Comcast Cybersecurity: Principal IAM Engineer (SailPoint)
About The Position
The IAM Principal Engineer is responsible for driving the development, maintenance, and continuous improvement of the identity and access management program, delivering secure and scalable access solutions for myComcastAccess service. This role actively manages day-to-day engineering, support, and maintenance activities across all IAM technologies, ensuring operational excellence and system reliability. As a subject matter expert, the engineer develops custom solutions on identity management, privileged access management, and broader information security best practices, collaborating across technology domains to uphold enterprise security standards. We’re hiring a Principal Engineer to architect, build, and operate enterprise IAM at scale. You’ll anchor our SailPoint IdentityIQ platform, lead hands-on engineering, and mentor a small team of specialized developers. This is a builder’s role — deep technical work paired with development ownership.
Requirements
- 10+ years in IAM engineering, with deep, hands-on SailPoint IdentityIQ expertise (config + code).
- Strong IAM architecture fundamentals: authentication, authorization, federation, and lifecycle (JML).
- Solid working knowledge of LDAP, Active Directory, MFA, and Privileged Access Management (PAM).
- Programming proficiency in Java and BeanShell, plus SQL / RDBMS.
- Bachelor’s in Computer Science, Computer Engineering, or a related technical field.
Nice To Haves
- Radiant Logic (RadiantOne FID / VDS, Global Sync) — virtual directory, Federated Identity Management (FIM), identity correlation & synchronization.
- Experience with one or more of: Okta, Ping, ForgeRock, CyberArk, Microsoft Entra ID / Azure AD.
- Cloud identity on Azure, AWS, or GCP; Kubernetes / Helm deployment experience.
- Web services development (REST APIs, JSON).
Responsibilities
- Own and advance the SailPoint IdentityIQ platform — workflows, rules, connectors, provisioning policies, and forms.
- Architect and develop scalable IAM solutions across identity federation, directory services, and multi-source synchronization.
- Design and deliver automation and access governance for enterprise needs.
- Integrate IAM with the broader security stack — MFA, PAM, AD/LDAP, and cloud identity providers.
- Mentor a small team of engineers; provide technical and strategic guidance to ensure successful delivery.
- Lead POCs, capacity planning, and end-to-end testing for new system capabilities and integrations.
Benefits
- Base pay is one part of the Total Rewards that Comcast provides to compensate and recognize employees for their work.
- Most sales positions are eligible for a Commission under the terms of an applicable plan, while most non-sales positions are eligible for a Bonus.
- Additionally, Comcast provides best-in-class Benefits to eligible employees.
- We believe that benefits should connect you to the support you need when it matters most, and should help you care for those who matter most.
- That’s why we provide an array of options, expert guidance and always-on tools, that are personalized to meet the needs of your reality – to help support you physically, financially and emotionally through the big milestones and in your everyday life.
- Please visit the compensation and benefits summary on our careers site for more details.
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Principal
