Zoox is transforming mobility-as-a-service by developing a fully autonomous, purpose-built fleet designed for AI to drive and humans to enjoy.
Zoox is seeking an experienced Identity and Access Management (IAM) Engineer who will be responsible for helping ensure the security of our end users and resources.
This position on the Cyber Security team is responsible for developing, maintaining and automating the Identity & Access Management (IAM) systems and operations at Zoox. This role will be responsible for all aspects of our IAM infrastructure, which include managing and maintaining the services that encompass the identities of machines, employees, vendors, and customers. The ideal candidate will be capable of engineering and delivering both enterprise and consumer focused solutions associated with IAM.
Compensation
There are three major components to compensation for this position: pay, Amazon Restricted Stock Units (RSUs), and Zoox Stock Appreciation Rights. The pay range for this position is $143,000 to $179,000. A sign-on bonus may be offered as part of the compensation package. Compensation will vary based on geographic location and level. Leveling, as well as positioning within a level, is determined by a range of factors, including, but not limited to, a candidate's relevant years of experience, domain knowledge, and interview performance. The pay range listed in this posting is representative of the range of levels Zoox is considering for this position.
Zoox also offers a comprehensive package of benefits including paid time off (e.g. sick leave, vacation, bereavement), unpaid time off, Zoox Stock Appreciation Rights, Amazon RSUs, health insurance, long-term care insurance, long-term and short-term disability insurance, and life insurance.
In this role, you will:
Work with Developers and Engineers to improve their security posture for authentication and authorization (SSO)Communicate and collaborate with other teams, both technical and non-technical on identity-related solutionsContribute to enhancing the team's technical and organizational structure; serve as a role model to othersDefine, design and develop methods to improve IAM operational procedures through Terraform deployments and automationPropose and implement solutions to unify security policies on-prem and across hybrid Cloud environmentsQualifications:
Thorough understanding of identity lifecycle managementIn-depth knowledge of access control modelsAuthentication protocols, and authorization mechanisms: Deep understanding on Single Sign On (SSO) concepts and SAML and OIDC configurationsExperienced in Entra ID administration and MS Graph API: User and Group Administration, Enterprise Applications and Application Registrations, Conditional Access Policy Management, Authentication Method administration, Entra Identity GovernanceExperience in applying and standardizing ACL across various OS systems (Windows, Linux, etc)Bonus Qualifications:
Knowledge of AWS IAM, Cognito and Resource Access ManagerExperience with Entra ID Intune AdministrationExperience with Active Directory Group Policy Management and InfrastructureFamiliar with Infrastructure as Code (IaC) tooling - Terraform, Bamboo, SaltExperienced in Python(Boto3) and Golang