Zero Trust Identity Policy Engineer (Remote - EST Hours)

Our Customer is a consumer financial services company headquartered in Connecticut. The company offers consumer financing products, including credit, promotional financing and loyalty programs, installment lending to industries, and FDIC-insured consumer savings products through the consumer bank, its wholly owned online bank subsidiary.

We are seeking a Zero Trust Identity Policy Engineer on a contract basis to support our customer’s ongoing business needs. This role is 100% remote in EST hours.

This role will provide critical engineering across authentication systems to build advanced Adaptive/Zero Trust and CAEP policies that meet the requirements of the organization. This role will report into and take direction from the Authentication and Identity Security Platforms Leaders.

Responsibilities:

• Evaluate, design, test, and implement adaptive access policies across multiple authentication platforms
• Build and support integrations for adaptive and continuous access evaluation policies aligned with Zero Trust principles
• Collaborate with platform owners, technical leads, and operations teams to deliver secure, resilient, and user-friendly authentication experiences
• Apply subject matter expertise to enhance identity security capabilities and posture hardening initiatives
• Troubleshoot and resolve escalated production issues across authentication and identity systems
• Contribute to security projects and other assigned initiatives

Qualifications

• BS/BA in Computer Science, technical field, or Business Management with 7 years of IT experience; OR High School Diploma/GED with 10 years of IT experience
• 3+ years of experience in engineering advanced authentication policies or related cybersecurity engineering (firewall, network, endpoint, etc.)
• 3+ years of experience with MFA solutions (e.g., Okta, Microsoft Entra, Cisco Duo, or similar platforms)
• Strong understanding of IAM principles, best practices, and modern IdPs, directories, and authentication systems
• Experience with secure architectures, posture hardening, and attack frameworks, particularly identity-focused

Preferred:

• 5+ years of experience in Identity & Access Management, Infrastructure Security, or related information security domains
• 5+ years working with security teams in large, highly regulated enterprises
• Experience with phishing-resistant and passwordless authentication solutions (e.g., Okta FastPass, Beyond Identity, Hypr)
• Experience working in agile-driven product and operations teams
• Hands-on expertise with identity functions such as Active Directory, Entra ID administration, authentication, authorization, privilege management, and secrets management
• Familiarity with Cloud technologies (IaaS, PaaS, SaaS) and their access security risks
• Strong analytical mindset with the ability to identify patterns in data sets
• Knowledge of PII and PCI data security standards
• Familiarity with cybersecurity regulations, governance, and IT risk management policies
• Industry-recognized certifications such as CASP, CISSP, CISM, Microsoft, or Okta

We offer a competitive salary range for this position. Most candidates who join our team are hired at the median of this range, ensuring fair and equitable compensation based on experience and qualifications.

Contractor benefits are available through our 3rd Party Employer of Record (Available upon completion of waiting period for eligible engagements) Benefits include: Medical, Dental, Vision, 401k.

An Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against on the basis of disability.