Staff IAM Engineer
SimpliSafe · Boston, MA · 1 mo ago
HybridEngineering$136k–$181k/yrFull-time
About the role
We are a rapidly growing and successful company seeking smart, talented, and humble individuals who share our values. Join us in our mission to disrupt the home security space and relentlessly pursue our goal to keep Every Home Secure.
What You'll Do
- Own and evolve SimpliSafe's Okta environment and identity strategy, serving as the go-to expert on all things IAM.
- Partner with Security, Engineering, and HR to build scalable access governance and lifecycle automation.
- Define IAM standards and architecture that grow with the company and keep us secure and compliant.
- Develop a roadmap for IAM maturity, identifying gaps, prioritizing investments, and aligning with security and compliance objectives.
- Owning the design, configuration, and optimization of our Okta environment, including SSO integrations, MFA policies, adaptive authentication, and lifecycle automation.
- Build and maintain Okta Workflows to automate provisioning, deprovisioning, and access reviews across SaaS, cloud, and on-prem systems.
- Design and enforce RBAC and least-privilege principles across our application and infrastructure landscape.
- Lead access certification and review programs, working with IT, Security, and HR to ensure accurate and timely access decisions.
- Support integrations between identity systems and HR platforms to support joiner/mover/leaver processes.
- Support audit and compliance activities (e.g., SOC 2, ISO 27001) by maintaining robust IAM controls and evidence.
- Mentor junior IT and security team members on identity best practices.
What You'll Bring
- 8+ years of experience in identity and access management, with deep hands-on expertise in Okta (Okta Certified Professional or Administrator certification strongly preferred).
- Proven experience architecting and managing enterprise IAM programs, not just operating tooling.
- Strong technical skills across SSO (SAML, OIDC/OAuth), MFA, directory services (Active Directory, LDAP), and SCIM-based provisioning.
- Experience with lifecycle management automation, including HR-to-IT integrations and joiner/mover/leaver workflows.
- Familiarity with PAM solutions (e.g., CyberArk, BeyondTrust, or similar) and privileged access controls.
- Experience supporting security frameworks and audits (SOC 2, ISO 27001, or similar).
- Ability to translate business and security requirements into practical IAM architecture and policy.
- Strong communication skills — able to explain identity concepts to technical and non-technical stakeholders alike.
Preferred Qualifications
- Experience with Okta Privileged Access or Okta Identity Governance (OIG).
- Familiarity with IGA platforms such as SailPoint or Saviynt.
- Experience with AWS IAM and cloud identity patterns (federated roles, workload identity).
- Exposure to zero-trust network access (ZTNA) architectures and their relationship to identity.
- Scripting or automation experience (Python, PowerShell, or similar) for identity lifecycle tasks.
Values You'll Share
- Customer Obsessed - Building deep empathy for our customers, putting them at the core of our work, and developing strong, long-term relationships with them.
- Aim High - Always challenging ourselves and others to raise the bar.
- No Ego - Maintaining a "no job too small" attitude, and an open, inclusive and humble style.
- One Team - Taking a highly collaborative approach to achieving success.
- Lift As We Climb - Investing in developing others and helping others around us succeed.
- Lean & Nimble - Working with agility and efficiency to experiment in an often ambiguous environment.
What We Offer
- A mission- and values-driven culture and a safe, inclusive environment where you can build, grow and thrive.
- A comprehensive total rewards package that supports your wellness and provides security for SimpliSafers and their families.
- Free SimpliSafe system and professional monitoring for your home.
- Employee Resource Groups (ERGs) that bring people together, give opportunities to network, mentor and develop, and advocate for change.