Smartsheet is looking for a Security Engineer to own and elevate our Identity Access Management (IAM) program. You will be responsible for securing our critical systems and data by analyzing existing IAM platforms, designing and implementing robust authentication, authorization, and RBAC solutions, and collaborating across teams to ensure a secure and efficient access environment.  This role offers the opportunity to make a significant impact on Smartsheet's security posture by driving continuous improvement initiatives in IAM practices.

This position reports to the Sr. Director, Identity Access Management. This is a remote eligible position and you may work remotely from anywhere in the US where Smartsheet is registered.

You Will:

Play a key role in the formulation of the overarching identity access management technical strategy & roadmap, including system design, standards, and procedures Tackle complex IAM challenges by designing and implementing innovative solutions that meet Smartsheet's evolving security needs. Work alongside product engineering teams and Corporate IT engineers to ensure IAM security controls and protective measures are implemented Serve as a subject matter expert and act as a coach and mentor to colleagues within the organization, guiding them in the adoption of best practices in identity and access management Investigate and respond to security incidents related to identity and access management, working with the broader security team to mitigate potential risks. Aggregate and present pivotal Identity and Access Management (IAM) Metrics, offering a clear view of ongoing efforts and showcasing the progress made Drive a culture of continuous process improvement, with a particular focus on optimizing identity and access management systems and related processes. Collaborate closely with IT and other business teams to enhance provisioning and access management processes, promoting operational efficiency and security.

You Have:

7+ years of total experience as an engineer in the field of cyber security or IT with direct work in identity management systems Experience and understanding of identity and access management and correlating concepts, such as Role-based Access Control, user directories, Single Sign-On, privileged access management, and multifactor authentication (MFA).  Experience deploying and/or utilizing security tooling such as Endpoint Detection and Response (EDR), Virtual Private Networks (VPN), Vulnerability scanning tools, Cloud Security Posture Management (CSPM), Security Information and Event Management (SIEM) Exceptional attention to detail  Excellent written and verbal communication skills  Strong interpersonal, analytical, and customer service skills.  Extremely versed in application programming interface (API) concepts and methods  Strong working knowledge of multiple frameworks. (SOC2, NIST, CIS, FEDRAMP)  Working knowledge of privileged user management tools General information security certification (e.g., CISSP, GSEC, etc.)  Experience with IAM within Okta, Amazon Web Services (AWS), Microsoft Azure and Active Directory