Identity Security Engineer at ARS | Torre
warning

Heads-up

The job you’re trying to post already exists in Torre:

Identity Security Engineer

You'll secure critical identity services, automate access, and leverage AI to enhance governance for a national network.
Emma highlights
This highlight was written by Emma’s AI. Ask Emma to edit it.
Full-time

Legal agreement: Employment

Provide your expected compensation while applying
location_on
Remote (for United States residents)
Match
skeleton-gauges
You have opted out of job matches in .
To undo this, go to the 'Skills and Interests' section of your preferences.
Review preferences
Shared by
Emma of Torre.ai
2 days ago

Requirements and responsibilities


Role SummaryBuilds and secures ARS identity services (Okta, Entra ID/AD, CyberArk). Implements SSO/MFA, Conditional Access, lifecycle automation, and privileged access controls for human and machine identities.ResponsibilitiesPrimary ResponsibilitiesAdminister Okta and Entra ID/AD; implement SSO/MFA/Conditional Access and Harden admin tiers.Design secure API authentication and lifecycle automation (onboarding/offboarding, SCIM/JIT).Operate PIM/PAM for privileged identities—role design, approvals, JIT access, and session monitoring.Integrate identity telemetry into SIEM/XDR; support access reviews and identity audits.This position will participate in an on-call rotation.Key Outcomes & KPIs100% MFA on privileged accounts; reduction in standing privilege; zero orphaned accounts.Verified API auth patterns for key apps; documented Conditional Access coverage.QualificationsRequired Qualifications5+ years in IAM; hands‑on with Okta/Entra; strong knowledge of OAuth/OIDC/SAML and SCIM provisioning.Experience with PIM/PAM platforms and identity lifecycle automation.AI Fluency: Demonstrated ability to leverage Claude or ChatGPT to continuously improve identity governance, access reviews, and policy automation.Tools & TechnologiesOkta, Microsoft Entra ID/AD, CyberArk, PIM/PAM tools, identity governance/reporting, SCIM/JIT integrationsCollaboration & Decision RightsPartners with App/Infra teams on integrations; authority over identity policies and admin standards; consults with GRC on access governance and audit evidence.ARS-Rescue Rooter is an Equal Opportunity Employer AA/EOE/M/F/V/D. In compliance with the Americans with Disabilities Act, ARS-Rescue Rooter may provide reasonable accommodations to qualified individuals with disabilities and encourages both prospective and current employees to discuss potential accommodations with the employer.
Optionally, you can add more information later (benefits, pre-screening questions, etc.)
check_circle

Payment confirmed

A member of the Torre team will contact you shortly

In the meantime, continue adding information to your job opening.