CrawlJobs Logo

Senior IAM Automation Engineer

United States, Austin Employment contract 108800.00 - 136000.00 USD / Year · Job Posted May 03, 2026
Apply Position
Job Link Share

Job Description

We’re seeking a Senior IAM Automation Engineer to transform how Apex manages workforce identity and access management. This role combines DevOps/SRE practices with deep IAM expertise to eliminate manual, UI-based processes and build self-service, API-driven solutions that scale across our hybrid and multi-cloud environment. As a senior technical contributor, you’ll also mentor junior team members and help elevate the team’s overall automation and engineering capabilities...

Job Responsibility

  • Lead Tines platform implementation and governance - Define technical standards, architect RBAC models, and build workflows that automate employee lifecycle management, access requests, and certification campaigns
  • Build infrastructure-as-code for identity systems - Develop and maintain Terraform, PowerShell, and Python automation across hybrid infrastructure (on-prem AD/Adaxes, Entra ID, Okta, AWS IAM, GCP/GCI) to enable repeatable, version-controlled deployments with proper change management
  • Design API-driven automation and integrations - Architect scalable solutions that orchestrate identity workflows across HRIS (Workday), ticketing (ServiceNow), collaboration platforms (Slack, Teams, M365), and enterprise applications, leveraging APIs and SDKs to eliminate manual processes
  • Implement observability and self-healing capabilities - Build monitoring, alerting, and automated remediation for identity systems to reduce operational toil, improve reliability, and enable proactive issue detection across authentication flows and provisioning processes
  • Enable rapid application onboarding - Create automation frameworks and integration patterns that allow the business to onboard new SaaS applications with minimal manual intervention while maintaining security and compliance standards
  • Pioneer non-human identity (NHI) governance - Partner with SecOps to develop policies, controls, and automation for managing AI agents, LLM API keys, service accounts, bot identities, and machine-to-machine authentication as AI adoption accelerates across the organization
  • Mentor and develop junior team members - Share your hard-won experience and technical expertise to elevate the team’s capabilities. Conduct code reviews, pair programming sessions, and knowledge transfer that builds automation skills, IAM expertise, and engineering judgment across the team
  • Drive technical innovation in the identity space - Evaluate emerging tools and practices, establish CI/CD pipelines for IAM deployments, and leverage AI-powered development tools (LLMs, code generation, AI assistants) responsibly to accelerate automation delivery and stay ahead of business needs

Requirements

  • 7-10+ years in DevOps, SRE, or software engineering roles with significant IAM/identity automation focus
  • Demonstrated experience building automation solutions for enterprise IAM platforms using APIs, scripting, and infrastructure-as-code
  • Track record of implementing workflow automation or orchestration platforms in production environments
  • Understanding of both technical IAM implementations and business processes (joiner/mover/leaver, access requests, compliance)
  • Experience working in hybrid on-premises and cloud environments
  • Software development proficiency - 5+ years writing production code (Python, PowerShell, Go, or similar) with strong API and SDK integration experience
  • IAM architecture skills - Deep understanding of SSO protocols (SAML, OIDC), provisioning standards (SCIM), directory services (Active Directory, Entra ID), and enterprise IAM platforms (Okta strongly preferred)
  • Infrastructure-as-Code mastery - Hands-on experience with Terraform, Ansible, or similar tools, plus CI/CD pipelines for automated deployments
  • DevOps/SRE practices - Experience building observable, reliable systems with appropriate monitoring, logging, and incident response capabilities
  • Workflow automation platforms - Demonstrated ability to implement and govern low-code/code-first automation tools (Tines, Workato, n8n, or similar)
  • Enterprise SSO and IAM (Okta, Entra ID/Azure AD)
  • Directory services and management (Active Directory, Adaxes)
  • Cloud IAM (AWS IAM, GCP Cloud Identity)
  • Workflow automation (Tines preferred, or similar platforms)
  • Integrations with HRIS systems (Workday, BambooHR, ADP)
  • Problem-solving ability - Experience debugging complex distributed systems, analyzing API integrations, and optimizing automated workflows
  • Pragmatic engineering - Balance between perfect and done
  • build iteratively with continuous improvement
  • AI-augmented productivity - Comfortable leveraging AI tools (LLMs, code assistants, AI pair programming) responsibly to accelerate development while maintaining code quality and security
  • Forward-thinking security - Interest in emerging IAM challenges like non-human identities, AI agent governance, and machine identity management
  • Mentorship and knowledge sharing - Genuine interest in developing junior engineers through code reviews, pairing, and transferring hard-won lessons from production experience
  • Technical communication - Document architecture decisions, create operational runbooks, and explain technical concepts to business stakeholders
  • Employee experience focus - Understand that internal users are customers
  • design automation that enables productivity without friction
  • Bachelor’s degree in Computer Science, Software Engineering, or related field
  • degree requirement may be substituted with equivalent years of technical experience

Nice to have

  • Experience with Tines or similar low-code automation platforms
  • Background bridging Corporate IT and Engineering teams
  • HRIS integration experience, especially with Workday
  • Familiarity with compliance requirements (SOC1/2, audit trails, access certifications)
  • Interest or experience in Non-Human Identity management
  • Demonstrated use of AI tools to enhance productivity in automation or infrastructure work
  • Active contributions to IAM automation communities or open-source projects

What we offer

  • Healthcare benefits (medical, dental and vision, EAP)
  • competitive PTO
  • 401k match
  • parental leave
  • HSA contribution match
  • paid subscription to the Calm app
  • generous external learning and tuition reimbursement benefits

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Senior IAM Automation Engineer

8 matching positions

Senior IAM Engineer - Platform Security

Citi Secure is seeking a skilled Senior IAM Engineer to join our team, focusing ...
Location
Location
United States , Jacksonville
Salary
Salary:
113840.00 - 170760.00 USD / Year
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6+ years' experience in IAM roles as it relates to the experience requirements below
  • 4+ years of hands-on Java/J2EE programming experience
  • 2+ years' experience scripting in Unix/Linux environments
  • Strong proficiency with Java IDEs (Eclipse), API testing tools (SOAP UI, Postman), LDAP clients, source control utilities (e.g., Git), and build/packaging tools (Ansible, Jenkins, Maven)
  • Extensive application security experience, with deep knowledge of SSO, Federation protocols (SAML, OpenID Connect, OAuth2), and Multi-factor Authentication (MFA)
  • Proven experience in architecting, designing, and implementing large-scale IAM solutions
  • Ability to customize, configure, and develop IAM solution integrations and independently manage project deliverables
  • Strong knowledge of application architecture, System Integration Testing (SIT), Functional Testing, and Regression Testing
  • Bachelor's Degree in Computer Science, IT, or a related field, or equivalent work experience
Job Responsibility
Job Responsibility
  • Design, implement, and maintain secure, scalable applications and infrastructure with a primary focus on Identity and Access Management (IAM) solutions
  • Manage franchise-critical security application infrastructure, including project delivery, integration, and operational subject matter expertise
  • Collaborate with cross-functional teams to gather requirements and ensure IAM solutions are strategically aligned with business needs
  • Develop robust scripts and/or Java/J2EE code to facilitate system monitoring, enhance process automation, and deliver project requirements
  • Create and diligently maintain comprehensive documentation for all IAM systems, processes, and problem resolutions within Knowledge Base tools
  • Provide expert technical application support for the security infrastructure, proactively troubleshooting and expediently resolving IAM-related issues to ensure minimal disruption
  • Conduct regular, thorough security audits, penetration testing, and SDLC validation to systematically identify and mitigate potential vulnerabilities before production deployment
  • Ensure strict adherence to internal controls and compliance standards defined by Citi
  • Proactively identify and implement automation opportunities for repetitive processes using tools like Ansible
  • Actively contribute to the strategic development, ongoing refinement, and roadmap planning for the firm's IAM initiatives
What we offer
What we offer
  • medical
  • dental & vision coverage
  • 401(k)
  • life, accident, and disability insurance
  • wellness programs
  • paid time off packages, including planned time off (vacation), unplanned time off (sick leave), and paid holidays
  • Fulltime
Read More
Arrow Right

Senior IAM Engineer

Senior, hands-on technical role responsible for owning and improving identity se...
Location
Location
United Kingdom
Salary
Salary:
70000.00 - 80000.00 GBP / Year
datacareers.co.uk Logo
DataCareers
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong hands-on experience with enterprise IAM platforms (Entra ID / Azure AD / Active Directory or similar)
  • Deep understanding of authentication vs authorisation concepts
  • Experience with SSO, federation, identity tokens and authentication flows
  • Expertise in MFA, Conditional Access and identity threat mitigation
  • Experience implementing identity governance, access controls and privilege management
  • Ability to design scalable IAM architecture within large, complex environments
  • Experience supporting audits and improving identity security posture
Job Responsibility
Job Responsibility
  • Act as the technical authority for identity and access management
  • Design and implement IAM solutions across hybrid and cloud environments
  • Improve identity lifecycle processes (Joiner / Mover / Leaver) with automation as the default
  • Define and enforce RBAC and least-privilege access models
  • Own Conditional Access policies, MFA strategy and identity security posture
  • Diagnose complex identity and authentication issues across enterprise system
  • Lead access reviews, audit responses and remediation activities
  • Produce clear technical standards, architecture documentation and best practice guidance
  • Support and mentor engineers within the wider infrastructure team
  • Fulltime
Read More
Arrow Right

Senior IAM Engineer

Location
Location
Canada , Toronto
Salary
Salary:
133500.00 USD / Year
realign-llc.com Logo
Realign
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7 years of experience on microservice implementation using JavaJ2EE, Spring framework, Gradle, NodeJS, Restful APIs, Cloud SQL, and Kafka
  • 5 years of experience in integration and ForgeRock and have deep understanding of authentication and its protocols (OIDC, SAML, OAuth) and PKI
  • 5 years of experience in automating deployment processes and working with CICD tools (Jenkins, Google Cloud Deployment, etc.)
  • Extensive experience in Identity and Access Management (IAM), with hands-on expertise in ForgeRock Identity Platform (AM, IDM, DS, IG)
  • Strong understanding of authentication and authorization protocols such as OAuth2, OpenID Connect, SAML, LDAP
  • Proven ability to design and implement IAM solutions for enterprise and cloud environments (AWS, Azure, GCP)
  • Experience with identity federation, SSO, MFA, and adaptive authentication strategies
  • Proficiency in DevOps tools (Terraform, CICD pipelines) for IAM deployment and automation
  • Solid knowledge of cybersecurity principles, risk management, and compliance frameworks
  • Strong leadership and stakeholder management skills, with experience guiding technical teams and collaborating across departments
  • Fulltime
Read More
Arrow Right

IAM Senior Engineer - Active Directory/Entra ID

HPE Global IT is seeking a highly skilled Senior Active Directory (AD), Entra ID...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or related field (or equivalent experience)
  • 10+ years of IT or cybersecurity experience
  • 7+ years focused on AD, Entra ID, and Azure identity engineering in enterprise-scale environments
  • Deep hands-on experience managing multi-forest AD environments (schema, replication, delegation, GPOs, DNS, DHCP)
  • Strong expertise with Entra ID and hybrid identity integration (Entra Connect / Cloud Sync, federation, SSO)
  • Hands-on experience with Azure governance, RBAC, PIM, and access policy enforcement
  • Experience implementing conditional access, passwordless, and phishing-resistant MFA in Entra and Azure
  • Proficiency in PowerShell scripting, Graph API, and Azure automation for identity management and reporting
  • Solid understanding of authentication protocols (Kerberos, NTLM, LDAP, SAML, OIDC, OAuth2)
  • Familiarity with Zero Trust, tiered admin models, and directory hardening practices
Job Responsibility
Job Responsibility
  • Engineer, deploy, and optimize Active Directory, Entra ID, and Azure identity services across enterprise-scale hybrid environments
  • Design and manage multi-forest AD architectures, including schema extensions, replication, delegation, and hardening
  • Implement and maintain cross-domain and cross-tenant synchronization between AD and Entra ID using Entra Connect or Cloud Sync
  • Engineer secure authentication and federation flows leveraging Kerberos, NTLM, SAML, OIDC, and OAuth2
  • Implement and enhance conditional access, MFA, passwordless, and FIDO2 authentication methods in Entra and Azure environments
  • Support Zero Trust Directory Security through tiered administration, least privilege, and delegated access controls
  • Partner with cloud and infrastructure teams to ensure secure integration of Azure resources with enterprise identity services
  • Maintain and secure domain controllers, DNS, DHCP, and Group Policy Objects (GPOs) across global environments
  • Manage Azure AD tenants, subscriptions, and resource access controls (RBAC, PIM, Entra roles)
  • Integrate on-prem AD with Azure workloads, Microsoft 365, Intune, and other SaaS applications
What we offer
What we offer
  • Health & Wellbeing benefits
  • Personal & Professional Development programs
  • Unconditional Inclusion environment
  • Comprehensive suite of benefits supporting physical, financial and emotional wellbeing
  • Fulltime
Read More
Arrow Right

Senior M365 & Iam Engineer / Developer

We are looking for a skilled and forward-thinking M365 & IAM Engineer / Develope...
Location
Location
Sweden , Gothenburg
Salary
Salary:
Not provided
amaris.com Logo
Amaris Consulting
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Microsoft 365 ecosystem (Teams, SharePoint, Power Platform, Purview)
  • Identity management with Entra ID and Active Directory (MFA, Conditional Access, policies)
  • Scripting and automation (PowerShell, Python or similar)
  • Azure services, particularly Azure Functions and Logic Apps
  • API integrations (Graph API, PnP)
  • Modern development practices (Infrastructure as Code, GitOps, CI/CD, GitHub Actions)
  • Understanding of event-driven systems and scalable architecture
  • 7–10 years of experience (Senior level)
  • English (fluent) and Swedish (fluent) - both mandatory
Job Responsibility
Job Responsibility
  • Design, configure, and continuously improve Microsoft 365, Entra ID, and Active Directory environments
  • Build integrations between enterprise systems (e.g., HR and IT platforms) using event-driven architectures
  • Automate processes and workflows using tools such as PowerShell, Graph API, Azure Functions, and Logic Apps
  • Develop solutions within the Microsoft ecosystem (Teams, SharePoint, Power Platform) to enhance collaboration
  • Manage and optimize hybrid identity environments across on-prem and cloud platforms
  • Implement modern engineering practices such as Infrastructure as Code, GitOps, and CI/CD pipelines
  • Contribute to continuous delivery and platform improvements using DevOps principles and GitHub workflows
What we offer
What we offer
  • An international community bringing together 110+ different nationalities
  • An environment where trust has a central place: 70% of our key leaders started their careers at the first level of responsibilities
  • A robust training system with our internal Academy and 250+ available modules
  • A vibrant workplace that frequently gathers for internal events (afterworks, team buildings, etc.)
  • Fulltime
Read More
Arrow Right

IAM Automation Test Engineer

Whitehall Resources currently require an experienced IAM Automation Test Enginee...
Location
Location
United Kingdom , Sheffield
Salary
Salary:
Not provided
whitehallresources.com Logo
Whitehall Resources Ltd
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Deep IAM domain knowledge
  • Solid experience of at least 3 years in a senior automation role, skilled in creating frameworks with strong coding experience e.g Java, Playwright, Python, Typescript, Cypher, Scala and API tooling (such as Insomnia, Apidog or Postman)
  • Graph and event-driven validation
  • Automation-first test experience
  • Layered test architecture
  • Risk-based test prioritisation
  • RBAC / ABAC / ReBAC / PBAC
  • OPA / Rego policy testing
  • Policy explainability validation
  • REST API automation, API Gateway testing, Batch ETL testing
Job Responsibility
Job Responsibility
  • Working with the Lead automation architect in the creation of an overall testing strategy where the focus is Automation First with minimal manual effort required
  • Plan, develop, execute, maintain and improve Automated Test Framework and Automated Test Scripts for Web and Graph Database applications
  • Jenkins pipeline creation and management for running automated tests, generating reports and notifying team about test results to streamline the CI/CD process
  • Able to develop and execute test plans, test cases, test data, test scenarios, and other testing related plans and documentation based on the requirements and technical specifications
  • Test data generation
  • Accurately report and track testing related defects and issues, by writing or automating, effective and thorough bug reports, attend triage meetings and verify bug fixes
  • Identify process and application issues and provide suggestions to improve
  • Learn new technologies and adapt to them as needed
  • Communicate progress regularly to senior stakeholders and programme leads, understanding the level of information relevant to the recipient
  • Generate regulatory evidence as needed
Read More
Arrow Right

Senior Data & Automation Engineer

Fluent is building the next generation advertising network, Partner Monetize & A...
Location
Location
Canada , Toronto
Salary
Salary:
90000.00 - 100000.00 CAD / Year
fluentco.com Logo
Fluent, Inc
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of professional experience in data engineering, including Spark (PySpark) and SQL
  • 3+ years of hands-on experience building pipelines on Databricks (Workflows, Notebooks, Delta Lake)
  • Deep understanding of Apache Spark distributed processing concepts and optimization
  • Strong experience with streaming architectures and Kafka
  • Familiarity with Databricks monitoring and observability tooling
  • Understanding of Lakehouse architecture, Unity Catalog, and governance principles
  • Proven proficiency in Git-based CI/CD workflows and automated deployment
  • Strong troubleshooting, optimization, and performance tuning skills
  • Experience designing and building large-scale, automated data pipelines
Job Responsibility
Job Responsibility
  • Design, build, and support scalable real-time and batch data pipelines using PySpark and Spark Structured Streaming on Databricks
  • Implement process automation and end-to-end workflows following Bronze → Silver → Gold architecture using Delta Lake best practices
  • Handle event-driven ingestion with Kafka and integrate into automated pipelines
  • Orchestrate workflows using Databricks Workflows/Jobs and CI/CD automation
  • Implement strong monitoring, observability, and alerting for reliability and performance (Databricks metrics, dashboards)
  • Collaborate cross-functionally in agile sprints with Product, Analytics, and Data Science teams
  • Translate enterprise logical data models into optimized physical and performance-tuned implementations
  • Write modular, version-controlled code in Git
  • contribute to code reviews and enforce quality standards
  • Implement robust logging, error handling, and data quality validation across automation layers
What we offer
What we offer
  • Competitive compensation
  • Ample career and professional growth opportunities
  • New Headquarters with an open floor plan to drive collaboration
  • Health, dental, and vision insurance
  • Pre-tax savings plans and transit/parking programs
  • 401K with competitive employer match
  • Volunteer and philanthropic activities throughout the year
  • Educational and social events
  • Fully stocked kitchen
  • Catered lunch
  • Fulltime
Read More
Arrow Right

Senior Security Engineer, GRC Automation

1Password is looking for a Senior Security Engineer – GRC to design and implemen...
Location
Location
United States; Canada
Salary
Salary:
156000.00 - 210000.00 USD; CAD / Year
https://www.1password.com Logo
1Password
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in security engineering, DevSecOps, solutions engineering, or GRC automation roles
  • Proven experience working with GRC, compliance, or audit teams to build automation that supports evidence collection, control testing, or security monitoring
  • Direct experience implementing and integrating GRC platforms (e.g., Drata, Vanta, Tines, JupiterOne) into production environments
  • Strong scripting and integration skills using Python, JavaScript, APIs, webhooks, or workflow automation tools
  • Ability to work cross-functionally with security, compliance, legal, and infrastructure teams to translate policies into scalable technical systems
  • Familiarity with compliance frameworks such as SOC 2, ISO 27001, or NIST 800-53, and how they map to real-world infrastructure and operations
Job Responsibility
Job Responsibility
  • Lead the implementation and integration of our GRC platform, ensuring it is fully operationalized across key systems and workflows
  • Build out automated workflows for control testing, evidence collection, and audit readiness
  • Develop and maintain integrations between the GRC platform and systems of record (e.g., ticketing systems, IAM, asset inventories, configuration management)
  • Design dashboards and reporting to track control health, trust signals, and audit performance
  • Collaborate with teams across Security, GRC, and Engineering to embed compliance into operational processes like employee onboarding, change management, and incident response
  • Shape the roadmap for automated, resilient internal assurance infrastructure that grows alongside the business
What we offer
What we offer
  • Health and wellbeing: Maternity and parental leave top-up programs
  • Competitive health benefits
  • Generous PTO policy
  • Growth and future: RSU program for most employees
  • Retirement matching program
  • Free 1Password account
  • Community: Paid volunteer days
  • Peer-to-peer recognition through Bonusly
  • Remote-first work environment
  • Fulltime
Read More
Arrow Right