resolve to tickets incoming from End Users and other IT Members
  • Responsible for the development and administration of the IGA and PAM systems
  • Fulltime
Read More
Arrow Right

Identity and Access Management Engineer

Do you have experience designing and implementing Identity and Access Management...
Location
Location
Australia , Melbourne
Salary
Salary:
Not provided
easygo.io Logo
Easygo Gaming
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum 3-5 years hands-on experience administering and architecting enterprise Identity and Access Management systems, particularly Okta or similar IAM platforms
  • Advanced technical expertise with modern identity protocols and standards including OIDC (OpenID Connect), SAML, and SCIM implementations
  • Proven experience managing Google Workspace as an Identity Provider, including application integrations and access management
  • Demonstrated ability to design identity architectures that balance security requirements with user experience and operational efficiency
  • Track record of successfully evaluating, selecting, and implementing identity technologies in production environments
  • Experience configuring SSO integrations for SaaS and enterprise applications using federated identity protocols
  • Strong understanding of authentication mechanisms including Multi-Factor Authentication (MFA), passwordless authentication, and passkey technologies
  • Practical knowledge of authorization models, role-based access control (RBAC), and attribute-based access control (ABAC) concepts
Job Responsibility
Job Responsibility
  • Design and architect enterprise identity and access management solutions that scale across nearly 2,000 global employees while maintaining security and operational efficiency
  • Serve as the organization's IAM subject matter expert, providing authoritative guidance on identity technologies, standards, and best practices to stakeholders across IT, Security, and Development teams
  • Develop comprehensive identity architecture roadmaps to uplift and modernize access control systems across the organization, aligning with business growth and security requirements
  • Evaluate, procure, and implement identity tools and platforms to continuously enhance IAM capabilities and address evolving organizational needs
  • Manage and optimize Google Workspace as the primary Identity Provider, ensuring seamless integration with enterprise applications and services
  • Configure and maintain enterprise identity systems including Okta and related IAM platforms, implementing OIDC, SAML, and SCIM integrations for application access
  • Provide expert consultation to product and engineering teams on customer-facing authentication systems, advising on MFA implementation, passkey adoption, and secure authentication flows
  • Design and enforce access control policies and authorization frameworks in alignment with least privilege and zero trust principles
  • Lead identity-related projects from conception to deployment, managing stakeholder expectations and delivering measurable improvements to identity operations
  • Automate identity lifecycle management processes including provisioning, de-provisioning, and access recertification workflows
What we offer
What we offer
  • In-house baristas serving free coffee, tea, fresh juices, and smoothies
  • Daily catered breakfast and regular company-wide events
  • Snack walls and drink fridges on every floor
  • Fun /modern office spaces with pool tables, table tennis, gaming consoles, and an F1 simulator
  • Access to our Employee Assistance Program for you and your loved ones
  • 9,000+ courses on our Learning & Development platform
  • One paid volunteer day per year
  • Weekly Wednesday massages by professional masseuses
  • Team budgets for lunches and activities to celebrate achievements
  • Social sports teams and participation in Corporate Games
  • Fulltime
Read More
Arrow Right

Manager, Information Systems Engineering - Identity & Access Management

We are seeking a Manager of Information Systems Engineering, to lead the Identit...
Location
Location
United States , Albuquerque
Salary
Salary:
157100.00 - 267000.00 USD / Year
sandia.gov Logo
Sandia National Laboratories
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree, in a relevant field plus eight (8) years of relevant experience
  • or equivalent combination of relevant education and experience (equal to 16 years of exempt level work)
  • Experience leading or managing programs, projects, services, and/or teams
  • Ability to obtain and maintain an active DOE Q-level security clearance
Job Responsibility
Job Responsibility
  • Provide leadership and oversight for all identity and access services
  • Develop strategy for technology maturation of critical technologies, lead projects and help develop service roadmaps for the team
  • Articulate a clear vision and strategy for the Identity and Access Management team
  • Support full lifecycle management (analysis, design, development, testing, implementation, integration and maintenance) for Enterprise IT solutions, services, and applications
  • Collaborate with customers, vendors, and IT partners across Sandia to provide innovative design solutions
  • Deliver results, effectively manage people, and guide multidisciplinary teams
  • Mentor and lead the organization on department tasks and organizational goals and objects
  • Knowledge of technical business development
  • Organize, prioritize, and follow through to completion on multiple tasks and projects
  • Work with sensitive information and classified matter
What we offer
What we offer
  • Challenging work with amazing impact
  • Extraordinary co-workers
  • Some of the best tools, equipment, and research facilities in the world
  • Career advancement and enrichment opportunities
  • Flexible work arrangements for many positions include 9/80 and 4/10 compressed workweeks, part-time work, and telecommuting
  • Generous vacation, strong medical and other benefits, competitive 401k, learning opportunities, relocation assistance and amenities aimed at creating a solid work/life balance
  • Fulltime
Read More
Arrow Right

Principal Technical Program Manager - Identity

Join Atlassian Identity and enable teams across 300,000+ companies world-wide to...
Location
Location
United States
Salary
Salary:
200700.00 - 262025.00 USD / Year
https://www.atlassian.com Logo
Atlassian
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 3+ years of development or TPM experience in cloud identity and access management
  • 8+ years of experience on software teams as Development Manager or TPM
  • Technical understanding of identity and access technologies and standards
  • TPMs are not expected to write or read code, but are expected to understand system flows, block architectures, APIs etc.
  • Experience defining and running end-to-end complex technical programs
  • Strong leadership, organizational, and communication skills
Job Responsibility
Job Responsibility
  • Customer Development: Understand and prioritize critical unmet identity and access management needs of Atlassian's enterprise customers
  • Platform Program Management: Design solutions that evolve the identity platform in a cohesive manner and address the unmet needs of customers
  • Strategic Planning: Understand business objectives and design solutions and programs and collaborate with stakeholders across Atlassian's suite of products to develop long-term strategies and roadmaps
  • Technical Collaboration: Partner with engineers and architects to address technical challenges and drive solutions
  • Risk and Communication: Identify risks, develop mitigation strategies, and communicate program/key results status to stakeholders
What we offer
What we offer
  • health and wellbeing resources
  • paid volunteer days
Read More
Arrow Right

Functional Specialist Identity Access Single Sign On Provisioning Services

Citi Singapore is seeking a highly motivated and experienced Functional Speciali...
Location
Location
Singapore , Singapore
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8-10 years of overall Information Technology (IT) experience
  • Minimum of 3 years of dedicated experience in the Identity & Access Management (IAM) domain
  • Basic proficiency with UNIX/Linux terminal commands, including performing system diagnostics and restarting services
  • Understanding of middleware technologies such as IHS (IBM HTTP Server) and WASND (WebSphere Application Server Network Deployment)
  • Familiarity with project and task management tools such as JIRA
  • Experience with Change Management processes using Service Now
  • Proficiency in documentation and collaboration platforms like Confluence
  • Experience with monitoring tools such as Splunk and AppDynamics is a significant advantage
  • Excellent written and verbal communication skills, essential for working with global teams and diverse stakeholders
  • Strong analytical and problem-solving abilities
Job Responsibility
Job Responsibility
  • Proactively engage with stakeholders to gather, analyze, and document functional requirements for services under the team's responsibility
  • Translate business needs into clear, concise, and comprehensive Business Requirements Documents (BRDs)
  • Develop detailed test plans and test cases to ensure comprehensive coverage of functional requirements
  • Execute functional testing, analyze results, and report defects in a timely manner
  • Collaborate with development teams to ensure issues are resolved effectively
  • Coordinate and perform application deployments for IAM SSO provisioning services
  • Conduct thorough post-deployment checkouts to verify successful implementation and service stability
  • Provide ad-hoc support during out-of-office hours and weekends as required
  • Participate in a rotational schedule for weekend service health checks, typically once or twice a month
  • Work closely with global team members, fostering strong collaborative relationships across different time zones
  • Fulltime
Read More
Arrow Right

Manager, Site Reliability Engineering and Incident Management

Planet DDS is seeking a Manager, Site Reliability Engineering and Incident Manag...
Location
Location
United States , Atlanta
Salary
Salary:
118000.00 - 160000.00 USD / Year
planetdds.com Logo
Planet DDS
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7+ years in SRE, DevOps, or Infrastructure roles
  • 3+ years in Incident Management leadership
  • Deep understanding of reliability, scalability, and performance optimization
  • Multi-cloud expertise in AWS, Azure, or GCP
  • Understanding of DNS, load balancing, firewalls, and compliance frameworks
  • Knowledge of fundamental cloud security (e.g., identity and access management, firewalls)
  • Deep understanding of logging and monitoring and security best practices
  • Strong collaboration and communication skills
  • Bachelor’s Degree in a relevant major or equivalent years of experience is a plus
Job Responsibility
Job Responsibility
  • Lead and mentor a team of SREs and Incident Managers
  • Foster a culture of reliability, accountability, and continuous improvement
  • Collaborate with engineering teams to design resilient platform architectures
  • Oversee the incident response process for outages and service disruptions
  • Ensure timely detection, escalation, and resolution of incidents
  • Drive post-incident reviews (PIRs) and root cause analysis
  • Implement improvements based on lessons learned to prevent recurrence
  • Mature and enforce best practices for incident response and runbooks
  • Automate operational tasks to reduce toil and improve efficiency
  • Maintain observability tools (monitoring, alerting, logging)
  • Fulltime
Read More
Arrow Right

Identity Security Engineer

WiseTech Global is a world-leading software company building software for the gl...
Location
Location
Australia , Sydney
Salary
Salary:
Not provided
blumeglobal.com Logo
Blume Global
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 3+ years of demonstrated experience in a developer, systems engineering, or security engineering role
  • Automation and coding skills, with proficiency in Python or a similar language
  • Understanding of identity management concepts, security standards, protocols, and best practices (e.g., authentication, authorization, SSO, SAML, OIDC, AD)
  • Strong analytical and problem-solving skills to troubleshoot and resolve issues
  • Ability to communicate and collaborate effectively with cross-functional teams
Job Responsibility
Job Responsibility
  • Onboard and support the integration of services into identity processes and solutions
  • Operate the organization's identity and access management (IAM) systems and processes
  • Develop and maintain automation to support operational use cases
  • Configure, troubleshoot, and maintain security infrastructure
  • Triage, handle, or escalate security issues as needed
  • Solve security challenges, contributing to solutions
  • Collaborate across the company on security initiatives and processes to ensure compliance and alignment with business goals
Read More
Arrow Right
Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Germany Jobs Ireland Jobs Poland Jobs
Company
Blog About Us Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
CrawlJobs Group
ITFlashcards AllDevBlogs
© 2026 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy