Identity and Application Security Lead

We are driven to do more. More for our customers and the financial professionals who offer our products.

Athene is hiring an Identity and Application Security Lead—a builder who works at the intersection of identity and application security, two disciplines that share a common core of authentication, authorization, cryptography, and secure API design.

• Design and build security solutions that development teams and other security teams can consume directly—integrations between security tools, reusable patterns, libraries, guardrails, and self‑service tooling.
• Define and maintain AWS and Azure identity infrastructure as code, including federated roles, non‑human, AI Agent and workload identities, permissions boundaries, and Azure RBAC.
• Engineer and operate SSO, MFA, and access policy platforms including Okta (access policies, app integrations) and Entra  (Conditional Access, app registrations, credential management, PIM).
• Implement identity frameworks for AI agents and non‑human identities—issuing, rotating, and revoking credentials, client IDs/secrets, and certificates used by autonomous systems and agentic workflows.
• Perform testing and validation of application security controls across projects, in code and APIs.
• Provide consulting to development teams, developers and stakeholders to incorporate secure authentication and authorization patterns (OIDC, OAuth
  2.0, SAML, mTLS, API auth) into engineering design.
• Perform threat modeling, secure design review, and remediation guidance across both identity and App Sec concerns.

• Bachelor's degree or equivalent professional experience with 6+ years in security engineering, with deep hands‑on experience across both identity and application security.
• Strong grasp of authentication and authorization primitives shared by both disciplines: OIDC, OAuth
  2.0, SAML, JWT, mTLS, certificate management, and API auth patterns.
• Depth in AWS and/or Azure, especially AWS IAM, cloud secrets management, privileged access, and Azure RBAC with hands‑on experience with IaC and CI/CD:
  Terraform, Cloud Formation, Git Hub Actions, Jenkins.
• Proficiency in one or more security automation languages e.g. Python, JS/TS, Go.
• Understanding of secure SDLC, OWASP Top
  10, and how identity controls and application controls reinforce each other.
• Hands‑on experience with Okta, Entra , SailPoint, Cyber Ark, Git Hub Advanced Security, and/or Akamai API Security.
• Experience designing identity controls for NHIs, workload identities, and AI agents / agentic workflows.
• Experience operating SAST, DAST, SCA, and API security tooling and driving remediation with development teams.

Athene is a Military Friendly Employer!

Athene is committed to inclusion and is proud to be an Equal Opportunity Employer. We do not discriminate on the basis of race, color, religion, sex, national origin, age, disability, marital status, sexual orientation, veteran status or any other status protected by federal, state or local law.

Drive. Discipline. Confidence. Focus. Commitment.