Principal Cyber Security Engineer - Identity Access Management (IAM)

Exciting Opportunity at MSK: Principal Cyber Security Engineer - Identity Access Management (IAM)

At MSK, this role serves as a senior technical authority for Identity and Access Management, shaping secure, scalable identity solutions that protect critical systems, users, and data. The Principal Cyber Security Engineer partners across the enterprise to design, implement, and evolve modern identity platforms supporting workforce and external identities.

Role Overview

• Serve as a principal-level technical lead for enterprise Identity and Access Management (IAM) architecture and solutions

• Design and implement secure authentication and authorization flows across workforce and external user populations

• Lead enterprise-scale IAM initiatives leveraging modern federation and identity standards

• Strong experience with PingFederate, PingID, PingOne Suite, including PingOne Protect, PingOne Verify and Davinci

• Partner with security, application, and business stakeholders to align identity strategy with organizational needs

• Provide hands-on technical leadership for advanced identity platforms and integrations

• Drive identity security improvements including MFA, risk-based authentication, and adaptive access

• Troubleshoot and resolve complex authentication, federation, and access issues across platforms

• Influence IAM standards, best practices, and long-term identity roadmap across the enterprise

Key Qualifications

• Deep hands-on experience with SAML, OAuth 2.0, OpenID Connect (OIDC), LDAP, SCIM, and Auth0

• Proven experience delivering enterprise-scale IAM implementations and migrations

• Experience managing identity solutions for both workforce and external/consumer identities

• Strong experience with PingOne Suite, including PingOne SSO, MFA, Protect, and Risk

• Advanced experience with cloud identity architectures in Azure, AWS, and GCP

• Strong JavaScript experience for custom identity logic, orchestration, and flow extensions

Core Skills

• Ability to translate complex business requirements into secure, scalable identity solutions

• Strong analytical and troubleshooting skills for browser-based authentication and identity flows

• Advanced use of JSON for APIs, identity payloads, and event-driven integrations

• Working knowledge of XML for federation metadata, policies, and configuration artifacts

• Collaborative, influential mindset with the ability to lead through expertise and technical credibility

• Working knowledge of programming languages (e.g. C#, Java, SQL)

• Strong knowledge in managing Linux and Windows servers.

Additional Information:

• Schedule: 9:00 AM - 5:00 PM EST, Monday - Friday

• Location: Hybrid: 99% remote with flexibility to come to NYC as needed. Must live in commutable distance to NYC

• Reporting To Associate Director, Identity & Access Management

Helpful Links:

• Compensation Philosophy

• Benefits