CrawlJobs Logo

Staff IAM Architect

addepar.com Logo

Addepar

Location Icon

Location:
Canada

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

Not provided
Save Job
Save Icon
Apply Position

Job Description:

We are currently seeking a Sr. IAM Architect to join our growing Information Security & Risk team. The successful candidate will have the opportunity to help take Addepar’s Internal Identity & Access Management program to the next level. In this role, this person will work as the lead architect of the internal Identity & Access Management (IAM) function to increase the overall security posture of the organization. This role requires someone to work Eastern or Central working hours.

Job Responsibility:

  • Provide strategic direction on the overall maturity of the internal IAM program
  • Improve Data Quality in upstream and downstream systems (HRIS, IGA, IDP, Productivity Tools)
  • Lifecycle Management (Joiners, Movers and Leavers)
  • Governance such as Entitlement Reviews and proper inventory management of identities
  • Enhancing IAM Monitoring with a focus on Non-Human Identities (NHID)
  • Identity Governance & Administration (IGA) platform Enhancements
  • Assist with the Production Readiness process for IAM related queries and needs
  • Analysis and Understanding of access requirements, internal process & systems flows, client expectations, security policies to enforce least privileged access
  • Solution new processes and/or technologies to improve overall security posture
  • Assist with development and refinement of Information Security Policies & Standards
  • Work closely with Data Governance team to ensure appropriate access controls
  • Provide secondary operational support for IAM related administration tools

Requirements:

  • 8+ years of general Information Security experience
  • At least 5 years focused on Identity & Access Management
  • Bachelor’s degree/equivalent or higher (Computer Science or Engineering preferred)
  • In-Depth Experience with Identity & Access Management tools
  • Familiar with IT Governance and Compliance functions (SOC2, Data Governance)
  • Familiar with Security Operations Center (SOC) and Vulnerability management functions
  • Skilled at developing process maps and translating processes to technical/system requirements
  • Attention to details and analytical skills
  • Ability to build strong relationships and work collaboratively
  • Excellent verbal and written communication and organisational skills
  • Curious and deeply interested in Information Security
  • Desired: Experience with IGA tools (Sailpoint, Saviynt)
  • Experience with IAM systems (IDP, MFA, ZTA, PAM)
  • Experience with HRIS systems (Workday, PeopleSoft)
  • Basic understanding of SQL database querying and APIs
  • Hands-on experience with AWS or similar cloud platform
  • Experience with Okta and Google Workspace environments

Nice to have:

  • Experience with IGA tools such as Sailpoint, Saviynt
  • Experience working with IAM related systems such as Identity Providers(IDP), Multi-Factor Authentication(MFA), Zero Trust Access(ZTA) and Privileged Access Management(PAM) platforms
  • Experience working with HRIS systems such as Workday, PeopleSoft
  • Basic understanding of SQL database querying and leveraging API’s
  • Hands-on experience with Amazon Web Services (AWS) or similar cloud platform and strong understanding of IAM related policies and configurations
  • Experience with Okta and Google Workspace environments

Additional Information:

Job Posted:
December 05, 2025

Employment Type:
Fulltime
Work Type:
Remote work
Icon
Addepar - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Staff IAM Architect

Staff IAM Architect

We are currently seeking a Sr. IAM Architect to join our growing Information Sec...
Location
Location
United States
Salary
Salary:
137000.00 - 214000.00 USD / Year
addepar.com Logo
Addepar
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years of general Information Security experience
  • At least 5 years focused on Identity & Access Management
  • Bachelor’s degree/equivalent or higher
  • Computer Science or Engineering related education preferred
  • In-Depth Experience with Identity & Access Management tools
  • Familiar with IT Governance and Compliance functions, including SOC2 and Data Governance
  • Familiar with Security Operations Center(SOC) and Vulnerability management functions
  • Skilled at developing process maps, and translating processes to technical / system requirements
  • Attention to details and analytical skills
  • Ability to build strong relationships and work collaboratively
Job Responsibility
Job Responsibility
  • Provide strategic direction on the overall maturity of the internal IAM program
  • Improve Data Quality in upstream and downstream systems (eg: HRIS, IGA, IDP, Productivity Tools)
  • Lifecycle Management (eg: Joiners, Movers and Leavers)
  • Governance such Entitlement Reviews and proper inventory management of identities
  • Enhancing IAM Monitoring with a focus on Non-Human Identities (NHID)
  • Identity Governance & Administration (IGA) platform Enhancements
  • Assist with the Production Readiness process to assist with IAM related queries, needs and assist stakeholders
  • Analysis and Understanding of access requirements, internal process & systems flows, client expectations, security policies, etc. to enforce a least privileged access model
  • Solution new processes and/or technologies to improve the overall security posture
  • Assisting with the development and refinement of Information Security Policies & Standards
What we offer
What we offer
  • bonus
  • equity
  • benefits
  • reasonable accommodation for individuals with disabilities
  • flexible workforce model
  • Fulltime
Read More
Arrow Right

Staff Software Engineer, IAM

Mozilla IAM team seeks a Staff Software Engineer to rebuild our Identity and Acc...
Location
Location
United States; Canada
Salary
Salary:
Not provided
mozilla.org Logo
Mozilla
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years experience in software engineering
  • at least 5 years of extensive IAM / IdP expertise
  • Successfully implemented IAM/IdP Solution using Okta, Google IdP
  • Proven technical leadership experience
  • Expertise in AuthN, AuthZ, and access governance
  • Deep knowledge of identity lifecycle management and access governance
  • Proficient in Python, JavaScript, Github actions, GitOps workflows
  • Strong expertise integrating with Cloud Service Providers and cloud-native technologies, preferably GCP
  • Excellent communication skills aligning technology with user needs and organizational goals
  • Self-starter who thrives in ambiguity
Job Responsibility
Job Responsibility
  • Architect and lead IAM / IdP system redesign, emphasizing user experience and scalability
  • Guide technical decision-making and adoption of user-centric solutions
  • Guide team members and promote engineering standard methodologies, with a focus on usability and maintainability
  • Facilitate cross-functional collaboration for efficient and cohesive platform delivery
  • Drive automation and self-service capabilities in IAM / IdP, ensuring robust security, compliance, and improved user satisfaction
  • Meet with engineering teams across Mozilla to understand their needs and concerns around access management
  • Document standard methodologies and design guidelines
  • Be trusted to resolve unclear but urgent tasks
What we offer
What we offer
  • Generous performance-based bonus plans
  • Rich medical, dental, and vision coverage
  • Generous retirement contributions with 100% immediate vesting
  • Quarterly all-company wellness days
  • Country specific holidays plus a day off for your birthday
  • One-time home office stipend
  • Annual professional development budget
  • Quarterly well-being stipend
  • Considerable paid parental leave
  • Employee referral bonus program
  • Fulltime
Read More
Arrow Right

Senior Oracle Cloud Infrastructure (OCI) Architect

Our client is seeking a Senior Oracle Cloud Infrastructure (OCI) Architect with ...
Location
Location
United States , Atlanta
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years in enterprise or cloud architecture roles
  • 5+ years dedicated to OCI (tenancies, compartments, IAM, networking, security, governance)
  • Hands‑on background supporting or architecting Oracle EBS in cloud or hybrid environments (lift‑and‑shift, infra optimization, patching, backups/cloning)
  • Strong experience with cloud environment segmentation, landing zones, multi‑environment governance, and security architecture
  • Proficiency with DR/BCP design, monitoring, logging, and platform operations
  • Ability to mentor engineering teams and provide clear documentation/runbooks
Job Responsibility
Job Responsibility
  • Design and implement a segmented Oracle Cloud Infrastructure (OCI) environment, including tenancy layout, compartment strategy, network segmentation, and governance
  • Provide architecture guidance for running Oracle E‑Business Suite (EBS) within OCI, including HA/DR patterns, storage strategy, and performance considerations
  • Build security models across Oracle environments: IAM policies, security zones, KMS, encryption, and access control
  • Mentor engineering staff on OCI best practices, policies, monitoring, logging, cost controls, and operational maturity
  • Ensure networking alignment: VCN design, subnets, gateways, load balancers, DNS, routing, and connectivity between environments
  • Establish observability and operational frameworks: logging, metrics, alarms, DR runbooks, and lifecycle management
  • Collaborate across teams to ensure secure interaction between EBS, cloud services, and any downstream enterprise systems
What we offer
What we offer
  • medical
  • vision
  • dental
  • life and disability insurance
  • eligible to enroll in company 401(k) plan
Read More
Arrow Right

Security Engineer

Location
Location
Salary
Salary:
Not provided
ryzlabs.com Logo
Ryz Labs
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 3+ years total technical or security engineering experience with security focus
  • 2+ years of AWS or GCP experience implementing security and hardening activities, especially in a large or complex environments
  • 2+ years working in a CI/CD DevSecOps environment (Jenkins, Travis, Jira, GitHub, GitLab, etc.)
  • Experience with IAM solutions such as Okta and deep knowledge of AWS or GCP IAM and how to configure and maintain least-privilege and segregation of duty across boundaries
  • Knowledge and experience with EC2, ECS, S3, LBS, API Gateways, Bastion Hosts, VPC, Cloud Trail, Cloud Watch, Data Dog, SIEM and other cloud technologies
Job Responsibility
Job Responsibility
  • collaborate with our customers and suppliers to model security requirements against cloud capabilities
  • work closely with engineering teams, program management and senior stakeholders to translate requirements into achievable designs that raise the bar
  • function across teams ensuring that the strategic architecture is met across design, implementation, deployment and operation
  • playing a key role in defining the mechanisms that the company will use to validate how services are meeting all the security operational controls
  • work closely with the product and platform engineering teams to architect, implement, and operate effective cloud security controls
  • Partner with internal IT & Product Engineering stakeholders to assess gaps in products and platforms, design mitigating controls, and train and educate staff on remediations
  • Partner with the Business Technology and IAM teams to build a new Access Management and User Access Review system based on Lumos
  • Maintain inventory of cloud assets and ensure secure bootstrapping of deployed assets while monitoring for drift and potential threats across product engineering environment
  • Design and build the security components of the next phase of Sonder Security Roadmap
Read More
Arrow Right

Senior/Staff Enterprise Security Engineer

We're looking for a very experienced and highly motivated Senior or Staff Enterp...
Location
Location
United States , San Francisco; New York
Salary
Salary:
214200.00 - 252000.00 USD / Year
abridge.com Logo
Abridge
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5 to 7+ years of progressive experience in an Enterprise/Corporate Security Engineering role
  • Proven hands-on experience developing security automation solutions with Python or similar high-level languages
  • Expert-level knowledge of IAM concepts, protocols (SAML, OAuth), and hands-on experience with at least IAM in Google Workspace
  • Strong experience deploying and managing modern Endpoint Protection (EDR) and MDM solutions in a large corporate environment
  • Deep understanding of networking and security protocols (TCP/IP, DNS, TLS/SSL, VPN, Firewalls) and how to secure hybrid environments
  • Demonstrated ability to lead complex projects, mentor junior staff, and communicate security risks and solutions effectively to both technical and non-technical stakeholders
Job Responsibility
Job Responsibility
  • Architect and implement enterprise-wide Identity and Access Management (IAM) and Privileged Access Management (PAM) solutions
  • Own the implementation and maintenance of authentication standards, including Single Sign-On (SSO), phishing resistant Multi-Factor Authentication (MFA), and identity federation protocols (SAML, OIDC, OAuth2)
  • Design and enforce security policies for critical SaaS applications using tools like SSPM (SaaS Security Posture Management)
  • Develop and automate the full identity lifecycle (joiner, mover, leaver) process
  • Lead the development of the security automation roadmap for Enterprise Security
  • Design and build custom automation scripts and integrations using languages like Python to connect security tools (SIEM, EDR, IAM, Ticketing)
  • Utilize Infrastructure as Code (IaC) tools (e.g., Terraform) to manage the secure configuration of enterprise tools and enforce security policies at scale
  • Engineer, deploy, and manage our Endpoint Detection and Response (EDR) and Mobile Device Management (MDM) platforms
  • Design, configure, and maintain enterprise network security controls, including next-generation firewalls, secure web gateways, VPNs, and micro-segmentation strategies
  • Own and optimize the email security stack, DMARC/DKIM/SPF enforcement, and anti-phishing controls
What we offer
What we offer
  • Generous Time Off: 14 paid holidays, flexible PTO for salaried employees, and accrued time off for hourly employees
  • Comprehensive Health Plans: Medical, Dental, and Vision coverage for all full-time employees and their families
  • Generous HSA Contribution: If you choose a High Deductible Health Plan, Abridge makes monthly contributions to your HSA
  • Paid Parental Leave: Generous paid parental leave for all full-time employees
  • Family Forming Benefits: Resources and financial support to help you build your family
  • 401(k) Matching: Contribution matching to help invest in your future
  • Personal Device Allowance: Tax free funds for personal device usage
  • Pre-tax Benefits: Access to Flexible Spending Accounts (FSA) and Commuter Benefits
  • Lifestyle Wallet: Monthly contributions for fitness, professional development, coworking, and more
  • Mental Health Support: Dedicated access to therapy and coaching to help you reach your goals
  • Fulltime
Read More
Arrow Right

Staff Dataops Engineer

Your Impact We are looking for a Staff DataOps Engineer to join the Data and M...
Location
Location
France , Paris
Salary
Salary:
Not provided
doctolib.fr Logo
Doctolib
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7+ years of experience after graduation as a Staff Data Platform Engineer, Staff DataOps, Staff Site Reliability Engineer, or in a similar role, with a history of architecting and scaling robust data platforms
  • Extensive experience with Google Cloud Platform and a command of Kubernetes & Terraform for automated deployments, and you are an authority on implementing network and IAM security best practices
  • Deep technical proficiency in orchestrating data pipelines using Airflow or Dagster, deploying applications to the cloud, and leveraging modern data warehouses such as BigQuery
  • Highly skilled in programming with Python, and have a solid understanding of software development principles
  • Excellent troubleshooter who excels at diagnosing and fixing data infrastructure and identifying performance bottlenecks, and a strong communicator who can articulate complex technical concepts to both technical and non-technical audiences
Job Responsibility
Job Responsibility
  • Design and implement enterprise-scale data infrastructure strategies, conducting thorough impact and cost analysis for major technical decisions, and establishing architectural standards across the organization
  • Build and optimize complex, multi-region data pipelines handling petabyte-scale datasets, ensuring 99.9% reliability and implementing advanced monitoring and alerting systems
  • Lead cost analysis initiatives, identify optimization opportunities across our data stack, and implement solutions that reduce infrastructure spend while improving performance and reliability
  • Provide technical guidance to data engineers and cross-functional teams, conduct architecture reviews, and drive adoption of best practices in DataOps, security, and governance
  • Evaluate emerging technologies, conduct proof-of-concepts for new data tools and platforms, and lead the technical roadmap for data infrastructure modernization
What we offer
What we offer
  • Free comprehensive health insurance for you and your children
  • 25 days of paid vacation per year, plus up to 14 days of RTT
  • Free mental health and coaching services through our partner Moka.care
  • Work from abroad for up to 10 days per year thanks to our flexibility days policy
  • Lunch vouchers (Swile card) worth €8.50 per working day, with €4.50 covered by Doctolib
  • A subsidy from the work council to refund part of the membership to a sport club or a creative class
  • 50% reimbursement of your public transport subscription
  • Parent Care Program: receive one additional month of leave on top of the legal parental leave
  • For caregivers and workers with disabilities, a package including an adaptation of the remote policy, extra days off for medical reasons, and psychological support
  • Relocation support in case of international mobility
  • Fulltime
Read More
Arrow Right

Staff DevOps - Data Platform

We are looking for a Staff DevOps - Data Platform to join the Data and ML Platfo...
Location
Location
France , Paris
Salary
Salary:
Not provided
doctolib.fr Logo
Doctolib
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7+ years of experience after graduation as a Staff Data Platform Engineer, Staff Data Ops, Staff Site Reliability Engineer, or in a similar role, with a history of architecting and scaling robust data platforms
  • Extensive experience with Google Cloud Platform and a command of Kubernetes & Terraform for automated deployments
  • Authority on implementing network and IAM security best practices
  • Deep technical proficiency in orchestrating data pipelines using Airflow or Dagster, deploying applications to the cloud, and leveraging modern data warehouses such as BigQuery
  • Highly skilled in programming with Python, and have a solid understanding of software development principles
  • Excellent troubleshooter who excels at diagnosing and fixing data infrastructure and identifying performance bottlenecks
  • Strong communicator who can articulate complex technical concepts to both technical and non-technical audiences
Job Responsibility
Job Responsibility
  • Design and implement enterprise-scale data infrastructure strategies, conducting thorough impact and cost analysis for major technical decisions, and establishing architectural standards across the organization
  • Build and optimize complex, multi-region data pipelines handling petabyte-scale datasets, ensuring 99.9% reliability and implementing advanced monitoring and alerting systems
  • Lead cost analysis initiatives, identify optimization opportunities across our data stack, and implement solutions that reduce infrastructure spend while improving performance and reliability
  • Provide technical guidance to data engineers and cross-functional teams, conduct architecture reviews, and drive adoption of best practices in DataOps, security, and governance
  • Evaluate emerging technologies, conduct proof-of-concepts for new data tools and platforms, and lead the technical roadmap for data infrastructure modernization
What we offer
What we offer
  • Free comprehensive health insurance for you and your children
  • Parent Care Program: receive one additional month of leave on top of the legal parental leave
  • Free mental health and coaching services through our partner Moka.care
  • For caregivers and workers with disabilities, a package including an adaptation of the remote policy, extra days off for medical reasons, and psychological support
  • Work from EU countries and the UK for up to 10 days per year, thanks to our flexibility days policy
  • Work Council subsidy to refund part of sport club membership or creative class
  • Up to 14 days of RTT
  • A subsidy from the work council to refund part of the membership to a sport club or a creative class
  • Lunch voucher with Swile card
  • Fulltime
Read More
Arrow Right

Staff Data Ops Engineer - Platform

We are looking for a Staff Data Ops Engineer - Platform to join the Data & AI Pl...
Location
Location
France , Paris
Salary
Salary:
Not provided
doctolib.fr Logo
Doctolib
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7+ years of experience after graduation as a Staff Data Platform Engineer, or Staff Data Ops or Staff Site Reliability Engineer or in a similar role, with a history of architecting and scaling robust data platforms
  • Extensive experience with Google Cloud Platform and a command of Kubernetes & Terraform for automated deployments
  • Authority on implementing network and IAM security best practices
  • Deep technical proficiency in orchestrating data pipelines using Airflow or Dagster, deploying applications to the cloud, and leveraging modern data warehouses such as BigQuery
  • Highly skilled in programming with Python, and have a solid understanding of software development principles
  • Excellent troubleshooter who excels at diagnosing and fixing data infrastructure and identifying performance bottlenecks
  • Strong communicator who can articulate complex technical concepts to both technical and non-technical audiences
Job Responsibility
Job Responsibility
  • Design and implement enterprise-scale data infrastructure strategies, conducting thorough impact and cost analysis for major technical decisions, and establishing architectural standards across the organization
  • Build and optimize complex, multi-region data pipelines handling petabyte-scale datasets, ensuring 99.9% reliability and implementing advanced monitoring and alerting systems
  • Lead cost analysis initiatives, identify optimization opportunities across our data stack, and implement solutions that reduce infrastructure spend while improving performance and reliability
  • Provide technical guidance to data engineers and cross-functional teams, conduct architecture reviews, and drive adoption of best practices in DataOps, security, and governance
  • Evaluate emerging technologies, conduct proof-of-concepts for new data tools and platforms, and lead the technical roadmap for data infrastructure modernization
What we offer
What we offer
  • Free comprehensive health insurance for you and your children
  • Parent Care Program: receive one additional month of leave on top of the legal parental leave
  • Free mental health and coaching services through our partner Moka.care
  • For caregivers and workers with disabilities, a package including an adaptation of the remote policy, extra days off for medical reasons, and psychological support
  • Work from EU countries and the UK for up to 10 days per year, thanks to our flexibility days policy
  • Work Council subsidy to refund part of sport club membership or creative class
  • Up to 14 days of RTT
  • A subsidy from the work council to refund part of the membership to a sport club or a creative class
  • Lunch voucher with Swile card
  • Fulltime
Read More
Arrow Right