Principal IAM & Web Security Engineer

About The Position

Requirements

• 3+ years of experience in a program lead role with hands-on experience in Okta/Azure AD
• 5+ years of experience in implementing and managing WAF & CDN solutions using platforms such as Akamai/Cloudflare
• Strong knowledge of identity protocols (SAML, OAuth2, LDAP, OpenID Connect)
• Expert-level knowledge of RBAC, MFA, privileged access management, and identity governance.
• Experience in OWASP Top 10, secure coding, DAST/SAST and API security
• Proven experience in risk prioritization, remediation planning, and use of enterprise vulnerability scanning tools.
• Strong scripting or automation skills (e.g., PowerShell, Python)
• Hands-on experience with WAF management, SOC workflows, SIEM tools, and log analysis for threat detection.

Nice To Haves

• Possession of the CISSP (Certified Information Systems Security Professional) is highly preferred.

Responsibilities

• Implement and manage Web Application Firewalls (WAF) and security policies, focusing on policy tuning, bot management, and rule optimization.
• Align IAM configs & controls to meet compliance, and security requirements
• Lead and execute secure code reviews, application penetration testing, and dynamic application security testing (DAST) to proactively identify vulnerabilities in the engineering lifecycle.
• Serve as the subject matter expert on Application Security best practices, including the OWASP Top 10, secure coding standards, and API security.
• Identify and track vulnerabilities across applications, coordinating remediation efforts and ensuring timely patching and risk prioritization based on business impact.
• Manage user provisioning, Role-Based Access Control (RBAC), and privileged access management (PAM).
• Enforce strong authentication mechanisms, including multi-factor authentication (MFA) and the principle of least privilege across all digital environments.