×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Systems Engineer

Identity and Application Security Lead

Job in Des Moines, Polk County, Iowa, 50319, USA
Listing for: Athene
Full Time position
Listed on 2026-06-04
Job specializations:
  • IT/Tech
    Cybersecurity, Systems Engineer
Salary/Wage Range or Industry Benchmark: 100000 - 130000 USD Yearly USD 100000.00 130000.00 YEAR
Job Description & How to Apply Below
We are driven to do more. More for our customers and the financial professionals who offer our products. If you are driven to do more and love the challenge of pursuing more, Athene is your kind of company. You will find we offer more than the basics to create an inclusive and dynamic work environment at our various locations.
*
* Purpose:

** Athene is hiring an Identity and Application Security Lead— a builder who works at the intersection of identity and application security, two disciplines that share a common core of authentication, authorization, cryptography, and secure API design. This role partners with Cloud Platform, Application Development, and Information Security to design and deliver solutions that development and security teams consume directly: identity-as-code patterns, policy-as-code guardrails, integrations between security tools, and reusable components that make the secure path the easy path.
The engineer contributes across the broader security program, helping teammates with their tooling, building integrations between platforms, and driving the Security Guardians champions program.
** Accountabilities:
*** Design and build security solutions that development teams and other security teams can consume directly - integrations between security tools, reusable patterns, libraries, guardrails, and self-service tooling.
* Define and maintain AWS and Azure identity infrastructure as code, including federated roles, non-human, AI Agent and workload identities, permissions boundaries, and Azure RBAC.
* Engineer and operate SSO, MFA, and access policy platforms including Okta (access policies, app integrations) and Entra  (Conditional Access, app registrations, credential management, PIM).
* Implement identity frameworks for AI agents and non-human identities—issuing, rotating, and revoking credentials, client IDs/secrets, and certificates used by autonomous systems and agentic workflows.
* Perform testing and validation of application security controls across projects, in code and APIs
* Provide consulting to development teams, developers and stakeholders to incorporate secure authentication and authorization patterns (OIDC, OAuth 2.0, SAML, mTLS, API auth) into engineering design.
* Additionally, perform threat modeling, secure design review, and remediation guidance across both identity and App Sec concerns.
** Qualifications and

Experience:

*** Bachelor's degree or equivalent professional experience with 6+ years in security engineering, with deep hands-on experience across both identity and application security.
* Strong grasp of authentication and authorization primitives shared by both disciplines: OIDC, OAuth 2.0, SAML, JWT, mTLS, certificate management, and API auth patterns.
* Depth in AWS and/or Azure, especially AWS IAM, cloud secrets management, privileged access, and Azure RBAC with hands-on with IaC and CI/CD:
Terraform, Cloud Formation, Git Hub Actions, Jenkins.
* Proficiency in one or more security automation languages e.g. Python, JS/TS, Go.
* Understanding of secure SDLC, OWASP Top 10, and how identity controls and application controls reinforce each other.
* Hands-on experience with Okta, Entra , SailPoint, Cyber Ark, Git Hub Advanced Security, and/or Akamai API Security.
* Experience designing identity controls for NHIs, workload identities, and AI agents / agentic workflows.
* Experience operating SAST, DAST SCA, and API security tooling and driving remediation with development teams.

Drive. Discipline. Confidence. Focus. Commitment.  Learn more about .Athene is a Military Friendly Employer!  Learn more about how we support our .Athene is committed to inclusion and is proud to be an Equal Opportunity Employer.  We do not discriminate on the basis of race, color, religion, sex, national origin, age, disability, marital status, sexual orientation, veteran status or any other status protected by federal, state or local law.

We are driven to do more. More for our customers and the financial professionals who offer our products. If you are driven to do more and love the challenge of pursuing more, Athene is your kind of company. You will find we offer more than the basics to create an inclusive and dynamic work environment at our various locations.
#J-18808-Ljbffr
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search