Job Description
The role involves designing, implementing, and managing the company's Identity and Access Management (IAM) architecture to ensure secure, scalable, and efficient access control across workforce, customer, and partner domains, supporting the company's overall security and business strategies.
Key Responsibilities
- Develop and maintain the target-state IAM architecture and roadmap aligned with business strategy and security requirements
- Evaluate, select, and deploy new IAM products and technologies such as IGA, PAM, AM, and Directory Services
- Define and govern IAM policies, standards, and procedures with a cloud-first approach
- Provide architectural guidance for complex access control models, role engineering, and segregation of duties enforcement
- Design solutions for Federation SSO to ensure secure and seamless access for partners and customers
- Own the full IAM lifecycle, evolving infrastructure into a scalable, modern ecosystem
Requirements
- At least 10 years of progressive experience in Information Security, with at least 4 years focused on architecting and implementing IAM solutions in a large enterprise environment.
- Expert-level knowledge of at least one major Cloud Identity Provider e.g., Azure, AWS IAM and or a major Customer Identity and Access Management (CIAM) platform.
- Deep understanding of core IAM protocols SAML, OAuth 2.0, OpenID Connect (OIDC), SCIM, and LDAP.
- Experience in at least some of the following areas: Identity Governance and Administration (IGA) with tools such as SailPoint, Saviynt, Conductor One, or similar; Privileged Access Management (PAM) with tools such as CyberArk, HashiCorp Vault, Delinea, or similar; Multi-Factor Authentication (MFA) with FIDO2, WebAuthn, biometric solutions, or platform-native MFA tools; API Security protecting APIs using OAuth scopes and claims.
- Ability to develop and champion the target-state IAM architecture and roadmap, ensuring alignment with overall business strategy and security requirements.
- Experience leading the evaluation, selection, and deployment of new IAM products and technologies including IGA, PAM, Access Management (AM), and Directory Services.
- Ability to define and govern IAM policies, standards, and procedures with a cloud-first infrastructure.
- Experience providing architectural guidance for complex access control models, role engineering, and segregation of duties (SoD) enforcement.
- Experience architecting solutions for Federation Single Sign-On (SSO), ensuring secure and seamless access for partners and customers.
- Strong analytical, problem-solving, and communication skills, with the ability to create clear, concise documentation and architecture diagrams.
Benefits & Perks
Base salary range: 212,000 - 307,000 USD per year
Annual bonus
Equity compensation
Hybrid work environment (in-office at least 3 days per week)
Ready to Apply?
Join Aurora and make an impact in renewable energy
Stay Updated on Sustainability Jobs
Get the latest renewable energy jobs and career tips delivered to your inbox.
Job Alerts
Get notified about new sustainability jobs
More at Aurora
More jobs at Aurora
Hardware Engineering Intern, Embedded
Aurora
NEW
Mountain View
Internship
14h
$0k-0k/hr
Cadence PCB Librarian
Aurora
NEW
Pittsburgh
Full Time
14h
$163k-261k
Cadence PCB Librarian
Aurora
NEW
Bozeman
Full Time
14h
$163k-261k
More jobs in Mountain View, California
IT Support Engineer Temporary FTE
Nuro
NEW
Mountain View
TEMPORARY
2d
$96k-130k
Software Engineer, Onboard Infrastructure
Nuro
NEW
Mountain View
Full Time
2d
$160k-241k
Software Engineer, Offboard Infrastructure
Nuro
NEW
Mountain View
Full Time
2d
$160k-241k