Apply now »

Sr Engineer, IAM

Location: 

Plano, TX, US, 75024 Bethpage, NY, US, 11714

Brand:  Optimum
Requisition #:  12026

Are you looking to Optimize your life? Start your exciting path to a rewarding career today!

  
We are Optimum, a leader in the fast-paced world of connectivity, and we're seeking driven and enthusiastic professionals to join our team, empower lives, fuel businesses, and drive innovation. Connectivity is now longer a luxury, but a necessity. A career at Optimum means you'll be enabling progress and enhancing lives by providing reliable, high-speed connectivity solutions that keep the world connected. Our successes, now and in the future, are powered by our amazing product, a commitment to our people and culture, and the connections we make in our communities.


If you are resourceful, collaborative, and passionate about delivering consistent excellence, Optimum is for you! 

Job Summary

The Senior IAM Engineer is the technical anchor of the Customer IAM team. Where the IAM Engineer executes established patterns, the Senior Engineer defines them. You own the platform architecture, author the standards that every integration must meet, design the automation that keeps configuration consistent at scale, and provide the technical leadership that enables your teammates and application development teams to move faster and more securely.

You operate with broad autonomy, making consequential decisions on Customer Identity Engine configuration, authentication policy design, IaC strategy, and security control architecture — while staying closely partnered with the Manager on roadmap direction and cross-functional relationships. This is a senior individual contributor role with significant influence over the team's technical trajectory.

Responsibilities

CIAM Architecture & Platform Governance
•    Own the architecture and design of the enterprise customer identity platform, including authentication policy frameworks, authorization models, and identity lifecycle standards
•    Define and enforce integration standards across identity protocols (OAuth 2.0, OpenID Connect, SAML, SCIM), ensuring consistency and scalability across all applications
•    Establish governance practices for platform configuration, including naming standards, policy structures, and change management controls
•    Lead the evaluation and adoption of new identity capabilities and platform features aligned to enterprise security and scalability goals

2. Authentication Modernization & Technical Leadership
•    Lead the technical design of enterprise authentication modernization initiatives, defining integration patterns and reference architectures for application teams
•    Develop and maintain standardized migration frameworks for onboarding applications to modern CIAM solutions
•    Define token design, scope models, and session management strategies aligned to security and business requirements
•    Drive adoption of advanced authentication capabilities, including phishing-resistant and passwordless authentication
•    Identify and resolve cross-cutting architectural challenges impacting identity integrations across the application portfolio

3. Developer Platform & Enablement
•    Own the IAM developer experience, including integration guides, reference architectures, code samples, and reusable implementation patterns
•    Build and maintain reference implementations demonstrating best practices for authentication flows, token validation, and session management
•    Design and improve onboarding processes and self-service capabilities for application teams integrating with the CIAM platform
•    Lead architecture reviews for complex or high-risk integrations, providing clear, standards-based guidance and decision rationale
•    Foster a community of practice to promote identity best practices and knowledge sharing across engineering teams

4. Security Engineering & Risk Management
•    Conduct threat modeling for the CIAM platform and application integrations, identifying risks and designing appropriate controls
•    Define and maintain identity security standards, including authentication assurance levels, MFA requirements, and session policies
•    Design and tune identity-related monitoring and detection capabilities, including integration with SIEM tools
•    Lead security design reviews for identity workflows, integrations, and custom services to ensure adherence to best practices
•    Support vulnerability management by assessing risks, prioritizing remediation, and driving resolution across the platform

Qualifications

Required

  • Bachelor’s degree in Computer Science, Information Systems, Cybersecurity, or related field (or equivalent experience)
  • 6+ years of experience in Identity & Access Management, security engineering, or a related technical field
  • Strong hands-on experience designing and operating CIAM or identity provider platforms at scale
  • Deep understanding of identity standards and protocols (OAuth 2.0, OpenID Connect, SAML, SCIM, FIDO2/WebAuthn)
  • Experience leading authentication modernization or large-scale IAM integration initiatives
  • Proficiency in at least one modern programming language (e.g., JavaScript, Python, Java, Go) for building integrations and automation
  • Experience implementing Infrastructure-as-Code and CI/CD practices for platform configuration
  • Proven ability to perform threat modeling, security reviews, and produce clear technical guidance
  • Experience working with compliance frameworks (e.g., SOX, SOC 2, PCI) and supporting audit activities
  • Demonstrated ability to mentor engineers and influence technical direction across teams

At Optimum, every action and interaction we take part in, is driven by our three Guiding Principles: Do What’s Right, Drive One Optimum, and Make It Happen. These aren’t just words, they help us build trust, create real community, and embrace new ways of thinking. Our employees are empowered to do the right thing for our customers and co-workers and to recognize and reward these behaviors when we see them. It’s all part of the bigger picture of “Be The Difference” where each employee knows they have the power to enact real change, share new ideas, and understand that learning never stop.

 

If you have the drive to succeed and are ready to embark on a thrilling career, seize this opportunity today, and join our winning team. Together, we'll shape the future of connectivity.

 

All job descriptions and required skills, qualifications and responsibilities for a particular position are subject to modification by the Company from time to time, in the Company’s discretion based on business necessity.

 

We are an Equal Opportunity Employer committed to recruiting, hiring and promoting qualified people of all backgrounds regardless of gender, race, color, creed, national origin, religion, age, marital status, pregnancy, physical or mental disability, sexual orientation, gender identity, military or veteran status, or any other basis protected by federal, state, or local law.

The Company collects personal information about its applicants for employment that may include personal identifiers, professional or employment related information, photos, education information and/or protected classifications under federal and state law. This information is collected for employment purposes, including identification, work authorization, FCRA-compliant background screening, human resource administration and compliance with federal, state and local law.

 

Applicants for employment with The Company will never be asked to provide money (even if reimbursable) as part of the job application or hiring process. Please review our Fraud FAQ for further details.


Pay is competitive and based on a number of job-related factors, including skills and experience. The starting pay rate/range at time of hire for this position in New York is $100,246.00 - 164,689.00  / year. For other locations, please inquire with your recruiter. The rates/ranges provided herein are the anticipated pay at the time of hire, and do not reflect future job opportunity.
 

We appreciate your interest in this opportunity. Applicants must be authorized to work for ANY employer in the U.S.  Please note that at this time, we do not provide visa sponsorship for employment.


Nearest Major Market: Plano
Nearest Secondary Market: Dallas

Apply now »