ZipRecruiter
The Role
We’re looking for a hands-on
Senior
& Security Engineer (VP)
to design, implement, and maintain secure, scalable and access management solutions for our growing enterprise and customer environments. You’ll work closely with internal teams and customers to design and implement secure architectures, commercialize upcoming environments, and drive adoption of advanced security practices like RBAC, ABAC, and Zero Trust. This role requires expertise with Okta, modern frameworks, and cloud security architecture, plus the ability to partner directly with customers and internal stakeholders to deliver secure, reliable, and user-friendly access solutions. What you\'ll do
Design and deploy platforms leveraging Okta and Entra ID (Azure AD), integrating adaptive authentication, automated lifecycle workflows, and advanced access policies. Build and maintain granular RBAC and ABAC policies to enforce least-privilege access and enable Shift Left security practices. Support the commercialization of new customer-facing environments. Design secure, segmented network architectures (VPCs/VNets, subnets, security groups) to limit lateral movement and align with Zero Trust principles. Integrate security controls into Infrastructure as Code (Terraform) to ensure secure-by-default deployments. Implement secure application access via federation protocols (SAML, OAuth, OpenID Connect), MFA, and conditional access. Serve as the primary security liaison with customers, ensuring environments meet security, compliance, and usability needs. Collaborate with engineering, IT, and product teams to integrate solutions seamlessly into applications and services. Lead access governance initiatives, including automated access reviews and segregation of duties. Automate provisioning, deprovisioning, and access management workflows to improve efficiency and reduce risk. Establish and maintain reusable Terraform modules for secure, scalable infrastructure. Drive continuous improvement by embedding security requirements into CI/CD pipelines. Requirements
5+ years of experience designing and implementing platforms with
Okta
and Azure AD/Entra ID. Strong background in RBAC/ABAC policy development,
Zero Trust
architecture, and cloud security best practices. Hands-on experience with Infrastructure as Code (Terraform) and automated security workflows. Knowledge of federation protocols (SAML, OAuth, OpenID Connect) and integrating into third-party services. Ability to communicate complex technical concepts to both technical and non-technical stakeholders, including customers. Experience with network segmentation, secure connectivity, and cloud- networking (AWS, Azure, GCP). Familiarity with threat modeling frameworks (STRIDE, MITRE ATT&CK) and Shift Left security principles. Strong problem-solving skills and the ability to work independently in a fast-paced environment. Benefits
This is an onsite position located at our offices in New York, NY or Santa Monica, CA. The expected base pay for this position is $200,000-$285,000. A discretionary bonus will be provided as part of the compensation package, in addition to a full range of medical, financial, and/or other benefits. TWG is an equal opportunity employer, and all qualified applicants will receive consideration for employment without regard to , , , , , , , , or status as a protected veteran.
#J-18808-Ljbffr
We’re looking for a hands-on
Senior
& Security Engineer (VP)
to design, implement, and maintain secure, scalable and access management solutions for our growing enterprise and customer environments. You’ll work closely with internal teams and customers to design and implement secure architectures, commercialize upcoming environments, and drive adoption of advanced security practices like RBAC, ABAC, and Zero Trust. This role requires expertise with Okta, modern frameworks, and cloud security architecture, plus the ability to partner directly with customers and internal stakeholders to deliver secure, reliable, and user-friendly access solutions. What you\'ll do
Design and deploy platforms leveraging Okta and Entra ID (Azure AD), integrating adaptive authentication, automated lifecycle workflows, and advanced access policies. Build and maintain granular RBAC and ABAC policies to enforce least-privilege access and enable Shift Left security practices. Support the commercialization of new customer-facing environments. Design secure, segmented network architectures (VPCs/VNets, subnets, security groups) to limit lateral movement and align with Zero Trust principles. Integrate security controls into Infrastructure as Code (Terraform) to ensure secure-by-default deployments. Implement secure application access via federation protocols (SAML, OAuth, OpenID Connect), MFA, and conditional access. Serve as the primary security liaison with customers, ensuring environments meet security, compliance, and usability needs. Collaborate with engineering, IT, and product teams to integrate solutions seamlessly into applications and services. Lead access governance initiatives, including automated access reviews and segregation of duties. Automate provisioning, deprovisioning, and access management workflows to improve efficiency and reduce risk. Establish and maintain reusable Terraform modules for secure, scalable infrastructure. Drive continuous improvement by embedding security requirements into CI/CD pipelines. Requirements
5+ years of experience designing and implementing platforms with
Okta
and Azure AD/Entra ID. Strong background in RBAC/ABAC policy development,
Zero Trust
architecture, and cloud security best practices. Hands-on experience with Infrastructure as Code (Terraform) and automated security workflows. Knowledge of federation protocols (SAML, OAuth, OpenID Connect) and integrating into third-party services. Ability to communicate complex technical concepts to both technical and non-technical stakeholders, including customers. Experience with network segmentation, secure connectivity, and cloud- networking (AWS, Azure, GCP). Familiarity with threat modeling frameworks (STRIDE, MITRE ATT&CK) and Shift Left security principles. Strong problem-solving skills and the ability to work independently in a fast-paced environment. Benefits
This is an onsite position located at our offices in New York, NY or Santa Monica, CA. The expected base pay for this position is $200,000-$285,000. A discretionary bonus will be provided as part of the compensation package, in addition to a full range of medical, financial, and/or other benefits. TWG is an equal opportunity employer, and all qualified applicants will receive consideration for employment without regard to , , , , , , , , or status as a protected veteran.
#J-18808-Ljbffr