FREE ACCESS
5,000–10,000 jobs/day

See all jobs on JobTailor
Search thousands of fresh jobs every day.
Discover
- Fresh listings
- Fast filters
- No subscription required
Create a free account and start exploring right away.

Principal Identity Engineer
The LeafletPrincipal Identity Engineer overseeing identity management and developing security architecture at Hard Rock Digital. Leading initiatives for access control, automated identity lifecycle, and Zero Trust strategy.
Tech Stack
Tools & technologiesAWSAzureCloudGoogle Cloud PlatformPython
About the role
Key responsibilities & impact- Own the security architecture, standards, authentication methods, and roadmap for Microsoft Entra ID, our primary identity provider — partnering with IT on tenant operations
- Design and continuously refine Conditional Access policies that balance strong protection with a smooth experience for a globally distributed workforce
- Advance our rollout of phishing-resistant, passwordless authentication (passkeys, certificate-based, FIDO2)
- Own federation and single sign-on across our SaaS estate (SAML, OIDC, OAuth 2.0, SCIM provisioning)
- Own our privileged access model using Microsoft Entra PIM — separate admin identities, just-in-time elevation, and approval workflows
- Design and maintain break-glass procedures and safeguards for our most sensitive administrative paths
- Reduce standing privilege across the environment and make "least privilege, just in time" the default
- Automate the joiner-mover-leaver lifecycle so access is granted, changed, and revoked accurately and promptly
- Build and run access reviews and entitlement governance, partnering with our GRC team on audit evidence (ISO 27001, SOC 2, PCI DSS, GLI-19/GLI-33)
- Make access decisions auditable, explainable, and continuously right-sized
- Govern service principles, managed identities, and workload/federated credentials across AWS, Azure, and GCP
- Partner on secrets governance across our secrets management platforms to shrink the number of long-lived, standing secrets
- Partner with our Principal Cloud & Network Security Engineer, who owns service-to-service authentication (mTLS, service mesh)
- Serve as the identity authority for our Zero Trust program, aligned to NIST SP 800-207 and the CISA Zero Trust Maturity Model (Identity pillar)
- Partner with our cloud and network security function on identity-aware access through Cloudflare Access
- Partner with Security Operations to make identity signals (risky sign-ins, privileged elevation, MFA anomalies) first-class inputs to detection and response
- Advise on customer identity (CIAM) and account-security architecture — partnering with our Principal Product Security Engineer, who owns the application security of player-facing account flows, and with product engineering
Requirements
What you’ll need- 10+ years in identity and access management, security engineering, or a closely related field — or equivalent practical experience
- Deep, hands-on expertise with a modern enterprise identity platform — Conditional Access, PIM/PAM, authentication methods, and identity governance (we run Microsoft Entra ID)
- Strong command of identity protocols and patterns: SAML, OIDC, OAuth 2.0, SCIM, and modern MFA
- Experience automating the identity lifecycle and integrating identity across a large SaaS and multi-cloud estate
- Scripting and automation skills (PowerShell, Microsoft Graph API, Python) and comfort with Infrastructure as Code
- A track record of designing least privilege, just-in-time access in a real production environment
- Excellent written and verbal communication — you can explain an access decision to an engineer and a risk to an executive
- Fluency with AI — you lead with it, reaching for AI tools daily to work faster and sharper; hands-on experience applying AI to security or engineering work is a must.
Benefits
Comp & perks- Competitive pay and benefits
- Flexible vacation allowance
- A hybrid / remote working environment
- Startup culture backed by a secure, global brand
ATS Keywords
✓ Tailor your resumeApplicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills & Tools
Identity ProtocolsSAMLOIDCOAuth 2.0SCIMMFAPowerShellMicrosoft Graph APIPythonInfrastructure As Code
Soft Skills
Excellent Communication