Senior Manager, IAM Authentication

This is a fully remote position, open to applicants in New York.

📋 Description

• Influence and lead the roadmap and implementation of enterprise authentication services across various Microsoft Entra ID tenants, setting operational goals and action plans that guarantee consistent security measures, lifecycle management, and service reliability.

• Oversee and manage federation services, including PingFederate/PingOne components and Entra ID federation configurations, ensuring high availability, secure configuration standards, certificate/key management, and resilient failover capabilities.

• Develop and enforce MFA and SSO standards for enterprise applications, covering onboarding patterns, authentication methods, step-up authentication, and user experience guidelines.

• Collaborate with cybersecurity, architecture, and application teams to design and implement conditional access strategies, risk-based access decisions, and modern authentication protocols (e.g., SAML, OIDC/OAuth) where appropriate.

• Partner with IAM Operations, Architecture, Software Development teams, and leadership.

• Provide leadership and guidance for daily engineering activities: incident response, problem management, change management, release planning, maintenance windows, and service reliability targets for authentication platforms.

• Drive automation to eliminate friction from manual processes (e.g., application onboarding, federation configuration validation, certificate rotation, access policy deployment) and enhance speed, quality, and traceability.

• Manage vendor and partner relationships related to authentication and federation technologies; oversee the departmental budget for tools and services, including licensing and renewals, with a focus on operational effectiveness and measurable results.

• Lead and cultivate a high-performing team of 4 direct reports and several offshore staff members; establish clear expectations, coach and mentor managers/engineers, conduct performance evaluations, develop succession plans, and promote a culture of accountability, collaboration, and continuous improvement.

• Create and present KPIs and operational metrics (e.g., availability, authentication success rates, MFA adoption, onboarding lead time, incident trends) to management and stakeholders, offering clear status updates, risks, and mitigation strategies.

• Act as an escalation point for authentication outages and high-severity security incidents; coordinate communication and remediation efforts among technical and business stakeholders.

• Experience collaborating with risk, audit, and compliance teams to implement and demonstrate controls.

⛳️ Requirements

• Bachelor’s degree or equivalent professional experience.

• 8+ years of experience in identity and access management, authentication engineering, or security engineering or architecture.

• 3+ years of management experience leading technical teams that deliver highly available services.

• Knowledge of Microsoft Entra ID (Azure AD), particularly in multi-tenant or complex enterprise environments.

• Familiarity with federation services and SSO integrations (e.g., PingFederate/PingOne and/or similar federation frameworks) and standard protocols (SAML 2.0, OIDC, OAuth 2.0).

• Understanding of MFA methods and authentication assurance.

• Proven ability to convey complex security and identity concepts to both technical and executive audiences and influence outcomes without direct authority.

🏝️ Benefits

• Medical, dental, and vision insurance

• 401(k)

• Paid leave

• Tuition reimbursement

• A variety of other discounts and perks