Identity Security Engineer

ARS-Rescue RooterRemote,

About The Position

Builds and secures ARS identity services (Okta, Entra ID/AD, CyberArk). Implements SSO/MFA, Conditional Access, lifecycle automation, and privileged access controls for human and machine identities. This position will participate in an on-call rotation.

Requirements

  • 5+ years in IAM; hands‑on with Okta/Entra; strong knowledge of OAuth/OIDC/SAML and SCIM provisioning.
  • Experience with PIM/PAM platforms and identity lifecycle automation.
  • AI Fluency: Demonstrated ability to leverage Claude or ChatGPT to continuously improve identity governance, access reviews, and policy automation.

Responsibilities

  • Administer Okta and Entra ID/AD; implement SSO/MFA/Conditional Access and Harden admin tiers.
  • Design secure API authentication and lifecycle automation (onboarding/offboarding, SCIM/JIT).
  • Operate PIM/PAM for privileged identities—role design, approvals, JIT access, and session monitoring.
  • Integrate identity telemetry into SIEM/XDR; support access reviews and identity audits.
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service