Contact Us

Senior Identity Platform Engineer & Leader

vanguard United State
Visa Sponsorship
Apply
AI Summary

Design and lead identity platforms, architecture, and engineering teams. Develop and maintain directory integrations, identity flows, and security controls. Collaborate with cross-functional teams to drive technical direction and standards.

Key Highlights
Lead identity platform engineering and architecture
Design and maintain directory integrations and identity flows
Develop security controls and collaborate with cross-functional teams
Key Responsibilities
Serve as technical lead for workforce identity platforms
Own end-to-end identity architecture
Lead design reviews and decisions for IdP resiliency
Document existing and new architecture
Design and troubleshoot identity flows
Engineer and maintain directory integrations
Design attribute models and lifecycle management
Support directory deployments in cloud-native environments
Build and operate identity infrastructure in AWS/GCP/Azure
Automate provisioning, deployment, and monitoring for identity platforms
Design identity controls aligned to Zero Trust principles
Partner with CSOC, audit, and risk teams on control validation and incident response
Technical Skills Required
Okta Workforce Identity OAuth 2.0 OIDC SAML Federation SCIM JWT Token-based auth Terraform CloudFormation Kubernetes Containerized identity services DevOps tools Policy as code Active Directory Okta UD Cloud directories Ping Directory
Benefits & Perks
Visa sponsorship
Hybrid working model
Flexible work arrangement

Job Description


Key Responsibilities

Identity Platform Engineering & Leadership


  • Serve as technical lead for workforce identity platforms, with Okta as the primary IdP and integrations to complementary platforms (e.g., Ping/Entra Identity).
  • Own end‑to‑end identity architecture, including authentication flows, federation, directory integrations, and token issuance.
  • Lead design reviews and decisions for IdP resiliency, failover, and supplier‑risk mitigation strategies.
  • Document existing and new architecture and act as a hands‑on engineer while also setting technical direction, patterns, and standards.
  • Strong communication, influence, and stakeholder‑management skills, with the ability to distill complex identity and security architectures into clear and concise messaging


Standards‑Based Identity & Federation


  • Design and troubleshoot identity flows using OAuth 2.0 / OIDC SAML 2.0 SCIM JWT / token‑based auth
  • Ensure token parity, claim consistency, and issuer abstraction across identity providers to minimize application impact.
  • Partner with application teams to enable modern authentication without app re‑architecture.


Searching for Cyber Security roles that provide visa sponsorship? Connect with international employers through Cyber Security Jobs with Visa Sponsorship opportunities actively seeking talented professionals.

Directory & Identity Data Architecture


  • Engineer and maintain directory integrations across Active Directory, Okta UD, and cloud directories (e.g., Ping Directory).
  • Design attribute models, lifecycle management, and group strategies at enterprise scale (thousands of groups, large population sizes).
  • Support directory deployments in cloud‑native environments (AWS/GCP, containers, Kubernetes).


Cloud, Automation & Reliability


  • Build and operate identity infrastructure in AWS/GCP/Azure, using: Infrastructure & Policy as Code (Terraform / CloudFormation) Kubernetes & containerized identity services
  • Automate provisioning, deployment, monitoring, and drift detection for identity platforms.
  • Support SRE‑style operational maturity: SLIs/SLOs, alerting, incident response, and runbooks for identity services.


Security, Risk & Compliance


  • Design identity controls aligned to Zero Trust principles and enterprise security policies.
  • Partner with CSOC, audit, and risk teams on: Control validation Incident response Regulatory and audit requirements (SOX, SOC, internal controls)

    • Explore our comprehensive directory of visa sponsorship jobs from employers worldwide who are ready to sponsor talented international professionals.

  • Contribute to risk assessments related to supplier dependency, SPOFs, and identity outages.


Collaboration & Influence


  • Work closely with security architecture, infrastructure, application engineering, IAM operations, and vendors.
  • Influence roadmap decisions through clear technical reasoning and executive‑ready communication.
  • Mentor senior and mid‑level engineers and raise overall identity engineering maturity.


Qualifications


  • Undergraduate degree in a related field or the equivalent combination of training and experience.
  • 12+ years of experience in Identity & Access Management engineering.
  • Skilled in using DevOps tools and experience in Policy as code.
  • Deep hands‑on expertise with Okta (Workforce Identity, MFA, SSO, policies, lifecycle).
  • Strong working knowledge of Ping Identity products (PingFederate, PingOne, Ping Directory) or equivalent platforms.

    • Interested in opportunities specifically in United State? Discover our dedicated Visa Sponsorship Jobs in United State page featuring roles from top employers in this location.

  • Expert understanding of identity standards: OAuth 2.0, OIDC, SAML Federation and token‑based security
  • Proven experience with directory services & LDAP (AD, cloud directories).
  • Experience building identity platforms in AWS/GCP, including containerized/Kubernetes deployments.
  • Strong troubleshooting skills for complex authentication and federation failures.
  • Ability to operate in high‑visibility, high‑impact environments.


Special Factors

Sponsorship

Vanguard is offering visa sponsorship for this position.

About Vanguard

At Vanguard, we don't just have a mission—we're on a mission.

To work for the long-term financial wellbeing of our clients. To lead through product and services that transform our clients' lives. To learn and develop our skills as individuals and as a team. From Malvern to Melbourne, our mission drives us forward and inspires us to be our best.

How We Work

Vanguard has implemented a hybrid working model for the majority of our crew members, designed to capture the benefits of enhanced flexibility while enabling in-person learning, collaboration, and connection. We believe our mission-driven and highly collaborative culture is a critical enabler to support long-term client outcomes and enrich the employee experience.
Apply Now
Job Overview
Posted Date May 01, 2026
Employment Type Full-time
Experience Level Mid-Senior level
Location United State
Category Cyber Security
Company vanguard
Mentioned Skills
gcp incident response active directory oauth saml kubernetes aws devops terraform cloud cloudformation
Industries
financial services

Similar Jobs

Explore other opportunities that match your interests

Cyber Security Policy Specialist
Cyber Security
18h ago
Visa Sponsorship Relocation Remote
Job Type Full-time
Experience Level Associate

Dragonfli Group

United State

Cybersecurity Software Engineer
Cyber Security
2d ago
Visa Sponsorship Relocation Remote
Job Type Contract
Experience Level Mid-Senior level

Strategic Staffing Solutions

United State

Distinguished Engineer - Identity Management

Cyber Security
3d ago

Premium Job

Sign up is free! Login or Sign up to view full details.

•••••• •••••• ••••••
Job Type ••••••
Experience Level ••••••

Capital One

United State

Subscribe our newsletter

New Things Will Always Update Regularly