Senior Cybersecurity Engineer SaaS / Identity Management
Posted 1 week ago by Spar Information Systems
Negotiable
Undetermined
Remote
Remote
Summary: The Senior Cybersecurity Engineer role focuses on designing, implementing, and managing enterprise-grade identity and SaaS automation solutions, with an emphasis on Identity & Access Management (IAM) and DevOps automation. This position requires expertise in architecting automation frameworks and enhancing identity workflows to ensure secure user lifecycle management across cloud and on-premise environments. The role is remote but requires working in the PST time zone. The contract duration is 12 months.
Key Responsibilities:
- Manage and administer enterprise SaaS and on-premise applications supporting multiple business units.
- Design and maintain user provisioning and deprovisioning workflows, ensuring compliance and security.
- Implement and manage SAML SSO, MFA/2FA, and Identity Federation solutions across platforms.
- Configure and maintain IAM integrations for applications such as Okta, Google Workspace (G-Suite), Azure AD, SAP, ADP, Concur, and others.
- Architect and develop automation tools to streamline user lifecycle management, identity access workflows, and SaaS application onboarding and integration.
- Build and maintain DevOps pipelines and toolchain improvements for IAM operations.
- Develop automation using scripting languages such as Python, Bash, PowerShell, and Java.
- Use APIs, webhooks, and event-driven architecture to integrate systems and workflows.
- Design and implement IAM solutions leveraging OIDC, SAML, SCIM, and modern authentication protocols.
- Configure and manage advanced Okta capabilities including Okta Access Gateway (OAG), Device Trust, Adaptive MFA (AMFA), Desktop SSO (DSSO), Okta Workflows and API automation, and Okta Expression Language.
- Analyze dependencies and design robust solutions integrating multiple SaaS and on-prem systems.
- Build and maintain integrations using REST/SOAP APIs, LDAP, RADIUS, SFTP, SSH, and data formats such as JSON, XML, YAML.
- Utilize synchronization tools including GAM/GADS (Google), Okta APIs, Okta Workflows, Google APIs.
- Develop security analytics and reporting using Python (Pandas), log aggregation tools such as Sumo Logic, and XDR query frameworks.
- Monitor system health, user activity, and identity risks.
- Partner with senior leaders, operations teams, and cross-functional stakeholders to deliver scalable SaaS solutions.
- Act as a technical advisor on IAM and SaaS strategy.
- Produce clear and comprehensive technical documentation including architecture diagrams, integration templates, runbooks, and SOPs.
- Develop training materials and provide knowledge transfer to operations/support teams.
Key Skills:
- 8+ years of experience in Identity & Access Management, SaaS administration, or DevOps automation.
- Strong expertise in IAM platforms, especially Okta.
- Hands-on experience with SAML, OIDC, SCIM, and modern authentication protocols.
- Enterprise identity integrations.
- Advanced scripting experience in Python, Bash, PowerShell, Java.
- Deep knowledge of networking and integration protocols: LDAP, RADIUS, REST, SOAP, HTTP(S), SSH, SFTP.
- Experience building automation using APIs and workflow engines.
- Strong understanding of security best practices and identity governance.
- Experience with cloud platforms (Azure, Google Cloud Platform, AWS IAM).
- Familiarity with Zero Trust security models.
- Previous experience with enterprise-scale automation and DevOps pipelines.
- Knowledge of log analytics and SIEM/XDR tools.
- Certifications such as Okta Certified Professional / Administrator, Certified Identity and Access Manager (CIAM), Cloud certifications (Azure/AWS/Google Cloud Platform).
Salary (Rate): undetermined
City: undetermined
Country: undetermined
Working Arrangements: remote
IR35 Status: undetermined
Seniority Level: undetermined
Industry: IT
Role: Senior Cybersecurity Engineer SaaS / Identity Management
Location: Remote (Needs to work in PST time zone)
Duration: 12 Months
Overview
We are seeking a highly skilled Senior SaaS / Identity Engineer to design, implement, and manage enterprise-grade identity and SaaS automation solutions. This role focuses on Identity & Access Management (IAM), DevOps automation, and SaaS ecosystem integration, ensuring secure, scalable, and efficient user lifecycle management across both cloud and on-premise environments.
You will play a key role in architecting automation frameworks, enhancing identity workflows, and improving operational efficiency across a diverse application landscape.
Key Responsibilities
Identity & SaaS Administration
- Manage and administer enterprise SaaS and on-premise applications supporting multiple business units.
- Design and maintain user provisioning and deprovisioning workflows, ensuring compliance and security.
- Implement and manage SAML SSO, MFA/2FA, and Identity Federation solutions across platforms.
- Configure and maintain IAM integrations for applications such as Okta, Google Workspace (G-Suite), Azure AD, SAP, ADP, Concur, and others.
DevOps & Automation
- Architect and develop automation tools to streamline:
- User lifecycle management
- Identity access workflows
- SaaS application onboarding and integration
- Build and maintain DevOps pipelines and toolchain improvements for IAM operations.
- Develop automation using scripting languages such as Python, Bash, PowerShell, and Java.
- Use APIs, webhooks, and event-driven architecture to integrate systems and workflows.
Identity & Security Engineering
- Design and implement IAM solutions leveraging:
- OIDC, SAML, SCIM, and modern authentication protocols
- Secure token handling and lifecycle management
- Configure and manage advanced Okta capabilities including:
- Okta Access Gateway (OAG)
- Device Trust
- Adaptive MFA (AMFA)
- Desktop SSO (DSSO)
- Okta Workflows and API automation
- Okta Expression Language
Integration & Systems Architecture
- Analyze dependencies and design robust solutions integrating multiple SaaS and on-prem systems.
- Build and maintain integrations using:
- REST/SOAP APIs, LDAP, RADIUS, SFTP, SSH
- Data formats such as JSON, XML, YAML
- Utilize synchronization tools including:
- GAM/GADS (Google), Okta APIs, Okta Workflows, Google APIs
Security Analytics & Monitoring
- Develop security analytics and reporting using:
- Python (Pandas)
- Log aggregation tools such as Sumo Logic
- XDR query frameworks
- Monitor system health, user activity, and identity risks.
Collaboration & Stakeholder Engagement
- Partner with senior leaders, operations teams, and cross-functional stakeholders to deliver scalable SaaS solutions.
- Act as a technical advisor on IAM and SaaS strategy.
Documentation & Enablement
- Produce clear and comprehensive technical documentation including:
- Architecture diagrams
- Integration templates
- Runbooks and SOPs
- Develop training materials and provide knowledge transfer to operations/support teams.
Required Qualifications
- 8+ years of experience in Identity & Access Management, SaaS administration, or DevOps automation
- Strong expertise in IAM platforms, especially Okta
- Hands-on experience with:
- SAML, OIDC, SCIM, and modern authentication protocols
- Enterprise identity integrations
- Advanced scripting experience in:
- Python, Bash, PowerShell, Java
- Deep knowledge of networking and integration protocols:
- LDAP, RADIUS, REST, SOAP, HTTP(S), SSH, SFTP
- Experience building automation using APIs and workflow engines
- Strong understanding of security best practices and identity governance
Preferred Qualifications
- Experience with cloud platforms (Azure, Google Cloud Platform, AWS IAM)
- Familiarity with Zero Trust security models
- Previous experience with enterprise-scale automation and DevOps pipelines
- Knowledge of log analytics and SIEM/XDR tools
- Certifications such as:
- Okta Certified Professional / Administrator
- Certified Identity and Access Manager (CIAM)
- Cloud certifications (Azure/AWS/Google Cloud Platform)