Identity and Application Security Engineer

DPR Construction

full-time

Posted on: 8/28/2025

Origin: • 🇺🇸 United States • Arizona, Florida, North Carolina

✨ AI Apply

Mid-LevelSenior

Cloud

About the role

Lead governance, implementation, and continuous improvement of application and identity security strategy.
Secure SaaS, PaaS, and internally hosted business applications across DPR and family companies.
Establish secure access frameworks, manage third-party identities, implement RBAC, drive secure-by-design practices.
Own security lifecycle of enterprise applications: intake, evaluation, onboarding, configuration, decommissioning.
Define and enhance application security standards for SaaS, PaaS, on-premises, and database platforms.
Maintain centralized SaaS inventory and improve workflows/automation for secure application intake.
Oversee IAM policies, design modern identity models using Microsoft Entra ID, implement PIM/PAM.
Define and audit RBAC frameworks, govern third-party access, enforce MFA and SSO strategies.
Liaise between security, IT, compliance, and business teams; support incident response and audits.

5+ years of IT experience, with at least 4 years focused on enterprise identity and application security.
Deep expertise in Microsoft Entra ID, PIM/PAM, conditional access, and SaaS integration.
Strong working knowledge of authentication and authorization standards: SAML, OAuth2, OpenID Connect (OIDC), SCIM.
Demonstrated experience with RBAC design, access governance, and user lifecycle management across cloud and on-prem applications.
Understanding of Zero Trust principles, SaaS governance, and regulatory compliance in enterprise environments.
Excellent written and verbal communication skills.
Experience in regulated or complex industry preferred.
Preferred certifications: Microsoft Certified: Identity and Access Administrator Associate, CISSP, CCSP, GSEC or similar.