Director, IAM Engineering

About The Position

Requirements

• 10+ years of experience in IAM, security engineering, platform engineering, or related enterprise identity domains
• 5+ years leading engineering teams responsible for IAM platforms, identity services, or security infrastructure at enterprise scale
• Strong experience with SailPoint, Microsoft Entra, and Okta
• Deep knowledge of OAuth2, OIDC, SAML, JWT, token exchange, OBO flows, federation, and modern workload identity patterns
• Experience designing identity architectures across SSO, MFA, provisioning, lifecycle automation, directory services, access governance, and app onboarding
• Experience securing and engineering for non-human identities across cloud, CI CD, platform, and runtime environments
• Experience defining secure patterns for agentic identity and software acting on behalf of users or services
• Strong engineering fundamentals across APIs, automation, distributed systems, CI CD, observability, and secure platform delivery
• Experience with privileged access, just in time access, and strong production control boundaries
• Experience working in regulated environments, including FedRAMP, public sector, or similarly controlled environments
• Experience using AI tools to improve engineering productivity, design quality, analysis, or automation with sound security judgment
• Strong cross functional leadership skills and the ability to influence operations, security, compliance, and engineering stakeholders

Nice To Haves

• Experience with Active Directory modernization, hybrid identity, and directory sync architecture
• Experience building identity paved roads and reusable engineering patterns
• Experience supporting public sector identity requirements and stronger compliance evidence models
• Experience with custom identity services, identity APIs, AI enabled platforms, and platform modernization programs

Responsibilities

• Define the engineering strategy, architecture, and roadmap for Autodesk’s IAM platforms across workforce, non-human, and agentic identity
• Lead engineering teams responsible for IAM platforms, APIs, automation services, and identity integrations
• Oversee engineering for SailPoint, Microsoft Entra, Okta, SSO, MFA, app onboarding, directory services, identity verification, and privileged access integrations
• Build secure, scalable, and reusable identity paved roads for internal teams
• Own engineering patterns for non-human identities including service accounts, workload identities, API identities, automation accounts, and federated machine identities
• Define secure patterns for agentic and on behalf of identity, including OBO flows, delegated access, scoped tokens, constrained execution, and least privilege controls
• Drive adoption of short lived credentials, federation, secret reduction, lifecycle controls, and stronger ownership for non-human and agentic identities
• Ensure engineering designs align to least privilege, privileged access, separation of duties, logging, and traceability requirements
• Partner with IAM Security and Trust on RBAC, ABAC, PIM, PAM integrations, auditability, and identity risk reduction
• Lead and grow a high performing IAM Engineering organization with strong technical ownership, delivery standards, and production readiness
• Encourage effective and secure use of AI assisted engineering tools to improve delivery, documentation, and operational efficiency

Benefits

• health and financial benefits
• time away
• everyday wellness