Remote Senior Information Security Engineer – Identity & Access Management (IAM) Specialist for Enterprise Cyber Defense

Why Join Workwarp?

At Workwarp, we are redefining how businesses secure their digital assets in an increasingly connected world. As a leading provider of innovative, cloud‑native solutions for enterprises, we empower thousands of customers to operate safely, efficiently, and at scale. Our mission is to build a future where security is seamless, automated, and embedded into every line of code. By joining our team, you become part of a forward‑thinking culture that celebrates curiosity, collaboration, and continuous learning. Whether you are a seasoned security professional or an emerging talent with a passion for protecting data, Workwarp offers the platform, mentorship, and resources you need to accelerate your career while making a real impact on the global cyber‑defense landscape.

Position Overview

We are seeking a Remote Senior Information Security Engineer with deep expertise in Identity & Access Management (IAM) to design, implement, and operate enterprise‑grade security solutions. This role sits at the intersection of security engineering, software development, and risk management. You will translate complex business and technical requirements into robust, scalable authentication and authorization services, while ensuring compliance with industry regulations and internal security policies. As a key member of our Information Security team, you will partner with engineers, architects, and product owners across the organization to safeguard critical assets and champion a culture of security‑first thinking.

Key Responsibilities

• IAM Architecture & Implementation: Design, deploy, and maintain identity providers, enterprise directories, and access‑management platforms (e.g., OAuth, OpenID Connect, SAML 2.0). Ensure solutions meet scalability, reliability, and security standards.
• Security Tool Lifecycle Management: Own the end‑to‑end lifecycle of security tools—including provisioning, configuration, patching, and de‑commissioning—while documenting standards, guidelines, and operating procedures.
• Monitoring & Incident Response: Continuously monitor security logs, alerts, and telemetry. Participate in triage, escalation, and remediation of security incidents, including breach response and root‑cause analysis.
• Collaboration & Cross‑Functional Integration: Work closely with engineering, DevOps, and product teams to embed authentication and authorization mechanisms into new and existing applications, APIs, and micro‑services.
• Vulnerability Management: Analyze outputs from industry‑leading cybersecurity scanners (e.g., Qualys, Tenable, Nessus). Prioritize findings, develop remediation plans, and verify fixes using secure coding practices.
• Secure Development Practices: Create and review code enhancements with a focus on reducing attack surface. Apply secure coding standards (e.g., OWASP Top Ten) when developing custom integrations or extensions.
• Automation & CI/CD Integration: Implement automated security checks within CI/CD pipelines, leveraging tools such as Snyk, Checkmarx, or custom scripts to ensure continuous compliance.
• Knowledge Sharing & Training: Conduct workshops, brown‑bag sessions, and documentation updates to disseminate security best practices across the organization.
• Vendor Management: Evaluate, onboard, and manage third‑party security solutions and services. Serve as the technical liaison for vendor support, troubleshooting, and contract negotiations.
• Continuous Learning & Innovation: Stay ahead of emerging threats, standards, and technologies in the IAM and broader cybersecurity space. Propose and prototype innovative solutions that improve our security posture.

Essential Qualifications

• Bachelor’s degree in Computer Science, Cybersecurity, Information Systems, or a related technical discipline, or equivalent professional experience.
• Minimum of 2 years of experience supporting technology systems, with at least 1 year focused on information security tools or IAM platforms.
• Demonstrated ability to implement and manage authentication services (e.g., Ping Identity, ForgeRock, Keycloak) in a production environment.
• Proficiency with industry standards such as OAuth 2.0, OpenID Connect, and SAML 2.0, including hands‑on configuration and troubleshooting.
• Solid understanding of JSON, RESTful APIs, and API security concepts.
• Hands‑on experience with security monitoring, log analysis, and incident response workflows.
• Strong problem‑solving skills with a track record of delivering testable, maintainable, and efficient technical solutions.
• Excellent written and verbal communication skills; ability to translate technical details for non‑technical audiences.

Preferred Qualifications & Certifications

• Master’s degree in a technical or business discipline (e.g., Computer Science, Information Systems, Business Administration).
• Professional certifications such as CISSP, CISM, CEH, CISA, OSCP, or GPen demonstrating advanced security expertise.
• 2 + years of experience analyzing vulnerability assessment reports and driving remediation initiatives.
• Experience building and maintaining CI/CD pipelines that incorporate security testing (e.g., SAST, DAST, container scanning).
• Familiarity with ITIL frameworks, defect/incident tracking tools (e.g., Jira, ServiceNow), and technical documentation standards.
• Prior leadership experience, including mentorship or direct‑report management, within a security or engineering team.
• Exposure to cloud platforms (AWS, Azure, GCP) and related security services such as IAM, KMS, and Secrets Manager.
• Hands‑on experience with container security tools (e.g., Aqua, Twistlock, Trivy) and infrastructure‑as‑code security scanners.

Core Skills & Competencies

• Technical Acumen: Deep technical knowledge of IAM architectures, authentication protocols, and secure API design.
• Analytical Thinking: Ability to dissect complex security findings, assess risk, and propose pragmatic remediation strategies.
• Collaboration: Proven effectiveness working across multi‑disciplinary teams, fostering alignment between security and product delivery.
• Automation Mindset: Passion for scripting, tooling, and process automation to reduce manual effort and increase reliability.
• Adaptability: Comfortable navigating a fast‑paced, remote work environment while maintaining focus and delivering high‑quality outcomes.
• Continuous Improvement: Commitment to personal and team growth through certifications, conferences, webinars, and self‑directed study.

Career Growth & Learning Opportunities

Workwarp invests heavily in our people. As a senior engineer, you will have a clear path to expand your influence—from technical lead to security architect, and eventually to management or specialist roles such as Chief Information Security Officer (CISO) in the future. We provide:

• Professional Development Stipends: Annual budget for certifications, conference attendance, and online training platforms.
• Mentorship Programs: Pairing with senior leaders to refine technical expertise and leadership skills.
• Innovation Labs: Dedicated time each quarter to explore emerging security technologies, prototype solutions, and present findings to executive stakeholders.
• Cross‑Functional Rotation: Opportunities to work temporarily with product, cloud, or DevOps teams to broaden your perspective and skill set.

Work Environment & Culture

At Workwarp, we champion a flexible, inclusive, and high‑trust remote culture. We believe that great ideas come from diverse backgrounds, and we actively foster an environment where every voice is heard. Our remote‑first strategy includes:

• Flexible Hours: Align your work schedule with personal productivity rhythms while maintaining core collaboration windows aligned to EST.
• Virtual Team Building: Regular online events, hackathons, and knowledge‑sharing sessions to keep teams connected.
• Health & Well‑Being Programs: Access to mental‑health resources, ergonomic home‑office allowances, and wellness challenges.
• Diversity, Equity & Inclusion (DEI): Ongoing initiatives, employee resource groups, and inclusive hiring practices.
• Transparent Communication: Quarterly town halls with leadership, open‑door policy for managers, and clear career progression frameworks.

Compensation, Perks & Benefits

We offer a competitive salary range of $75,300 – $143,100 annually, commensurate with experience, expertise, and geographic market considerations. In addition to base pay, our total rewards package includes:

• Performance‑Based Bonuses and annual stock‑option grants.
• Comprehensive Health Coverage (medical, dental, vision) with employer contributions.
• Retirement Savings – 401(k) plan with company matching.
• Generous Paid Time Off and holidays, plus flexible “mental‑health days”.
• Remote Work Stipend for home‑office setup, high‑speed internet, and ergonomic accessories.
• Learning & Development Allowance for certifications, courses, and industry conferences.
• Employee Assistance Program (EAP) offering counseling, legal, and financial guidance.

How to Apply

If you are ready to take the next step in a dynamic, remote‑first security career and thrive in an environment that values innovation, collaboration, and continuous improvement, we encourage you to apply today. Submit your resume, a concise cover letter highlighting your most relevant IAM experience, and any supporting certifications or project portfolios.

Workwarp is an equal‑opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees regardless of race, color, religion, gender, sexual orientation, gender identity, age, disability, veteran status, or any other protected characteristic.

Take the Leap – Join Our Security Vanguard

Your expertise can safeguard millions of users, power cutting‑edge digital experiences, and shape the future of enterprise security. Become a cornerstone of Workwarp’s mission to make security effortless. Apply now and start your journey with a team that’s redefining what it means to be secure in the cloud era.