Senior IAM Engineer

Rubrik•Palo Alto, CA

41d

About The Position

Rubrik is seeking a highly skilled and experienced Senior IAM Engineer to join our Identity & Access Management team, reporting to the Senior Manager. In this pivotal role, you will design, implement, and operate secure workforce identity services for Rubrik's RSCâG environment. You will own Okta administration in FedRAMP Moderate/High contexts, implement strong authentication and authorization controls (MFA, device trust, network zones), integrate SCIM and SSO for SaaS and GovCloud platforms, and partner with InfoSec, Network, CloudOps, and IAM Governance (SailPoint) to sustain compliance, availability, and audit readiness.The same responsibilities will be applicable to Okta Commercial Instance.

Requirements

8+ years of experience administering Okta in enterprise environments with hands-on ownership of SSO, SCIM provisioning, Okta Workflows, API automation, and policy management.
Proficiency with modern IAM platforms (e.g., Okta, Azure AD, SailPoint, CyberArk).
Understanding of identity protocols such as SAML, OpenID Connect, and OAuth.
Experience with cloud IAM services from providers like AWS, Azure, and GCP.
Skills in designing and implementing automated IAM workflows.
Knowledge of regulatory requirements (e.g., SOX, HIPAA, GDPR) and how they apply to IAM.
Collaborate with an India-based team.
Demonstrate strong leadership qualities.
Possess a solid understanding of change management processes.

Nice To Haves

Okta certifications (Professional, Administrator, Consultant, or Architect).
Hands-on experience with Okta Workflows, Access Requests, Identity Governance, and Okta ASA.
IGA/PAM experience (e.g., SailPoint, Saviynt, CyberArk).
Experience securing CIAM and customer-facing identity journeys.
Security engineering background with Zero Trust, secrets management, and policy-as-code practices.

Responsibilities

Develop the overall IAM strategy, security frameworks, and architecture for enterprise-wide access control.
Design IAM solutions for cloud and on-premise environments, supporting access management, SSO, and identity federation.
Implement and manage PAM solutions to control access to sensitive accounts and systems.
Automate processes for user provisioning, de-provisioning, and identity lifecycle management.
Develop IAM policies, standards, and automation frameworks to ensure compliance with industry best practices and regulations (e.g., NIST, GDPR).
Partner with engineering, operations, and business teams to ensure IAM solutions align with business needs.
Ensure the confidentiality, integrity, and availability of IAM systems and data while supporting audits and risk assessments.
Implementing and scaling identity protocols like SAML, OIDC, OAuth, and SCIM.
Developing robust access controls (RBAC, ABAC) and enhancing security with MFA, Adaptive MFA, and Device Trust.
Creating and maintaining runbooks and change management processes.
Leading User Access Reviews, contributing to audit evidence, and operationalizing logging and monitoring for compliance.
Automating identity workflows using Okta Workflows, APIs, and Terraform.
Administering and enhancing Okta for FedRAMP environments and integrating with U.S. GovCloud services.