IAM Security Engineer

Posted 4 Days Ago
Be an Early Applicant
Remote
168K-240K Annually
Information Technology • Security • Cybersecurity
The Role
As an Identity and Access Management (IAM) Security Engineer at Cloudflare, you will design, implement, and manage identity and access management solutions to safeguard systems, applications, and data. Responsibilities include ensuring secure user access and authentication, reviewing reports, managing automated tooling, and building controls to enforce policies.
Summary Generated by Built In

Available Locations: Hybrid from Austin, TX, Washington D.C., San Francisco, CA, Mexico City, MX
About the DepartmentThe Identity and Access Management (IAM) team is dedicated to ensuring the secure and efficient management of user identities, access privileges, and authentication mechanisms across internal systems, applications, and data. Our mission is to safeguard the organization against unauthorized access, protect sensitive information, and enable seamless user experiences while adhering to industry best practices and compliance standards.
About the Role
As an Identity and Access Management (IAM) Security Engineer, you will play a crucial role in designing, implementing, and scaling identity and access management solutions for Cloudflare's internal workforce and workloads. You will be responsible for safeguarding our systems, applications, and data by ensuring secure user access, authentication, and authorization mechanisms.
What You'll Do

  • Design, build, test, and deploy IAM solutions across authentication, authorization, and accounting
  • Leverage Cloudflare products to secure our identities
  • Build SSO integrations leveraging SAML, OIDC, OAuth, and SCIM
  • Build and manage the Identity Governance and Administration platform
  • Develop automated roles leveraging RBAC and ABAC
  • Build and manage an access certification platform
  • Build and manage a Privileged Access Management (PAM) platform
  • Provide operational support of IAM systems including an on-call rotation that may include after hours calls


Desirable skills, knowledge and experience
Security engineers take part in a wide variety of tasks and projects in the team. One individual is not expected to know everything, but a working knowledge in several of the following areas is required:

  • Strong understanding of identity federation (SAML, OAuth, OpenID Connect, etc.)
  • Experience implementing Identity Governance and Administration (IGA) solutions including lifecycle management, SCIM, birthright access (RBAC, ABAC), and access certifications
  • Experience with secure configuration of containerized application platforms (e.g. Kubernetes)
  • Advanced scripting experience (Python, TypeScript, Bash, etc.)
  • Experience implementing Zero Trust controls
  • Experience integrating with applications and SaaS solutions
  • Experience with Identity and Access Management policy application and enforcement
  • Experience working with Identity Threat Detection & Response (ITDR)
  • Experience working with infrastructure as code and configuration management tools like Terraform, Ansible, etc.


Compensation
Compensation may be adjusted depending on work location.

  • For Colorado, Illinois, Maryland and Minnesota based hires: Estimated annual salary of $137,000 - $167,000.
  • For New York City, Washington, Washington D.C. and California (excluding Bay Area) based hires: Estimated annual salary of $154,000 - $188,000.
  • For Bay Area based hires: Estimated annual salary of $162,000 - $198,000.


Equity
This role is eligible to participate in Cloudflare's equity plan.
Benefits
Cloudflare offers a complete package of benefits and programs to support you and your family. Our benefits programs can help you pay health care expenses, support caregiving, build capital for the future and make life a little easier and fun! The below is a description of our benefits for employees in the United States, and benefits may vary for employees based outside the U.S.
Health & Welfare Benefits

  • Medical/Rx Insurance
  • Dental Insurance
  • Vision Insurance
  • Flexible Spending Accounts
  • Commuter Spending Accounts
  • Fertility & Family Forming Benefits
  • On-demand mental health support and Employee Assistance Program
  • Global Travel Medical Insurance


Financial Benefits

  • Short and Long Term Disability Insurance
  • Life & Accident Insurance
  • 401(k) Retirement Savings Plan
  • Employee Stock Participation Plan


Time Off

  • Flexible paid time off covering vacation and sick leave
  • Leave programs, including parental, pregnancy health, medical, and bereavement leave

Top Skills

Ansible
DevOps
Devsecops
Oauth
Openid Connect
SAML
Terraform
The Company
Seattle, WA
3,300 Employees
Hybrid Workplace
Year Founded: 2010

What We Do

Cloudflare, Inc. is on a mission to help build a better Internet. Cloudflare’s suite of products protect and accelerate any Internet application online without adding hardware, installing software, or changing a line of code. Internet properties powered by Cloudflare have all web traffic routed through its intelligent global network, which gets smarter with every request. As a result, they see significant improvement in performance and a decrease in spam and other attacks. Cloudflare was awarded by Reuters Events for Global Responsible Business in 2020, named to Fast Company's Most Innovative Companies in 2021, and ranked among Newsweek's Top 100 Most Loved Workplaces in 2022.

Gallery

Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery

Cloudflare Offices

Hybrid Workspace

Employees engage in a combination of remote and on-site work.

We are committed to developing a global team that is distributed with a flexible working approach. Doing this equitably and inclusively is essential to our success. Visit our careers site for more on 'How & Where We Work.'

Typical time on-site: Flexible
Seattle, WA

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account