Technical Lead – Identity, Access & Platform Security

Job Title:

Technical Lead – Identity, Access & Platform Security About the Role

We are seeking a highly skilled Technical Lead – Identity, Access & Platform Security to drive the design, implementation, and governance of enterprise identity and platform security controls. This role will serve as the primary technical authority across multiple security and infrastructure initiatives, ensuring scalable, secure, and resilient solutions across the organization.

The ideal candidate is a hands‑on technical leader with deep expertise in Identity & Access Management (IAM), endpoint/device security, and enterprise security architecture. You will collaborate closely with cybersecurity, infrastructure, and engineering teams to translate strategic security objectives into practical technical implementations.

• Serve as the technical lead across multiple security and infrastructure work streams
• Provide architecture guidance, technical oversight, and implementation leadership
• Translate security strategies and program goals into detailed technical designs and delivery plans
• Review and validate technical solutions for alignment with enterprise security standards
• Ensure consistent execution of security controls across engineering teams

• Lead initiatives to strengthen account security and enterprise identity protection
• Design and implement Conditional Access policies, MFA, and identity risk controls
• Mitigate identity-based threats such as password spray, credential abuse, and brute‑force attacks
• Support and enable SSO integrations across enterprise applications
• Contribute to identity governance and risk management frameworks

• Define and enforce enterprise standards for hardware and endpoint management
• Support Apple Business Manager (ABM) enrollment standardization and device lifecycle improvements
• Ensure secure configuration baselines, compliance monitoring, and endpoint hardening
• Collaborate with infrastructure teams on platform security initiatives
• Define monitoring requirements and support implementation of alerting infrastructure
• Integrate identity and device telemetry into detection and response workflows
• Validate monitoring coverage for authentication risks, anomalies, and compliance events
• Partner with security operations teams to improve threat visibility

• Work with program and project leadership to track progress, manage risks, and resolve blockers
• Provide technical leadership throughout design, implementation, testing, and validation phases
• Facilitate alignment across cybersecurity, infrastructure, enterprise architecture, and engineering teams

• 6‑10+ years of experience in enterprise infrastructure, identity engineering, or cybersecurity engineering
• Proven experience working as a Technical Lead or Senior Engineer on complex cross‑functional initiatives
• Strong expertise in Identity & Access Management (IAM) including SSO, MFA, and Conditional Access
• Hands‑on experience implementing enterprise identity protection and security control frameworks
• Experience with endpoint/device management platforms and hardware lifecycle processes
• Exposure to security monitoring, detection, and alerting systems
• Ability to translate security requirements into scalable technical solutions
• Strong stakeholder collaboration and communication skills

• Experience with Microsoft Entra  (Azure AD), Identity Protection, and Conditional Access
• Experience implementing enterprise SSO integrations
• Familiarity with Apple Business Manager (ABM), MDM solutions, and device enrollment programs
• Experience mitigating credential‑based attacks such as password spraying and brute force attempts
• Knowledge of SIEM / SOAR platforms and security monitoring architectures
• Background in Security Architecture or Platform Security Engineering

• Identity & Access Management (IAM)
• Conditional Access & Identity Protection