About Us
Diligent is the AI leader in governance, risk and compliance (GRC) SaaS solutions, helping more than 1 million users and 700,000 board members to clarify risk and elevate governance. The Diligent One Platform gives practitioners, the C-Suite and the board a consolidated view of their entire GRC practice so they can more effectively manage risk, build greater resilience and make better decisions, faster.
At Diligent, were building the future with people who think boldly and move fast. Whether youre designing systems that leverage large language models or part of a team reimaging workflows with AI, youll help us unlock entirely new ways of working and thinking. Curiosity is in our DNA, we look for individuals willing to ask the big questions and experiment fearlessly - those who embrace change not as a challenge, but as an opportunity. The future belongs to those who keep learning, and we are building it together. At Diligent, you re not just building the future - you re an agent of positive change, joining a global community on a mission to make an impact.
Learn more at or follow us on LinkedIn and Facebook
Position Overview
Diligent is seeking a
Staff IAM Engineer
to strengthen and scale the security of our global Identity & Access Management ecosystem. In this high-impact role, you will design, develop, and optimize
enterprise IAM solutions including Okta
, IGA platforms
, AWS IAM
, and (nice to have) PAM technologies
to ensure secure, seamless access for employees, partners, and applications. [ Okta Developer with any IGA experience is a MUST
] You will collaborate across IT, Security, HR, and Product teams to implement robust identity policies, automate access lifecycles, and support compliance requirements. This role also provides the opportunity to influence IAM strategy, mentor junior engineers, and elevate Diligent s overall security posture.
Key Responsibilities
Design, Development & Implementation
-
Architect, develop, and manage IAM solutions across cloud and on-premise environments.
-
Build
custom integrations, workflows, and automations in Okta
(Workflows, APIs, SCIM, custom app integrations). -
Develop automated
provisioning/deprovisioning
, access request workflows, and role models using IGA platforms such as SailPoint
or Saviynt
. -
Implement and maintain
SSO, MFA, RBAC, and ABAC
across applications and infrastructure. -
Integrate IAM capabilities into DevOps pipelines and application onboarding processes.
Security, Governance & Compliance
-
Define, implement, and enforce IAM standards, policies, and procedures.
-
Support IAM-related
audits, risk assessments, and regulatory compliance
(SOC2, HIPAA, ISO 27001). -
Monitor IAM platforms for misconfigurations and security incidents; respond to threats in collaboration with Security teams.
-
Conduct recurring
access reviews, certification campaigns, and entitlement audits
.
Collaboration, Enablement & Leadership
-
Partner with InfoSec, HR, SRE, and application owners to enhance identity lifecycle processes and access governance.
-
Mentor and guide IAM engineers, analysts, and cross-functional stakeholders.
-
Document architecture, workflows, runbooks, and IAM best practices.
-
Deliver training and awareness sessions to promote secure identity practices.
Required Experience & Skills
-
6+ years
in cybersecurity or identity domains, with 4+ years directly in IAM engineering
. -
Proven hands-on experience developing and managing solutions with
Okta
(SSO, MFA, Access Gateway, Lifecycle Management, API/Workflow automation). -
Strong experience with
IGA platforms
(SailPoint, Saviynt, Omada) including workflow creation, connector development, and role/entitlement modeling. -
Experience with
AWS IAM & AWS Identity Center
for fine-grained access management. -
(Nice to have) Experience with
PAM solutions
such as BeyondTrust, CyberArk, or Delinea. -
Strong understanding of IAM protocols:
SAML, OIDC, OAuth 2.0, SCIM, LDAP
. -
Scripting/automation proficiency:
Python, PowerShell, Terraform, CDK
, or equivalent. -
Familiarity with security frameworks (NIST, ISO), AD/LDAP technologies, and zero-trust principles.
-
Excellent communication, troubleshooting, documentation, and project management skills.
Preferred Experience & Certifications
-
Certifications such as
Okta Certified Professional/Engineer
, AWS Security Specialty
, IGA platform certifications
, CISSP
, or similar. -
Experience integrating IAM with
CI/CD pipelines
, API gateways, or microservices architectures. -
Familiarity with Kubernetes and securing
service, workload, and machine identities
. -
Hands-on experience with compliance frameworks (SOC2, ISO 27001, HIPAA, NIST CSF).
-
Awareness of emerging IAM threats, modern authentication patterns, and advanced identity security controls.
What Diligent Offers You
-
Creativity is ingrained in our culture.
We are innovative collaborators by nature. We thrive in exploring how things can be differently both in our internal processes and to help our clients -
We care about our people.
Diligent offers a flexible work environment, global days of service, comprehensive health benefits, meeting free days, generous time off policy and wellness programs to name a few -
We have teams all over the world
. We be headquartered in New York City, but we have office hubs in Washington D.C., Vancouver, London, Galway, Budapest, Munich, Bengaluru, Singapore, and Sydney. -
Diversity is important to us.
Growing, maintaining and promoting a diverse team is a top priority for us. We foster and encourage diversity through our Employee Resource Groups and provide access to resources and education to support the education of our team, facilitate dialogue, and foster understanding.
Diligent created the modern governance movement. Our world-changing idea is to empower leaders with the technology, insights and connections they need to drive greater impact and accountability - to lead with purpose. Our employees are passionate, smart, and creative people who not only want to help build the software company of the future, but who want to make the world a more sustainable, equitable and better place.
Headquartered in New York, Diligent has offices in Washington D.C., London, Galway, Budapest, Vancouver, Bengaluru, Munich, Singapore and Sydney. To foster strong collaboration and connection, this role will follow a hybrid work model. If you are within a commuting distance to one of our Diligent office locations, you will be expected to
work onsite at least 50% of the time.
We believe that in-person engagement helps drive innovation, teamwork, and a strong sense of community.
We are a drug free workplace. Diligent is proud to be an equal opportunity employer. We do not discriminate based on race, color, religious creed, sex, national origin, ancestry, citizenship status, pregnancy, childbirth, physical disability, mental disability, age, military status, protected veteran status, marital status, registered domestic partner or civil union status, gender (including sex stereotyping and gender identity or expression), medical condition (including, but not limited to, cancer related or HIV/AIDS related), genetic information, or sexual orientation in accordance with applicable federal, state and local laws. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. See also Diligents EEO Policy and Know Your Rights . We are committed to providing reasonable accommodations for qualified individuals with disabilities and disabled veterans in our job application procedures. If you need assistance or an accommodation due to a disability, you contact us at .
