Senior Identity & Access Management (IAM) Lead

About The Position

Requirements

• 6+ years of experience in IAM, IT Security, or Security Engineering with hands-on ownership of Okta
• Strong expertise in SSO protocols (SAML, OIDC), SCIM lifecycle automation, and RBAC/group governance
• Experience owning and securing Google Workspace environments, including admin role design
• Experience implementing and managing secrets governance with 1Password or similar tools
• Proven ability to automate identity lifecycle processes through HRIS platforms such as Rippling or equivalent
• Experience implementing phishing-resistant MFA and strengthening administrative access controls
• Familiarity with audit readiness practices and incident response playbooks related to account compromise
• Experience operating in fast-scaling organizations where security standards and automation are critical

Responsibilities

• Own IAM end-to-end across Okta, Google Workspace, 1Password, and HRIS-driven lifecycle management
• Build and automate Joiner, Mover, Leaver workflows to enable fast onboarding and reliable, secure offboarding
• Standardize and scale SSO and SCIM integrations across SaaS applications with a secure-by-default approach
• Design and implement RBAC strategies, group governance models, admin boundaries, and approval workflows
• Strengthen authentication and access controls, including risk-based policies, least privilege models, and privileged access management patterns
• Configure, troubleshoot, and continuously improve IAM systems directly, without reliance on external consultants
• Establish dashboards, metrics, and lightweight runbooks to maintain identity health as the organization scales
• Ensure offboarding processes fully revoke sessions, remove access, and secure credentials consistently
• Maintain clean and well-governed 1Password vault structures with clear ownership and healthy credential rotation practices

Benefits

• Health, dental, and vision insurance
• 401(k) with company match
• Paid time off and holidays