IAM & Security Engineer 3

Social network you want to login/join with:

MongoDB’s mission is to empower innovators to create, transform, and disrupt industries by unleashing the power of software and data. We enable organizations of all sizes to easily build, scale, and run modern applications by helping them modernize legacy workloads, embrace innovation, and unleash AI. Our industry-leading developer data platform, MongoDB Atlas, is the only globally distributed, multi-cloud database and is available in more than 115 regions across AWS, Google Cloud, and Microsoft Azure. Atlas allows customers to build and run applications anywhere—on premises, or across cloud providers. With offices worldwide and over 175,000 new developers signing up to use MongoDB every month, it’s no wonder that leading organizations, like Samsung and Toyota, trust MongoDB to build next-generation, AI-powered applications.

We are looking for a highly skilled Security Engineer with deep expertise in IAM, cloud security, automation, and endpoint security. In this role, you will design, implement, and manage security solutions at scale while collaborating with cross-functional teams to enhance security posture and streamline access management.

This role will be based remotely in Great Britain.

Key Responsibilities:

Identity & Access Management (IAM) & Authentication Security

• Administer and enhance IAM platforms, including Okta, AWS, GCP, and Azure IAM, ensuring secure and least-privilege access
• Design and implement SSO (SAML, OIDC, OAuth2) and MFA policies to strengthen authentication security
• Develop role-based access control (RBAC) models and identity governance workflows to improve access management
• Automate identity lifecycle processes (provisioning, deprovisioning, JIT access) using Terraform/OpenTofu and Python
• Implement security controls for GitHub repository management, ensuring secure CI/CD pipeline access

Cloud Security & Infrastructure as Code (IaC)

• Secure cloud environments across AWS, GCP, and Azure, focusing on IAM policies, resource permissions, and access control
• Automate security configurations and policy enforcement using Terraform/OpenTofu, CloudFormation, and Python scripting
• Conduct security assessments on cloud services, identifying misconfigurations, excessive permissions, and potential risks
• Support network security solutions, including Cloudflare WARP, VDI access controls, and VPN alternatives
• Manage MDM platforms (JAMF, Workspace ONE, Kolide) and implement device trust policies for macOS, Windows, and Linux
• Automate compliance monitoring and enforce security baselines for corporate and BYOD devices
• Deploy and manage Zero Trust security frameworks, integrating device posture with IAM policies

Automation, Security Engineering & SIEM

• Develop security automation workflows using Tines, Python, or PowerShell to reduce manual tasks
• Support Splunk SIEM administration, assisting with log analysis, alert tuning, and incident response workflows
• Monitor and respond to IAM and cloud security incidents, conducting root cause analysis and implementing remediation plans

Required Technical Skills & Experience

• 3+ years of hands-on experience in IAM, Cloud Security, or Security Engineering
• Deep expertise in IAM solutions such as Okta, AWS IAM, GCP IAM, Azure AD, and identity federation technologies
• Strong understanding of OAuth2, OIDC, SAML, and authentication best practices
• Experience with Infrastructure as Code (Terraform/OpenTofu, CloudFormation) and security automation
• Proficiency in Python, Bash, or PowerShell for scripting and automation
• Experience managing MDM solutions and implementing device security policies
• Familiarity with SIEM (Splunk), endpoint monitoring, and security alerting
• Bonus: Certifications like AWS Certified Security, Okta Certified Professional, or CISSP