Senior/Staff IAM Security Engineer

Posted:
9/23/2024, 7:37:34 PM

Location(s):
California, United States ⋅ San Francisco, California, United States

Experience Level(s):
Senior

Field(s):
IT & Security

Crusoe Energy is on a mission to unlock value in stranded energy resources through the power of computation.

Take a look at what we do! - https://www.youtube.com/watch?v=Rlt8k71Quqw 

We aim to align the long term interests of the climate with the future of global computing infrastructure. As data centers consume an exponentially growing power footprint to deliver technology to all connected devices, we are inspired by making sure that the energy meeting that demand is sourced in an environmentally responsible fashion. Crusoe co-locates mobile data centers with stranded energy resources, like flare gas and underloaded renewables, to deliver low-cost, carbon-negative distributed computing solutions. Crusoe Cloud is a managed cloud services platform powered by stranded energy that enables climate-friendly innovation in computationally intensive fields including artificial intelligence, graphics rendering, and computational biology.

About the Role:

Crusoe is looking to grow our Security team! We are looking for someone excited by the opportunity to be part of a fast-paced environment that pushes you to learn while doing. This role needs to be both strategic and intensely focused on identity and access management with an emphasis on process, scalability, and automation.  

As a Senior/Staff IAM Security Engineer you will be pivotal in the design, implementation, and scaling of IAM solutions that support our internal workforce and critical workloads. Your core responsibility will be setting and implementing strategy to protect our systems, applications, and data by establishing and maintaining secure user access, robust authentication protocols, and effective authorization mechanisms. You will be tasked with ensuring that our IAM infrastructure is not only secure but also scalable and efficient, supporting the evolving needs of our organization.

A Day In The Life:

  • Understand Business Requirements and Security Risks: Collaborate with stakeholders to comprehend business objectives, assess security risks, and design scalable IAM solutions that align with organizational needs.

  • Design and Implement IAM Solutions: Develop comprehensive IAM strategies that address both current and future security requirements, ensuring alignment with business goals and regulatory standards.

  • Architect and Deploy IAM Infrastructure: Lead the design, testing, and deployment of IAM solutions across authentication, authorization, and accounting, ensuring they are scalable and resilient.

  • Leverage Okta as the Identity Provider (IDP): Utilize Okta to secure identities, streamline user management, and integrate with other security tools and systems.

  • Build SSO Integrations: Design and implement Single Sign-On (SSO) integrations using SAML, OIDC, OAuth, and SCIM to enhance security and user experience.

  • Develop and Manage Identity Governance and Administration (IGA): Create and manage the IGA platform, incorporating processes and workflows for birthright access, Just-In-Time (JIT) provisioning, and access certification.

  • Automate Role Management: Develop and maintain automated role-based (RBAC) and attribute-based (ABAC) access controls to ensure efficient and secure access management.

  • Provide Operational Support for IAM Systems: Ensure the continuous, reliable operation of IAM systems, addressing issues promptly to maintain security and efficiency.

You Will Thrive In This Role If You Have:

  • 7+ years of advanced IAM experience (implementation, configuration, and coding) with 5+ years of that experience administering IAM using Okta.

  • Deep knowledge of IAM protocols and technology (SSO, OAuth, OIDC, SAML, SCIM, MFA, PAM, etc.).

  • Experience implementing Identity Governance and Administration (IGA) solutions including lifecycle management, SCIM, birthright access (RBAC, ABAC), just-in-time (JIT) provisioning, and access certifications.

  • Experience implementing Zero Trust principles

  • Strong developer experience with APIs, scripting and web services (bash, shell, Java, JavaScript, Python, Ruby, REST, SOAP, etc.) to implement custom integrations and automation of system administrator tasks.

  • Security-minded approach and experience developing multi-layered and auditable system controls, integrations, processes, and procedures. 

  • Demonstrated ability to simplify complex systems and implement clean, efficient architectures.

Benefits:

  • Hybrid work schedule

  • Industry competitive pay

  • Restricted Stock Units in a fast growing, well-funded technology company

  • Health insurance package options that include HDHP and PPO, vision, and dental for you and your dependents

  • Employer contributions to HSA accounts 

  • Paid Parental Leave 

  • Paid life insurance, short-term and long-term disability 

  • Teladoc 

  • 401(k) with a 100% match up to 4% of salary

  • Generous paid time off and holiday schedule

  • Cell phone reimbursement

  • Tuition reimbursement

  • Subscription to the Calm app

  • MetLife Legal

  • Company paid commuter benefit; $50 per pay period

Compensation Range

Compensation will be paid in the range of $180,000 - $300,000. Restricted Stock Units are included in all offers. Compensation to be determined by the applicants knowledge, education, and abilities, as well as internal equity and alignment with market data.

Crusoe Energy is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, disability, genetic information, pregnancy, citizenship, marital status, sex/gender, sexual preference/ orientation, gender identity, age, veteran status, national origin, or any other status protected by law or regulation.