Senior Principal IAM Security Engineer
Employment Information
Report this job
Job expired or something wrong with this job?
Job Description
Lead strategies for Identity and Access Management at Autodesk, focusing on securing identities. Responsible for designing scalable and secure identity frameworks across the organization.
Responsibilities:
- Lead the strategy and execution for modern Identity and Access Management
- Design and drive scalable, secure-by-default identity guardrails for workforce and platform/product environments
- Lead key initiatives such as Zero Trust enforcement, Non-Human Identity (NHI) governance, IAM Threat Management and automation of identity workflows
- Define the enterprise and platform IAM strategy for human identities, NHI, and AI/agent identities
- Establish identity reference architectures, patterns, and paved roads for product teams and internal engineering
- Build and operationalize controls for service identities, workload identities, API identities, bots, and automation accounts across cloud, CI/CD, and runtime environments
- Drive adoption of short-lived, federated credentials where feasible; reduce static secrets and unmanaged service accounts
- Implement lifecycle governance for NHI: creation standards, ownership, rotation/attestation, inactivity reaping, and incident response playbooks
- Define secure patterns for AI acting on behalf of users or services
- Partner with AI platform teams to implement guardrails: identity provenance, policy enforcement, auditing, and kill-switch mechanisms for misbehaving agents
- Ensure AI identity behaviors are measurable and governable (logging, traceability, approvals for sensitive actions, segmentation of duties)
- Build/standardize authorization models (RBAC/ABAC/ReBAC as appropriate) across workforce and product systems
- Drive consistent policy as code, access reviews, and privileged access workflows
- Define standards for token scopes, claims, session constraints, step-up auth, and sensitive action protections
- Improve detection/response for identity threats: anomalous token use, privilege escalation, credential misuse, service-account sprawl
- Create metrics and reporting for identity posture and platform adoption
Requirements:
- 10+ years in IAM / security engineering, including designing identity architectures at enterprise scale
- Proven experience securing non-human identities across cloud, CI/CD, and production runtimes
- Deep knowledge of auth standards: OAuth2, OIDC, SAML, JWT, token exchange, federation, and modern workload identity patterns
- Strong authorization design experience: modeling permissions, least privilege, policy enforcement, and access governance
- Experience designing or securing systems where software agents act on behalf of users/services (delegation, impersonation, tool access, constrained execution)
- Ability to define guardrails for agentic actions: approval gates, scoped permissions, auditable trails, and containment strategies
- Strong software engineering fundamentals (APIs, distributed systems, logging/telemetry); ability to review designs and code
- Experience with cloud IAM ecosystems and platform primitives (identity federation, workload identity, secretless patterns, KMS/HSM integration)
- Experience building identity “paved roads” and internal developer platforms (IDP) patterns for identity
- Experience with privileged access management and tiering models for admin access
- Familiarity with CI/CD identity, signing, and provenance controls (build identities, artifact trust, token hardening)
- Drives measurable risk reduction and adoption across orgs
- Sets standards others follow; resolves ambiguous identity problems; leads through influence.
Benefits:
- health and financial benefits
- time away
- everyday wellness
Similar Jobs
Lead Technical Consultant, Cybersecurity Defense
Lead Technical Consultant managing Cyber Defense projects across Germany, Austria, and Switzerland. Responsible for technical implementation and innovation in Cyber Defense architectures.
Staff Security Product Engineer
Security Engineer building AI-driven security products for application security and operations. Collaborating with product teams to design systems that act on security signals and workflows.
Cybersecurity Risk Engineer
Designing and maintaining secure cloud infrastructures as a Cybersecurity Engineer at Ensemble Health Partners. Focused on enhancing security controls and analyzing potential vulnerabilities in cloud structures.
Engineer, Cybersecurity Risk
Engineer II, Cybersecurity designing and maintaining secure infrastructures for Ensemble Health Partners, while analyzing cloud structures for enhanced security methods.
Senior AI Cybersecurity Engineer
AI Cybersecurity Engineer designing and executing cybersecurity-focused AI governance programs. Collaborating with cross-functional teams on secure AI solutions and policies while ensuring compliance and risk management.
Technical Writer, Cybersecurity
Technical Writer ensuring clarity and consistency in federal cybersecurity documentation. Edit and format various technical documents while collaborating with analysts and SMEs.
Cybersecurity Program Manager
Cybersecurity Program Manager overseeing contract performance and managing cybersecurity teams for federal clients in a remote capacity. Ensuring quality, audit-ready security assessment services are delivered.
Information Security Engineer
Information Security Engineer assessing web technologies and coordinating remediation at G-P. Collaborating with teams to enhance application security and develop automation tools.
Cybersecurity Compliance Lead
Cybersecurity Compliance Lead at Fresche Solutions responsible for leading the cybersecurity compliance program and mentoring team members. Overseeing audits, developing strategies, and fostering a security culture.
Senior Security Architect
XAAS Consultant advising clients on IT Security, focusing on infrastructure, cloud, and application security. Involves hands-on security assessments and developing security architectures.
Security Specialist – Cryptography
Security Specialist focusing on Cryptography for remote projects at The Whiteam Consulting. Collaborating with technology consultants to optimize business profitability.
Protection and Security Specialist
Sicherheitskraft plant und setzt Maßnahmen zur Gefahrenabwehr für Veranstaltungen um. Zusammenarbeit mit Kunden und Behörden in einem der größten Messeunternehmen der Welt.
Information System Security Officer
Information System Security Officer managing security authorization for federal information systems. Overseeing RMF lifecycle activities and ensuring compliance with federal directives.
KMS Security Engineer – Security
KMS Security Engineer ensuring security in crypto wallets for a leading money app company. Responsible for mitigating security risks and collaborating with development teams to maintain security integrity.
Staff Security Engineer
Staff Security Engineer role at a Managed Service Provider overseeing security solutions across diverse clients. Focus on technical leadership, architecture, mentoring, and compliance.
Bug Bounty Security Researcher
Bug Bounty Security Researcher identifying and reporting vulnerabilities in software applications and systems for Inspectiv. Contributing to improving security and participating in bug bounty programs.
IT Security Compliance Assurance Manager – CAM
Information Security Compliance Assurance Manager at Gainwell, managing audits and compliance with HIPAA and NIST frameworks for the organization. Leading security controls and compliance efforts with executive stakeholders and IT.
Social Security Disability Case Manager
Social Security Disability Claims Case Manager at Mindset assisting clients with claims application processes. Responsible for gathering documentation and advocating for clients' claims.
Analyst – Cyber Security Compliance
Cyber Security Analyst conducting PCI Compliance assessments at global live entertainment company Live Nation. Assuring effective implementation of security controls aligned with organizational standards.
Cloud Security Engineer
Cloud Security Engineer ensuring cloud infrastructure security at Camping World. Bridging strategic security requirements with technical implementation in a fast-paced environment.