Search all jobs
Browse jobsPalo Alto, CA › Senior IAM Engineer - FedRAMP

Senior IAM Engineer - FedRAMP

Rubrik · Palo Alto, CA · Posted Jul 6, 2026

Apply on company site   Track it in JobSkout

About the team:

The Information Technology team at Rubrik influences business processes, employee experience, and technologies to scale our organization to $1B+. This team creates operational efficiency across the company by centralizing the management of Infrastructure, Technology, and Data. The IT team ensures all stages of the software development lifecycle in a secured environment and scrutinizes the deployment of proper processes along with governance. They champion Rubrik on Rubrik and are the first customers of the Engineering teams at Rubrik.

Rubrik Corp IT is constructed of 100% SaaS and 0% on-premises. The IT team caters to accelerated enhancement of business value and multiple day-to-day business processes through our varied SaaS applications like Salesforce.com , Oracle Netsuite, Workday, Snowflake, Etrade, jitterbit, Allocadia, etc. This team also delivers high-paced business outcomes with 100% system uptime backed by agile, nimble, simple, but cohesive Cloud architectures.

About the role:

Rubrik is seeking a highly skilled and experienced Senior IAM Engineer to join our Identity Access Management team, reporting directly to the Senior Manager. In this pivotal role, you will design, implement, and operate secure workforce identity services for Rubrik’s RSC‑G environment. You will own Okta SailPoint administration in FedRAMP Moderate/High contexts, implement strong authentication and authorization controls (MFA, device trust, network zones), integrate SCIM and SSO for SaaS and GovCloud platforms, and partner with InfoSec, Network, CloudOps, and IAM Governance (SailPoint) to sustain compliance, availability, and audit readiness.The same responsibilities will be applicable to Okta Commercial Instance.

What you’ll do:

Strategy Architecture:

Develop the overall IAM strategy, security frameworks, and architecture for enterprise-wide access control.

Cloud Infrastructure:

Design IAM solutions for cloud and on-premise environments, supporting access management, SSO, and identity federation.

Privileged Access Management (PAM):

Implement and manage PAM solutions to control access to sensitive accounts and systems.

Identity Lifecycle Management:

Automate processes for user provisioning, de-provisioning, and identity lifecycle management.

Policy Governance:

Develop IAM policies, standards, and automation frameworks to ensure compliance with industry best practices and regulations (e.g., NIST, GDPR).

Collaboration:

Partner with engineering, operations, and business teams to ensure IAM solutions align with business needs.

Security Compliance:

Ensure the confidentiality, integrity, and availability of IAM systems and data while supporting audits and risk assessments.

Application Integration: Implementing and scaling identity protocols like SAML, OIDC, OAuth, and SCIM.

Security Configuration: Developing robust access controls (RBAC, ABAC) and enhancing security with MFA, Adaptive MFA, and Device Trust.

UAR SOX: Leading User Access Reviews, contributing to audit evidence, and operationalizing logging and monitoring for compliance.

Automations: Automating identity workflows using Okta Workflows, APIs, and Terraform.

FedRAMP: Administering and enhancing Okta SailPoint for FedRAMP environments and integrating with U.S. GovCloud services.

Experience you’ll need:

Experience:

Minimum of 8 years of progressive experience in Identity and Access Management (IAM), with a strong emphasis on SailPoint Identity Security Cloud (ISC) or comparable enterprise-grade IAM platforms (e.g., Saviynt, OneLogin, Microsoft Entra ID, Oracle Identity Governance); and experience administering Okta in enterprise environments with hands-on ownership of SSO, SCIM provisioning, Okta Workflows, API automation, and policy management.

Platform Expertise :

Deep, hands-on expertise with SailPoint Identity Security Cloud (ISC) architecture, including advanced knowledge of its features ( Dynamic access roles, Password management, Access certification, Account management, Automated provisioning, Compliance Control, Data access Governance, Reporting, Role management, Access request, Identity Analytics, Identity lifecycle management, Identity Governance, Access Management, Privileged access management (pam) ), the platform functionalities, connectors, and best practices. Proficiency with modern IAM platforms (e.g., Okta, Azure AD, SailPoint, CyberArk).

Protocols:

Understanding of identity protocols such as SAML, OpenID Connect, and OAuth.

Cloud IAM Proficiency :

Demonstrable experience implementing and managing IAM solutions within leading cloud environments such as AWS, Azure, or Google Cloud Platform.

SailPoint Virtual Appliances (VAs):

Comprehensive understanding of SailPoint Virtual Appliance deployment, configuration, and advanced troubleshooting, including knowledge of underlying virtualization platforms, network security, and SailPoint's APIs, connectors, and integrations.

Automations:

Skills in designing and implementing…

Apply on company site