Cambium Learning Group

Principal Security Engineer – Identity & Access Management

Cambium Learning Group

full-time

Posted on:

Location Type: Remote

Location: United States

Visit company website

Explore more

AI Apply
Apply

Job Level

Lead

Tech Stack

AzureCloudPython

About the role

  • Architect and maintain the target-state architecture for internal workforce identity
  • Help redesign customer-facing (CIAM)
  • Architect secure, modern authentication protocols (SAML, OAuth2, OIDC, FIDO2)
  • Fortify phishing-resistant MFA
  • Collaborate with IAM team to design automated provisioning, maintenance, and deprovisioning processes (SCIM) for high-volume user onboarding/offboarding
  • Drive the integration of our privileged identity platform with Active Directories, Cloud and on-prem based platforms, and third-party applications like SalesForce and Workday
  • Define RBAC (Role-Based Access Control) and ABAC (Attribute-Based Access Control) models for compliance with student data privacy laws
  • Act as a subject matter expert and mentor engineers on identity-first security best practices

Requirements

  • 7+ years in IT/Security
  • at least 4+ years focusing on Identity and Access Management (IAM) architecture
  • Deep hands-on experience with modern IDP & PAM solutions (e.g., Okta, Ping Identity, Microsoft Entra ID/Azure AD, CyberArk, BeyondTrust)
  • Proficiency in directory services (LDAP, AD)
  • Proficiency in scripting languages (PowerShell, Python) for automation
  • Exceptional understanding of TLS, SSO, Federation, SAML, OAuth2, and OIDC protocols
  • Bachelor's degree in Computer Science, Information Technology, or equivalent experience
  • Familiarity with student data privacy regulations (FERPA, COPPA)
  • Experience implementing Zero Trust architecture principals
  • Certifications: CAIM, CAMS, CISSP, CISM, or vendor-specific certifications (e.g., Okta Certified Architect)
Benefits
  • Remote First Work Environment
  • reimbursement to help cover the cost of setting up your home or remote office
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
Identity and Access Management (IAM)SAMLOAuth2OIDCFIDO2SCIMRBACABACPowerShellPython
Soft Skills
collaborationmentorshipsubject matter expertise
Certifications
CAIMCAMSCISSPCISMOkta Certified Architect