Position Details

Salary $133K – $220K USD / year

Type Full-Time

Experience lead

Exp. Years 3 to 5 years

Education Bachelor of Computer Science or experience in identity security related field

Category Cybersecurity

About this role

Lead Infrastructure Security Engineer - Identity Governance and Administration focuses on implementing and maturing identity security across enterprise platforms. The role requires deep expertise in SailPoint IIQ/Identity Cloud, PingOne or ForgeRock, and strong cloud and IAM capabilities with regulatory compliance responsibilities.

Key Responsibilities

Collaborate with product owners and engineers
Implement identity governance solutions
Mentor team
Ensure PCI/SOX/Fed compliance
Triage and resolve identity security incidents

Technical Overview

Technical scope includes IAM architectures, Zero Trust, CASB-like concepts for identity, cloud security in AWS/Azure, and audit/compliance engagements with agile practices.

Ideal Candidate

The ideal candidate is a lead-level identity security professional with 3-5+ years of SailPoint IIQ experience, hands-on with PingOne or ForgeRock, and strong cloud platform knowledge (AWS/Azure). They should have a solid foundation in IAM, Zero Trust, and audit/compliance in a heavily regulated environment.

Must-Have Skills

3 to 5+ years developer experience with SailPoint IIQ (IIQ) V8.4+Experience with PingOne Advanced Identity Cloud or ForgeRock Identity CloudBachelor's degree in Computer Science or related fieldSecurity identity architectures and frameworksAudit and compliance engagementsAbility to mentor othersExperience with agile development methodologiesKnowledge of IAM and Zero Trust

Nice-to-Have Skills

CISSPCCSPIdentity Management InstituteExperience with automation and scripting (PowerShellPython)Experience with API integrations and security orchestrationExperience in highly regulated industries (financehealthcareetc.)

Tools & Platforms

SailPoint IIQSailPoint Identity CloudPingOne Advanced Identity CloudForgeRock Identity CloudAWSAzureEntra IDSplunk

Required Skills

3 to 5+ years in SailPoint IIQPingOne Advanced Identity Cloud or ForgeRock Identity CloudIAM/Zero TrustCloud Computing (AWS/Azure)Audit & ComplianceAgile methodsdocumentationmentoring

Hard Skills

3 to 5+ years developer experience with SailPoint IIQ (IIQ) V8.4+Experience with PingOne Advanced Identity Cloud (P1AIC) or ForgeRock Identity CloudBachelor of Computer Science or related fieldSecurity identity architectures and frameworksPrivileged Access ManagementAudit and compliance engagementsAgile development methodologiesIAMZero TrustCloud Computing: AWSAzure

Soft Skills

mentor otherscommunicationcollaborationproblem solvingself-motivation

Certifications

Preferred

CISSPCCSPIdentity Management Institute

Industry & Role

Industry Insurance

Job Function Lead identity governance and administration initiatives to secure enterprise access across cloud and on-premises environments

Role Subtype Security Engineer

Tech Domains Amazon Web Services, Azure, Microsoft 365, SharePoint, Power BI, Tableau, ITSM / ServiceNow, Identity and Access Management, Cloud Security

Keywords for Your Resume

Lead Infrastructure Security EngineerIdentity Governance and AdministrationIGASailPoint IIQSailPoint Identity CloudPingOne Advanced Identity CloudForgeRock Identity CloudCloud ComputingAWSAzureZero TrustIAMPrivileged Access ManagementAudit and CompliancePCISOXFed regulatory requirementsAutomationMicrosoft 365 SecurityPingOneForgeRockAmazon Web Services

Deal Breakers

Lack of SailPoint IIQ experience, Less than 3 years of relevant IAM experience, No cloud experience (AWS/Azure)

Apply for this Position →

Get matched to jobs like this

Luna finds roles that fit your skills and career goals — no endless scrolling required.

Create a Free Profile

Lead, Infrastructure Security Engineer - Identity Governance and Administration (IGA)

Get matched to jobs like this