Senior Identity Engineer – Workforce & Customer Identity
One Identity
full-time
Posted on:
Location Type: Remote
Location: Washington • United States
Visit company websiteExplore more
Job Level
About the role
- Define and execute IAM strategy across workforce and customer identity
- Design and manage identity platforms (e.g., Entra ID, Okta)
- Implement SSO (SAML, OIDC), MFA, and conditional access policies
- Define and manage birthright access models and RBAC/ABAC controls
- Own identity lifecycle (joiner/mover/leaver) and SCIM-based provisioning
- Build and manage CIAM solutions for customers, partners, and external users
- Implement access governance (certifications, reviews, least privilege)
- Automate identity workflows and integrate with enterprise systems (Workday, Salesforce, etc.)
- Partner with security and audit teams on compliance (ISO 27001, SOC 2)
- Lead identity separation and transformation during carve-out
Requirements
- 7–10+ years of experience in IAM or security engineering
- Strong hands-on experience with Entra ID (Azure AD), Okta, or similar
- Deep expertise in SSO (SAML, OAuth, OIDC) and SCIM provisioning
- Experience designing IAM solutions in cloud/SaaS environments
- Strong understanding of access models (RBAC, ABAC, least privilege)
- Scripting/automation experience (PowerShell, Python, APIs)
Benefits
- Health and wellness prioritized
- Opportunities for career growth and development
- Collaborative work environment
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills & Tools
IAM strategySSOMFARBACABACSCIM provisioningscriptingautomationcloud environmentsSaaS
Soft Skills
leadershipcollaborationcommunication
Certifications
ISO 27001SOC 2