Senior/Staff IAM Security Engineer

3 months ago
Full time role
Hybrid · San Francisco, CA, US... more

Crusoe is building the World’s Favorite AI-first Cloud infrastructure company. We’re pioneering vertically integrated,  purpose-built AI infrastructure solutions trusted by Fortune 500 companies to power their most advanced AI applications. Crusoe is redefining AI cloud infrastructure, with a mission to align the future of computing with the future of the climate. Our AI platform is recognized as the "gold standard" for reliability and performance. Our data centers are optimized for AI workloads and are powered by clean, renewable energy.

Be part of the AI revolution with sustainable technology at Crusoe. Here, you'll drive meaningful innovation, make a tangible impact, and join a team that’s setting the pace for responsible, transformative cloud infrastructure.

About the Role:

Crusoe is looking to grow our Security team! We are looking for someone excited by the opportunity to be part of a fast-paced environment that pushes you to learn while doing. This role needs to be both strategic and intensely focused on identity and access management with an emphasis on process, scalability, and automation.  

As a Senior/Staff IAM Security Engineer you will be pivotal in the design, implementation, and scaling of IAM solutions that support our internal workforce and critical workloads. Your core responsibility will be setting and implementing strategy to protect our systems, applications, and data by establishing and maintaining secure user access, robust authentication protocols, and effective authorization mechanisms. You will be tasked with ensuring that our IAM infrastructure is not only secure but also scalable and efficient, supporting the evolving needs of our organization.

A Day In The Life:

  • Understand Business Requirements and Security Risks: Collaborate with stakeholders to comprehend business objectives, assess security risks, and design scalable IAM solutions that align with organizational needs.

  • Design and Implement IAM Solutions: Develop comprehensive IAM strategies that address both current and future security requirements, ensuring alignment with business goals and regulatory standards.

  • Architect and Deploy IAM Infrastructure: Lead the design, testing, and deployment of IAM solutions across authentication, authorization, and accounting, ensuring they are scalable and resilient.

  • Leverage Okta as the Identity Provider (IDP): Utilize Okta to secure identities, streamline user management, and integrate with other security tools and systems.

  • Build SSO Integrations: Design and implement Single Sign-On (SSO) integrations using SAML, OIDC, OAuth, and SCIM to enhance security and user experience.

  • Develop and Manage Identity Governance and Administration (IGA): Create and manage the IGA platform, incorporating processes and workflows for birthright access, Just-In-Time (JIT) provisioning, and access certification.

  • Automate Role Management: Develop and maintain automated role-based (RBAC) and attribute-based (ABAC) access controls to ensure efficient and secure access management.

  • Provide Operational Support for IAM Systems: Ensure the continuous, reliable operation of IAM systems, addressing issues promptly to maintain security and efficiency.

You Will Thrive In This Role If You Have:

  • 7+ years of advanced IAM experience (implementation, configuration, and coding) with 5+ years of that experience administering IAM using Okta.

  • Deep knowledge of IAM protocols and technology (SSO, OAuth, OIDC, SAML, SCIM, MFA, PAM, etc.).

  • Experience implementing Identity Governance and Administration (IGA) solutions including lifecycle management, SCIM, birthright access (RBAC, ABAC), just-in-time (JIT) provisioning, and access certifications.

  • Experience implementing Zero Trust principles

  • Strong developer experience with APIs, scripting and web services (bash, shell, Java, JavaScript, Python, Ruby, REST, SOAP, etc.) to implement custom integrations and automation of system administrator tasks.

  • Security-minded approach and experience developing multi-layered and auditable system controls, integrations, processes, and procedures. 

  • Demonstrated ability to simplify complex systems and implement clean, efficient architectures.

Benefits:

  • Hybrid work schedule

  • Industry competitive pay

  • Restricted Stock Units in a fast growing, well-funded technology company

  • Health insurance package options that include HDHP and PPO, vision, and dental for you and your dependents

  • Employer contributions to HSA accounts 

  • Paid Parental Leave 

  • Paid life insurance, short-term and long-term disability 

  • Teladoc 

  • 401(k) with a 100% match up to 4% of salary

  • Generous paid time off and holiday schedule

  • Cell phone reimbursement

  • Tuition reimbursement

  • Subscription to the Calm app

  • MetLife Legal

  • Company paid commuter benefit; $50 per pay period

Compensation Range

Compensation will be paid in the range of $180,000 - $300,000. Restricted Stock Units are included in all offers. Compensation to be determined by the applicants knowledge, education, and abilities, as well as internal equity and alignment with market data.

Crusoe is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, disability, genetic information, pregnancy, citizenship, marital status, sex/gender, sexual preference/ orientation, gender identity, age, veteran status, national origin, or any other status protected by law or regulation.