AI Identity Security Engineer

About The Position

Requirements

• High School Diploma or GED and eight (8) years of related post-secondary education and/or experience in Information Security or Information Technology
• Excellent knowledge of Cloud infrastructure, networking, services, and cloud architectural patterns; specifically, compute using virtual machines, managed infrastructure, containers, serverless, as well as database services, security services, and application services
• Proficient in python programming language
• Understanding of Shift Left principles and facilitation technologies
• Working Knowledge of Jenkins, Azure DevOps, Ansible, Terraform, Packer, Git, ServiceNow a big plus
• Strong background in identity governance automation, IAM, or DevSecOps, with hands-on engineering experience
• Applicants for this position must currently be authorized to work in the United States on a full-time basis.

Nice To Haves

• Four (4) years of relevant DevSecOps experience
• AWS DevOps certification or Azure DevOps certification
• Experience in building / deploying cloud native applications – OpenShift, Azure Kubernetes Service (AKS)
• Experience in observing real-time metrics in the pipeline and deployment strategies – Blue/Green, Canary Deployment
• Experience with either AWS or Azure cloud technologies
• Experience with interfacing with secrets management solutions like Hashicorp Vault
• Familiar with implementing Chaos engineering principles in the pipeline to determine weak links and suggest solutions.
• Familiar with testing tools used to facilitate automation and integration of the tools into CI/CD pipelines
• Must be comfortable in developing pipelines as code using yaml specs, ansible playbooks
• Ability to interpret and ensure compliance with applicable rules, regulations, and industry guidance
• Excellent communication skills and willing to mentor developers and other team members in the art of DevSecOps
• Familiarity with AI/ML systems, agentic architectures, and their associated security risks.

Responsibilities

• Partners with other engineers and information technology staff to orchestrate code builds, quality and security analyses, deployments, and automated testing through CI/CD release candidacy pipelines
• Articulates business needs and translate them into technology solutions
• Models release candidate CI/CD pipelines as a mechanism to communicate the states and steps necessary to determine a release candidate for each application and service
• Designs and develops fully autonomous CI/CD pipelines which facilitate cloud deployments which includes automation of all infrastructure, services and application build and deployment
• Ensures that all parts of the pipeline follow good software engineering practices to include automated tests and infrastructure tests
• Researches new technologies that will improve efficiency and effectiveness
• Implements highly scalable CI/CD platforms to support high change volumes and fast feedback
• Automates operational activities and tasks
• Responds to performance issues identified by alerts and reported incidents related to CI/CD platforms
• Builds tools which reduce errors and improve our overall customer experiences
• Assists in troubleshooting of production issues and ensure pipeline and infrastructure produces clear documentation and metrics which enables Root Cause Analysis
• Develops and tests – Ansible Playbooks, Terraform Scripts, Packer Scripts and establish immutable infrastructure such that patches are an artifact of the past
• Works with Enterprise Architecture, Information Security (InfoSec), Software Delivery, and Quality Assurance to enable the organization to move to the cloud using complete automation
• Ensures compliance with risk management programs, rules and regulations, and cybersecurity practices; identifies opportunities for and supports process improvements; applies disciplined change management practices
• Design and enforce scalable authorization models for AI agents and non-human identities across AWS and multi-cloud, enabling secure, low-friction deployment at scale
• Define identity patterns for agents and workloads (ephemeral credentials, token-based auth, delegation, scoped permissions) across their full lifecycle
• Build automated guardrails for provisioning, privilege management, and runtime access—leveraging CI/CD pipelines, APIs, and reusable, idempotent frameworks
• Establish enterprise standards for non-human identity governance, including lifecycle controls, auditability, and policy enforcement across hybrid environments
• Partner with platform and engineering teams to embed identity controls into agent frameworks, SDKs, and deployment pipelines
• Apply strong engineering practices (Python, Java, PowerShell) to integrate systems via REST APIs and modern auth protocols (OAuth, OIDC, SAML, SCIM), with hands-on experience in AWS IAM, Azure/Entra ID, and SailPoint integrations

Benefits

• Paid Vacation/Sick Time
• 401K with Company Match
• Medical, Dental and Vision Benefits
• Disability Benefits
• Health Savings Account
• Flexible Spending Account
• Life Insurance
• Parental Leave
• Employee Assistance Program
• Associate Volunteer Program