Key skills
CloudDistributed SystemsAIAgenticIAMJWTOktaSAMLSSO
About this role
Role Overview
- Define the engineering strategy, architecture, and roadmap for Autodesk’s IAM platforms across workforce, non-human, and agentic identity
- Lead engineering teams responsible for IAM platforms, APIs, automation services, and identity integrations
- Oversee engineering for SailPoint, Microsoft Entra, Okta, SSO, MFA, app onboarding, directory services, identity verification, and privileged access integrations
- Build secure, scalable, and reusable identity paved roads for internal teams
- Own engineering patterns for non-human identities including service accounts, workload identities, API identities, automation accounts, and federated machine identities
- Define secure patterns for agentic and on behalf of identity, including OBO flows, delegated access, scoped tokens, constrained execution, and least privilege controls
- Drive adoption of short lived credentials, federation, secret reduction, lifecycle controls, and stronger ownership for non-human and agentic identities
- Ensure engineering designs align to least privilege, privileged access, separation of duties, logging, and traceability requirements
- Partner with IAM Security and Trust on RBAC, ABAC, PIM, PAM integrations, auditability, and identity risk reduction
- Lead and grow a high performing IAM Engineering organization with strong technical ownership, delivery standards, and production readiness
- Encourage effective and secure use of AI assisted engineering tools to improve delivery, documentation, and operational efficiency
Requirements
- 10+ years of experience in IAM, security engineering, platform engineering, or related enterprise identity domains
- 5+ years leading engineering teams responsible for IAM platforms, identity services, or security infrastructure at enterprise scale
- Strong experience with SailPoint, Microsoft Entra, and Okta
- Deep knowledge of OAuth2, OIDC, SAML, JWT, token exchange, OBO flows, federation, and modern workload identity patterns
- Experience designing identity architectures across SSO, MFA, provisioning, lifecycle automation, directory services, access governance, and app onboarding
- Experience securing and engineering for non-human identities across cloud, CI CD, platform, and runtime environments
- Experience defining secure patterns for agentic identity and software acting on behalf of users or services
- Strong engineering fundamentals across APIs, automation, distributed systems, CI CD, observability, and secure platform delivery
- Experience with privileged access, admin tiering, just in time access, and strong production control boundaries
- Experience working in regulated environments, including FedRAMP, public sector, or similarly controlled environments
Tech Stack
- Cloud
- Distributed Systems
Benefits
- health and financial benefits
- time away and everyday wellness