IAM Security Engineer

The Identity and Access Management (IAM) team is dedicated to ensuring the secure and efficient management of user identities, access privileges, and authentication mechanisms across internal systems, applications, and data. Our mission is to safeguard the organization against unauthorized access, protect sensitive information, and enable seamless user experiences while adhering to industry best practices and compliance standards.

As an Identity and Access Management (IAM) Security Engineer, you will play a crucial role in designing, implementing, and scaling identity and access management solutions for Cloudflare’s internal workforce and workloads. You will be responsible for safeguarding our systems, applications, and data by ensuring secure user access, authentication, and authorization mechanisms.

● Design, build, test, and deploy IAM solutions across authentication, authorization, and accounting
● Leverage Cloudflare products to secure our identities
● Build SSO integrations leveraging SAML, OIDC, OAuth, and SCIM
● Build and manage the Identity Governance and Administration platform
● Develop automated roles leveraging RBAC and ABAC
● Build and manage an access certification platform
● Build and manage a Privileged Access Management (PAM) platform
● Provide operational support of IAM systems including an on-call rotation that may include after hours calls

Security engineers take part in a wide variety of tasks and projects in the team. One individual is not expected to know everything, but a working knowledge in several of the following areas is required: