Principal Identity Engineer – Cloud IAM, CIAM

🕒 il y a 18 jours

🏄 California – Distant

🏄 California – Remote

💵 $170 900 - $227 900 / an

⏰ Temps Plein

🔴 Expert

👷🏻‍♀️ Ingénieur

🦅 Parrain de Visa H1B

Cette entreprise a parrainé des visas H1B par le passé.

Postuler Maintenant

Trouver des Emplois à Distance Similaires

Recevoir des emails pour des emplois à distance

📊 Vérifiez votre score de CV pour ce poste

Améliorez vos chances d'obtenir un entretien en vérifiant votre score de CV avant de postuler.

Télécharger le CV

First American

Site WebLinkedInTous les Emplois

10 000+ employés

Fondée en 1889

🏠 Immobilier

💸 Finance

🏢 Entreprise

Real Estate • Finance • Enterprise

First American est une entreprise historique en activité depuis 1889, ayant évolué pour devenir une organisation de 9 milliards de dollars avec plus de 20 000 employés et plus de 700 bureaux dans le monde entier. L'entreprise propose une gamme de produits et de services qui assistent les acheteurs de maisons, les vendeurs, les entreprises et les investisseurs dans le marché immobilier. Avec un fort accent sur l'engagement des employés et la culture d'entreprise, First American met l'accent sur l'innovation, la technologie et l'implication communautaire, impulsant la transformation au sein de l'industrie immobilière.

Description

• Own the enterprise IAM strategy and target-state architecture across Microsoft Entra, AWS, and Google Cloud (OCI a plus). • Define secure, scalable identity patterns for workforce, partner, and customer access that align with security, risk, and compliance requirements. • Design and operationalize a Zero Trust identity model with continuous verification, risk-based access, and adaptive authentication. • Reduce standing privilege through least privilege design, just-in-time (JIT) access, and standardized entitlement models. • Hands-on design and delivery of IAM capabilities including SSO, MFA, identity lifecycle, federation, and privileged access across cloud and hybrid environments. • Lead modernization efforts, including migration from hybrid Active Directory to Entra ID–based authentication. • Design and evolve customer identity (CIAM) solutions supporting web, mobile, and API platforms. • Balance security, privacy, performance, and customer experience while enabling scalable enterprise integrations. • Establish IAM governance frameworks covering access lifecycle, RBAC/ABAC models, access reviews, and audit evidence. • Define measurable controls, documentation standards, and recurring review processes to ensure audit readiness. • Define and lead an enterprise IAM-as-Code program using Terraform and GitHub. • Build reusable, versioned modules and establish PR-based workflows with auditability, approvals, and security guardrails. • Engineer secure CI/CD pipelines for IAM deployments, including validation, testing, approvals, drift detection, and rollback strategies. • Ensure reliable, auditable identity changes with operational monitoring and clear runbooks. • Develop automation in Python, Bash, and JSON to scale identity operations and reduce manual risk. • Support policy management, bulk changes, integrations, and identity-related incident response and diagnostics.

🎯 Exigences

• Deep hands-on experience designing and operating identity platforms at scale in complex environments. • Advanced expertise across Microsoft Entra ID, AWS IAM, and Google Cloud IAM, with OCI experience a plus. • Proven ability to design cloud-agnostic IAM models and implement them consistently across platforms. • Strong background in IAM security architecture, governance, and risk-based access controls. • Hands-on experience with least privilege design, JIT access, Zero Trust identity, and RBAC/ABAC models. • Expert knowledge of OAuth 2.0, OpenID Connect, and SAML. • Proven experience delivering enterprise-scale SSO and MFA solutions. • Demonstrated experience establishing IAM-as-Code using Terraform with GitHub-based change control. • Strong scripting and automation skills in Python, Bash, and JSON, including CI/CD and guardrail design. • Experience architecting and operating customer identity platforms for portals, mobile apps, and APIs.

🏖️ Avantages

• Medical insurance • Dental insurance • Vision insurance • 401k • PTO/paid sick leave • Employee stock purchase plan