×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Data Security

IAM Engineer II

Remote / Online - Candidates ideally in
Tempe, Maricopa County, Arizona, 85285, USA
Listing for: Dutch Bros Coffee
Remote/Work from Home position
Listed on 2025-12-16
Job specializations:
  • IT/Tech
    Cybersecurity, Data Security
Job Description & How to Apply Below

It's fun to work in a company where people truly believe in what they are doing. At Dutch Bros Coffee, we are more than just a coffee company. We are a fun-loving, mind-blowing company that makes a difference one cup at a time.

Position Overview

This role is central to securing our organization's digital landscape. You will be responsible for the strategic implementation and ongoing optimization of our Identity and Access Management solutions, focusing on Privileged Access Management and Identity Governance & Administration. This position requires a proactive, technically skilled individual who can manage complex identity integrations, automate key processes, and champion a Zero Trust security model.

You will collaborate with various teams to ensure our identity infrastructure remains secure, scalable, and compliant with evolving business and regulatory demands.

Job Qualifications

  • Bachelor’s degree in related field; computer science, information security, or a related field/required

  • 5+ years of experience in Identity and Access Management (IAM), with a strong focus on Privileged Access Management (PAM) and Identity Governance & Administration (IGA).

  • Demonstrated experience deploying and managing cloud identity platforms like Okta, Auth0, and Microsoft Entra  hybrid environments.

  • Proven experience with Terraform and CI/CD pipelines for automating IAM policy and configuration.

  • Solid understanding of IAM principles, including user lifecycle management, provisioning with SCIM, and compliance frameworks (e.g., SOX, PCI DSS).

  • Expertise in developing and executing enterprise-wide identity strategies and governance frameworks. Experience with IAM automation, including workflow orchestration, API integrations, and scripting.

  • Proficient in designing and optimizing PAM solutions with Just‑In‑Time (JIT) access, credential vaulting, and session monitoring. Proven ability to implement Zero Trust Network Access (ZTNA) architectures and conditional access policies based on user, device, and risk signals.

  • Hands‑on experience with comprehensive IGA solutions, including automating the full identity lifecycle (Joiner‑Mover‑Leaver), access certifications, and policy enforcement, with a deep understanding of Segregation of Duties (SoD) principles.

  • Extensive experience with modern authentication methods such as passwordless (FIDO2/Web Authn), Multi‑Factor Authentication (MFA), and Single Sign‑On (SSO). Strong knowledge of identity federation protocols, including SAML, OAuth
    2.0, and OIDC.

  • Advanced knowledge of Role‑Based Access Control (RBAC) and fine‑grained authorization. Experience securing and managing non‑human identities (NHIs) and service accounts, including lifecycle management and credential rotation.

  • Hands‑on experience with cloud‑based identity services (e.g., Okta, Auth0, Entra ) and their integration with on‑premise Active Directory.

Location Requirement

This role is located in Tempe, Arizona. This position is required to be in office 4 days per week (Mon‑Thurs);
Fridays are optional remote work days.

Key Result Areas (KRAs)

  • Lead the implementation and optimization of PAM solutions to enhance access security. This includes deploying Just-in‑Time (JIT) access, credential vaulting, and session monitoring to minimize lateral movement and secure privileged accounts.

  • Drive the improvement of identity governance by automating the full user lifecycle (Joiner‑Mover‑Leaver), access reviews, and provisioning workflows. Ensure compliance by enforcing Segregation of Duties (SoD) policies and leveraging API‑driven orchestration.

  • Manage and enhance the identity stack by modernizing authentication methods and ensuring seamless integration. This involves implementing federation protocols (SAML, OIDC), passwordless authentication (FIDO2), and unified conditional access policies across hybrid environments.

  • Improve overall security by implementing a Zero Trust Network Access (ZTNA) architecture. Deploy advanced risk‑based MFA, biometric solutions, and advanced conditional access policies that maintain a balance between security and user experience.

  • Establish and maintain a comprehensive identity strategy and governance framework aligned…

To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search