Head of Identity and Entitlement Architecture
Skills
- Deep expertise in IAM and entitlement architecture and delivery
- Experience with policy engines and policy-as-code (OPA, Cedar, XACML)
- Strong knowledge of federated identity and delegated auth (OAuth2, OIDC, SAML, SCIM)
- Hands-on experience with Okta, Microsoft Entra ID (Azure AD), and Active Directory
- Designing identity-aware APIs, SDKs, and developer-facing entitlement interfaces
- Familiarity with AI systems, agentic/multi-agent control planes and their identity implications
- Applying Zero Trust and identity-first security principles
- Excellent communication and stakeholder influence skills
Responsibilities
- Architect and implement a unified, scalable entitlement management framework across internal apps, cloud services, and AI systems.
- Define and lead RBAC, ABAC, and PBAC models for human and AI actors.
- Establish governance and execution patterns for secure identity propagation in agentic and multi-agent systems.
- Partner with AI platform and engineering teams to enable secure delegation, trust chains, and decision boundaries for autonomous agents.
- Design reusable identity middleware and entitlement APIs/SDKs for developer consumption.
- Manage and evolve federated identity and delegated authorization solutions (OAuth2, OIDC, SAML, SCIM).
- Leverage and integrate identity platforms such as Okta, Microsoft Entra ID (Azure AD), and Active Directory.
- Define roadmap for entitlement observability, anomaly detection, and entitlement telemetry.
- Collaborate with Infrastructure Security, Cloud Engineering, Compliance, and App Security to embed entitlement controls.
- Evaluate third-party identity/entitlement technologies and make build vs. buy recommendations.
Education
- Bachelor's degree in Computer Science, Information Security, or related field
- Advanced degree or relevant certifications preferred (e.g., CISSP, CISM)
Benefits
- Fully-paid health care benefits
- Generous parental and family leave policies
- Volunteer and employee-led affinity group support
- Mental and physical wellness programs
- Tuition assistance
- 401(k) savings program with employer match
- Discretionary bonus compensation and comprehensive benefits package
Average salary estimate
If an employer mentions a salary or salary range on their job, we display it as an "Employer Estimate". If a job has no salary data, Rise displays an estimate if available.
Lead and build the Macro trading application support function at Point72, providing technical incident management, onboarding, automation and mentorship to ensure reliable application operations for investment professionals.
Experienced Senior Cybersecurity Engineer needed to support a DoD SOCOM on-site role, driving RMF/NIST-based certification, SOC operations, and secure automation with an active TS/SCI clearance.
CD PROJEKT RED is hiring a Senior Network & Systems Administrator to design, secure, and scale hybrid cloud and on-prem infrastructure for its Boston studio while mentoring junior IT team members.
Ramp is hiring a Senior Security Analyst to lead Insider Risk, DLP, SaaS posture, and endpoint controls for corporate and FedRAMP-aligned environments at its NYC HQ.
Experienced Applications Analyst needed at Emory Healthcare to manage application design, testing, vendor interactions, and 24x7 production support while mentoring others.
Ivy Tech Community College is hiring a part-time IT Lab Assistant in Kokomo to maintain instructional computer and networking labs, support instructors, and provide student lab assistance.
Provide hands-on IT security and help-desk support for Lancaster County, enforcing security policies, administering AD/Office365, and resolving user and network issues.
Children's Mercy is hiring an IS Analyst II to support and optimize complex clinical systems, coordinate custom programming and change management, and serve as a key liaison between IT and user departments.
Lead the engineering and integration of Zero Trust architectures to secure mission-critical classified systems in a high-impact, hands-on role.
Experienced healthcare IT professional sought to provide Epic Ambulatory build, support, testing and interface work across interdisciplinary teams at Emory Healthcare.
Experienced network engineer with strong Fortinet and enterprise firewall expertise needed to architect, deploy, and support multi-site LAN/WAN and SD-WAN solutions for a growing consulting team.
Macmillan Publishers seeks a seasoned SQL Server DBA to administer and optimize on-premise and cloud SQL Server environments, ensuring security, availability, and performance.
Mercor seeks Computer Science/ML PhDs to craft difficult domain problems and produce high-quality dataset inputs for state-of-the-art large language model research on a remote, contract basis.
Atria is hiring a hands-on Senior IT Specialist to manage corporate and clinical IT infrastructure and deliver high-quality, hospitality-level support at our New York City clinic.
To be the industry’s premier asset management firm through delivering superior risk-adjusted returns, adhering to the highest ethical standards and offering the greatest opportunities to the industry’s brightest talent.
15 jobs
🔮
Hi, I'm Risa! Your AI Career Copilot
you, just ask me below!
