CrawlJobs Logo

Senior IAM Engineer - Platform Security

https://www.citi.com/ Logo

Citi

Location Icon

Location:
United States , Jacksonville

Category Icon
Category:
IT - Software Development

Job Type Icon

Contract Type:
Employment contract

Salary Icon

Salary:

113840.00 - 170760.00 USD / Year
Save Job
Save Icon
Apply Position

Job Description:

Citi Secure is seeking a skilled Senior IAM Engineer to join our team, focusing on the design, implementation, and maintenance of secure and scalable IAM solutions. This role is pivotal in enhancing our market capabilities by collaborating with business teams on critical software projects related to application security. The successful candidate will be integral to all phases of the Software Development Lifecycle, from requirements gathering and architecture to implementation and support, ensuring our IAM services are robust, compliant, and aligned with strategic business objectives.

Job Responsibility:

  • Design, implement, and maintain secure, scalable applications and infrastructure with a primary focus on Identity and Access Management (IAM) solutions
  • Manage franchise-critical security application infrastructure, including project delivery, integration, and operational subject matter expertise
  • Collaborate with cross-functional teams to gather requirements and ensure IAM solutions are strategically aligned with business needs
  • Develop robust scripts and/or Java/J2EE code to facilitate system monitoring, enhance process automation, and deliver project requirements
  • Create and diligently maintain comprehensive documentation for all IAM systems, processes, and problem resolutions within Knowledge Base tools
  • Provide expert technical application support for the security infrastructure, proactively troubleshooting and expediently resolving IAM-related issues to ensure minimal disruption
  • Conduct regular, thorough security audits, penetration testing, and SDLC validation to systematically identify and mitigate potential vulnerabilities before production deployment
  • Ensure strict adherence to internal controls and compliance standards defined by Citi
  • Proactively identify and implement automation opportunities for repetitive processes using tools like Ansible
  • Actively contribute to the strategic development, ongoing refinement, and roadmap planning for the firm's IAM initiatives
  • Strategically engage with vendors and internal support teams to maintain an up-to-date technology stack and promptly address End-Of-Vendor-Support (EOVS) issues
  • Serve as an Identity and Access Management Subject Matter Expert (SME) to senior stakeholders and team members, offering guidance, specialized knowledge, and targeted training

Requirements:

  • 6+ years' experience in IAM roles as it relates to the experience requirements below
  • 4+ years of hands-on Java/J2EE programming experience
  • 2+ years' experience scripting in Unix/Linux environments
  • Strong proficiency with Java IDEs (Eclipse), API testing tools (SOAP UI, Postman), LDAP clients, source control utilities (e.g., Git), and build/packaging tools (Ansible, Jenkins, Maven)
  • Extensive application security experience, with deep knowledge of SSO, Federation protocols (SAML, OpenID Connect, OAuth2), and Multi-factor Authentication (MFA)
  • Proven experience in architecting, designing, and implementing large-scale IAM solutions
  • Ability to customize, configure, and develop IAM solution integrations and independently manage project deliverables
  • Strong knowledge of application architecture, System Integration Testing (SIT), Functional Testing, and Regression Testing
  • Bachelor's Degree in Computer Science, IT, or a related field, or equivalent work experience

Nice to have:

  • Expertise in at least one of the following application servers: IBM WebSphere or IBM WebSphere Liberty is a plus
  • Experience with containerization and orchestration technologies (e.g., Docker, OpenShift, Kubernetes) is a plus
  • Working experience with LDAP and databases is a plus
  • Knowledge of mobile application development is a plus
What we offer:
  • medical
  • dental & vision coverage
  • 401(k)
  • life, accident, and disability insurance
  • wellness programs
  • paid time off packages, including planned time off (vacation), unplanned time off (sick leave), and paid holidays

Additional Information:

Job Posted:
May 04, 2026

Employment Type:
Fulltime
Work Type:
Hybrid work
Icon
Citi - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Senior IAM Engineer - Platform Security

Senior Security Engineer, Sailpoint Development Lead - IAM

We are seeking an experienced and motivated Sr. Engineer to lead the Sailpoint d...
Location
Location
United States , Bethesda
Salary
Salary:
108300.00 - 176300.00 USD / Year
https://www.marriott.com Logo
Marriott Bonvoy
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in computer science, information systems, cybersecurity or a related field or equivalent experience/certification
  • 7+ years of progressive Information Technology/Information Security experience in engineering and development of IGA features & Application integration including at least 4 years of experience in SailPoint IIQ Implementation, Configuration, Customization, and deployment in an enterprise environment
  • 4 + years of experience in technologies such as Java, JavaScript, JSON, XML, Python and REST development
  • 4 + years of experience in writing and troubleshooting rules, workflows, custom connectors
  • 4 + years of developing/understanding of requirements, design, implementation, integration, testing
  • 2+ years’ experience working in agile methodologies
Job Responsibility
Job Responsibility
  • Makes decisions on the architecture and design of software projects, validating that the system design meets scalability, reliability, and performance requirements
  • Provides technical direction, mentoring, and support to team members
  • Solves complex technical issues and functions as an escalation for the team in problem-solving
  • Leads code reviews to ensure high-quality, maintainable, and efficient code
  • Establishes and ensures compliance with coding standards
  • Exercises strong interpersonal/relationship/communication skills, with the ability to convey technical concepts to non-technical stakeholders
  • Contributes to the codebase, particularly for critical or complex components
  • Participates in project planning, including estimation of tasks, defining milestones, and ensuring realistic timelines
  • Assigns tasks to team members based on their skills and project requirements
  • Monitors progress and adjusting plans as necessary
What we offer
What we offer
  • Bonus program
  • Comprehensive health care benefits
  • 401(k) plan with up to 5% company match
  • Employee stock purchase plan at 15% discount
  • Accrued paid time off (including sick leave where applicable)
  • Life insurance
  • Group disability insurance
  • Travel discounts
  • Adoption assistance
  • Paid parental leave
  • Fulltime
Read More
Arrow Right

Senior Security Operations Engineer II

As a Senior Security Operations Engineer, you’ll play a key role in ensuring the...
Location
Location
United States , Scottsdale
Salary
Salary:
Not provided
axon.com Logo
Axon
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7+ years of experience in operations, site reliability, or infrastructure engineering roles
  • Strong experience securing and managing cloud environments (e.g., AWS, Azure) and containerized workloads
  • Deep understanding of Linux systems, networking, distributed systems, and their associated security controls
  • Proficiency in automation, scripting, and security tooling integration to streamline operations and enforcement
  • Experience with security monitoring, alerting, SIEM platforms, and observability tools
  • Solid grasp of CI/CD practices with integrated security testing and compliance checks
  • Experience managing Kubernetes clusters and running containerized workloads in production
  • Experience with deploying and administrating any of the following: scalable cloud native secrets solutions such as AWS KMS, Azure KeyVault
  • PKI solutions such as EJBCA, Smallstep, Venafi
  • or vaulting solutions such as Hashicorp Vault
Job Responsibility
Job Responsibility
  • Implementing and improving automated security checks in CI/CD pipelines to prevent vulnerabilities from reaching production
  • Writing, reviewing, and maintaining security-focused infrastructure-as-code for scalable and compliant deployments
  • Investigating security incidents, performing root cause analysis, and implementing long-term mitigation strategies
  • Collaborating with developers to develop new features, services, and infrastructure requirements
  • Enhancing security observability through improved log collection, metrics, and alerting configurations
  • Maintaining and improving security runbooks, incident response playbooks, and internal security tooling for operational efficiency
  • Resolve security/infrastructure incidents by participating in high impact/high visibility incidents as a participant and ideally as an incident commander
  • Maintain and secure critical infrastructure components such as PKI (Public Key Infrastructure) and IAM ( Identity & Access Management) systems, ensuring reliability, scalability, and compliance with organizational and industry security standards
  • Build and maintain secure, reliable, and scalable infrastructure that protects core services and sensitive data
  • Troubleshoot and resolve complex operational and system-level issues across environments
What we offer
What we offer
  • Competitive salary and 401k with employer match
  • Discretionary paid time off
  • Paid parental leave for all
  • Medical, Dental, Vision plans
  • Fitness Programs
  • Emotional & Mental Wellness support
  • Learning & Development programs
  • Snacks in our offices
  • Fulltime
Read More
Arrow Right

Senior Security Operations Engineer II

As a Senior Security Operations Engineer, you’ll play a key role in ensuring the...
Location
Location
United States , Scottsdale
Salary
Salary:
Not provided
axon.com Logo
Axon
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7+ years of experience in operations, site reliability, or infrastructure engineering roles
  • Strong experience securing and managing cloud environments (e.g., AWS, Azure) and containerized workloads
  • Deep understanding of Linux systems, networking, distributed systems, and their associated security controls
  • Proficiency in automation, scripting, and security tooling integration to streamline operations and enforcement
  • Experience with security monitoring, alerting, SIEM platforms, and observability tools
  • Solid grasp of CI/CD practices with integrated security testing and compliance checks
  • Experience managing Kubernetes clusters and running containerized workloads in production
  • Experience with deploying and administrating any of the following: scalable cloud native secrets solutions such as AWS KMS, Azure KeyVault
  • PKI solutions such as EJBCA, Smallstep, Venafi
  • or vaulting solutions such as Hashicorp Vault
Job Responsibility
Job Responsibility
  • Implementing and improving automated security checks in CI/CD pipelines to prevent vulnerabilities from reaching production
  • Writing, reviewing, and maintaining security-focused infrastructure-as-code for scalable and compliant deployments
  • Investigating security incidents, performing root cause analysis, and implementing long-term mitigation strategies
  • Collaborating with developers to develop new features, services, and infrastructure requirements
  • Enhancing security observability through improved log collection, metrics, and alerting configurations
  • Maintaining and improving security runbooks, incident response playbooks, and internal security tooling for operational efficiency
  • Resolve security/infrastructure incidents by participating in high impact/high visibility incidents as a participant and ideally as an incident commander
  • Maintain and secure critical infrastructure components such as PKI (Public Key Infrastructure) and IAM ( Identity & Access Management) systems, ensuring reliability, scalability, and compliance with organizational and industry security standards
  • Build and maintain secure, reliable, and scalable infrastructure that protects core services and sensitive data
  • Troubleshoot and resolve complex operational and system-level issues across environments
What we offer
What we offer
  • Competitive salary and 401k with employer match
  • Discretionary paid time off
  • Paid parental leave for all
  • Medical, Dental, Vision plans
  • Fitness Programs
  • Emotional & Mental Wellness support
  • Learning & Development programs
  • Snacks in our offices
  • Fulltime
Read More
Arrow Right

Senior Security Engineer

Senior Security Engineer – Remote (US) – Competitive Salary Opportunity to work ...
Location
Location
United States
Salary
Salary:
Not provided
weareorbis.com Logo
Orbis Consultants
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Computer Science, Information Security, Cybersecurity, or related technical field
  • 5+ years of hands-on experience in security engineering or related roles
  • Expertise in secure software development, architecture design, threat modeling, CI/CD pipelines, and risk assessment
  • Deep knowledge of network, system, database, and application layer attack patterns and mitigation methods
  • Ability to clearly communicate complex concepts appropriately to multiple audience types
  • Coding skills necessary to discover and patch issues Node, TypeScript/React, Python
  • Solid understanding and experience with AWS, Heroku, Netlify, and Snowflake, including policy, configurations, and security management tooling
  • Proven track record with SOC 2, PCI DSS, or similar compliance frameworks and reporting
  • Experience working in startup or high-growth environments, fintech, and/or highly regulated industries preferred
  • Cloud security certifications with evidence of continued education in the area of security are a plus
Job Responsibility
Job Responsibility
  • Vulnerability Management: Conduct regular vulnerability assessments, penetration testing, and security audits to identify and remediate security gaps across our cloud infrastructure and applications
  • Security Monitoring: Monitor systems for security threats, suspicious behavior, and anomalies using SIEM tools and security monitoring and vulnerability platforms like CrowdStrike and Nessus
  • Incident Response: Lead security incident response efforts, investigate suspicious reports, and implement preventative measures that may be warranted
  • Code Security Reviews: Review and approve code (Node, React, Python) that accesses to data, authentication, or integrations, ensuring secure development practices are followed
  • Cross-functional Collaboration: Work closely with engineering and operations teams, including executive stakeholders and occasionally third-party service providers, to integrate security best practices into development and deployment processes
  • Architecture Review: Evaluate and provide security recommendations for system architecture changes (e.g. network segmentation, microservices, virtual environments, data warehousing, etc) and new feature implementations, including the evaluation of AI enablement opportunities
  • Cloud Security: Secure cloud deployments (AWS/Heroku/Netlify), including configuration of firewalls, IAM policies, VPCs, databases/data warehouses (PostgreSQL, Snowflake), API security, container security, and network monitoring
  • Access Controls: Manage and maintain access controls across server environments, implementing principle of least privilege
  • Data Classification: Advise and audit the proper handling of data in accordance with privacy and security requirements and data classification policies
  • Integration Security: Review and assess security implications of all third-party integrations and vendor relationships
  • Fulltime
Read More
Arrow Right

Senior Security Engineer

Senior Security Engineer – Remote (US) – Competitive Salary Opportunity to work ...
Location
Location
United States
Salary
Salary:
Not provided
weareorbis.com Logo
Orbis Consultants
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Computer Science, Information Security, Cybersecurity, or related technical field
  • 5+ years of hands-on experience in security engineering or related roles
  • Expertise in secure software development, architecture design, threat modeling, CI/CD pipelines, and risk assessment
  • Deep knowledge of network, system, database, and application layer attack patterns and mitigation methods
  • Ability to clearly communicate complex concepts appropriately to multiple audience types
  • Coding skills necessary to discover and patch issues Node, TypeScript/React, Python
  • Solid understanding and experience with AWS, Heroku, Netlify, and Snowflake, including policy, configurations, and security management tooling
  • Proven track record with SOC 2, PCI DSS, or similar compliance frameworks and reporting
  • Experience working in startup or high-growth environments, fintech, and/or highly regulated industries preferred
  • Cloud security certifications with evidence of continued education in the area of security are a plus
Job Responsibility
Job Responsibility
  • Conduct regular vulnerability assessments, penetration testing, and security audits to identify and remediate security gaps across our cloud infrastructure and applications
  • Monitor systems for security threats, suspicious behavior, and anomalies using SIEM tools and security monitoring and vulnerability platforms like CrowdStrike and Nessus
  • Lead security incident response efforts, investigate suspicious reports, and implement preventative measures that may be warranted
  • Review and approve code (Node, React, Python) that accesses to data, authentication, or integrations, ensuring secure development practices are followed
  • Work closely with engineering and operations teams, including executive stakeholders and occasionally third-party service providers, to integrate security best practices into development and deployment processes
  • Evaluate and provide security recommendations for system architecture changes (e.g. network segmentation, microservices, virtual environments, data warehousing, etc) and new feature implementations, including the evaluation of AI enablement opportunities
  • Secure cloud deployments (AWS/Heroku/Netlify), including configuration of firewalls, IAM policies, VPCs, databases/data warehouses (PostgreSQL, Snowflake), API security, container security, and network monitoring
  • Manage and maintain access controls across server environments, implementing principle of least privilege
  • Advise and audit the proper handling of data in accordance with privacy and security requirements and data classification policies
  • Review and assess security implications of all third-party integrations and vendor relationships
  • Fulltime
Read More
Arrow Right

Senior Platform Engineer - AWS

We’re currently looking for a skilled and enthusiastic Senior Platform Engineer ...
Location
Location
Germany , Hamburg or Berlin
Salary
Salary:
73000.00 - 90000.00 EUR / Year
aboutyou.de Logo
About You
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of professional experience in Platform Engineering, DevOps, or Site Reliability Engineering (SRE), with a significant focus on cloud infrastructure
  • Fluency in scripting languages (e.g., Python, Go, Bash) for system automation, tooling development, and operational tasks
  • Deep expertise in managing and scaling production workloads within a major public cloud provider (e.g., AWS, Azure, or GCP), including strong familiarity with core services like Compute, Networking, Identity & Access Management (IAM), and Managed Database
  • Proven mastery of Infrastructure-as-Code (IaC) using AWS CloudFormation and/or Terraform in complex, multi-account environments
  • Demonstrated experience designing, implementing, and maintaining robust CI/CD pipelines
  • Solid knowledge of monitoring and logging solutions
  • Excellent communication and documentation skills, with the ability to articulate complex technical issues to technical stakeholders
Job Responsibility
Job Responsibility
  • Own and evolve the Commerce Cloud’s AWS infrastructure through the application of Infrastructure-as-Code (IaC) principles to ensure scalability, high availability, and cost efficiency
  • Design, implement, and optimize CI/CD pipelines and operational workflows utilizing tools such as GitLab CI, AWS CloudFormation, and Terraform
  • Establish and enforce comprehensive, high-quality documentation for all infrastructure, operational playbooks, and critical architecture decisions
  • Act as a subject matter expert and trusted advisor, partnering with application development teams to architect and provision infrastructure that meets their specific workload requirements
  • Drive collaborative efforts with GCP Platform Engineers on cross-cloud initiatives and work closely with Information Security Engineers to design and implement security controls and governance policies
  • Spearhead the evaluation and adoption of emerging cloud and platform technologies, continuously seeking opportunities to improve platform performance and developer experience
What we offer
What we offer
  • Hybrid working
  • Sports courses
  • Free access to code.talks
  • Exclusive employee discounts
  • Free drinks
  • Language courses
  • Laracast account for free
  • Company parties
  • Help in the relocation process
  • Mobility subsidy
  • Fulltime
Read More
Arrow Right

Senior Platform Engineer

As a Senior Platform Engineer on Dedrone’s Infrastructure Services team, you wil...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
axon.com Logo
Axon
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 3+ years of relevant experience in cloud infrastructure, developer tooling, backend engineering, or platform/DevOps roles
  • Proficiency with modern cloud and automation tooling, including CI/CD pipeline development, AWS services (EC2, ECS/EKS, S3, IAM, CloudWatch), Infrastructure-as-Code (Terraform or AWS CDK), and containerization using Docker and orchestration tools such as ECS, EKS, or Kubernetes
  • Strong engineering fundamentals, including backend development experience (e.g., Java, Go, Python), as well as Linux, Bash, and scripting skills
  • Experience implementing observability practices—including metrics, logging, and tracing
  • A collaborative approach grounded in Axon’s values—showing ownership, candor, customer success, the courage to boldly go, and the ambition to aim far and win right
Job Responsibility
Job Responsibility
  • Own, design, and optimize CI/CD pipelines supporting Dedrone’s distributed, product ecosystem—reducing build times, deployment friction, and manual overhead
  • Build, automate, and maintain AWS infrastructure using Infrastructure-as-Code (Terraform or AWS CDK), ensuring scalable, secure, and reusable cloud environments
  • Maintain and evolve backend services owned by the team
  • Architect, optimize, and secure Docker images and container workflows
  • support orchestration environments (such as ECS, EKS, Kubernetes)
  • Strengthen and expand Dedrone’s observability stack— metrics, logging, tracing, and alerting—leveraging tools such as Grafana, Cloudwatch
  • Establish and promote engineering best practices across development standards, CI/CD patterns, infrastructure templates, and reusable tooling
  • Partner closely with product engineering teams to understand bottlenecks, reduce toil, and increase overall developer velocity
  • Contribute to security-focused improvements across the platform CI/CD, IAM, secrets management, and cloud resource hardening
  • Collaborate with Axon platform, infrastructure, and security teams to align workflows and adopt shared best practices
What we offer
What we offer
  • Competitive base salary and RSUs
  • Comprehensive pension plan with matching contribution
  • Private health insurance & cash plans
  • 30 days paid holiday + UK public holidays
  • Enhanced maternity/paternity leave
  • GymPass subscription
  • Life assurance & income protection
  • Career growth support and wellness resources
  • Fulltime
Read More
Arrow Right

IAM Senior Engineer - Active Directory/Entra ID

HPE Global IT is seeking a highly skilled Senior Active Directory (AD), Entra ID...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or related field (or equivalent experience)
  • 10+ years of IT or cybersecurity experience
  • 7+ years focused on AD, Entra ID, and Azure identity engineering in enterprise-scale environments
  • Deep hands-on experience managing multi-forest AD environments (schema, replication, delegation, GPOs, DNS, DHCP)
  • Strong expertise with Entra ID and hybrid identity integration (Entra Connect / Cloud Sync, federation, SSO)
  • Hands-on experience with Azure governance, RBAC, PIM, and access policy enforcement
  • Experience implementing conditional access, passwordless, and phishing-resistant MFA in Entra and Azure
  • Proficiency in PowerShell scripting, Graph API, and Azure automation for identity management and reporting
  • Solid understanding of authentication protocols (Kerberos, NTLM, LDAP, SAML, OIDC, OAuth2)
  • Familiarity with Zero Trust, tiered admin models, and directory hardening practices
Job Responsibility
Job Responsibility
  • Engineer, deploy, and optimize Active Directory, Entra ID, and Azure identity services across enterprise-scale hybrid environments
  • Design and manage multi-forest AD architectures, including schema extensions, replication, delegation, and hardening
  • Implement and maintain cross-domain and cross-tenant synchronization between AD and Entra ID using Entra Connect or Cloud Sync
  • Engineer secure authentication and federation flows leveraging Kerberos, NTLM, SAML, OIDC, and OAuth2
  • Implement and enhance conditional access, MFA, passwordless, and FIDO2 authentication methods in Entra and Azure environments
  • Support Zero Trust Directory Security through tiered administration, least privilege, and delegated access controls
  • Partner with cloud and infrastructure teams to ensure secure integration of Azure resources with enterprise identity services
  • Maintain and secure domain controllers, DNS, DHCP, and Group Policy Objects (GPOs) across global environments
  • Manage Azure AD tenants, subscriptions, and resource access controls (RBAC, PIM, Entra roles)
  • Integrate on-prem AD with Azure workloads, Microsoft 365, Intune, and other SaaS applications
What we offer
What we offer
  • Health & Wellbeing benefits
  • Personal & Professional Development programs
  • Unconditional Inclusion environment
  • Comprehensive suite of benefits supporting physical, financial and emotional wellbeing
  • Fulltime
Read More
Arrow Right