Apogem Capital · 5 hours ago
Corporate Vice President - Identity & Access Management (IAM) Engineer
New York, United States
Full-time
Hybrid
Senior Level, Lead/Staff
$144K/yr - $205K/yr
10+ years expApogem Capital is part of New York Life, a Fortune 100 mutual company with a legacy of purpose and integrity. The IAM Engineer will design, engineer, and maintain Identity & Access Management solutions, ensuring they are robust, scalable, and secure across various environments.
Financial Services
Responsibilities
Engineer, configure, and maintain IAM solutions across IGA, PAM, Directory, and WAM domains
Collaborate with architecture teams to design IAM solutions that integrate securely with on-premises and cloud applications (AWS, SaaS, hybrid models)
Develop and maintain workflows, connectors, policies, and scripts to automate identity lifecycle and access management processes
Integrate IAM solutions with enterprise authentication and authorization frameworks, including MFA, passwordless authentication, and emerging NHI standards (e.g., SPIFFE, DCR, PKCE)
Partner with Information Security, Application, and Infrastructure teams to ensure IAM solutions meet security, compliance, and audit requirements
Troubleshoot and resolve complex IAM-related incidents, performance issues, and integration challenges
Support roadmap delivery for IAM initiatives, including cloud adoption, Zero Trust enablement, and modernization of legacy IAM services
Contribute to solution design reviews, platform upgrades, and security hardening initiatives
Explore and implement AI/ML-based anomaly detection for identity risk scoring and adaptive authentication
Build automation scripts (Python, PowerShell, Java) to enhance IAM workflows
Collaborate on introducing AI-driven decision-making for access governance, identity-based threat detection, and identity intelligence
Stay engaged with emerging identity, cloud, and AI-related technologies; bring forward ideas to evolve IAM for the future
Qualification
Required
Bachelor's degree in computer science, Information Systems, or equivalent experience
10+ years of hands-on engineering experience across multiple IAM domains
Strong knowledge of and experience with SailPoint, CyberArk, PingOne, PingFederate, Ping Directory, Entra and Active Directory
Proven experience integrating IAM solutions in hybrid (cloud + on-premises) environments
Familiarity with identity protocols such as SAML, OAuth 2.0, OIDC, SCIM, LDAP, SPIFFE, DCR, and PKCE
Strong scripting skills (e.g., PowerShell, Python, Java) for automation and integration
Understanding of IAM-related compliance and regulatory requirements (e.g., NYS DFS, NIST)
Ability to work effectively in a team-oriented, collaborative environment, with strong problem-solving skills
Experience with cloud identity platforms (e.g., Azure AD, AWS IAM)
Exposure to Zero Trust architectures, modern authentication strategies, and AI-enabled security capabilities
Prior experience in a large enterprise or financial services environment
Preferred
IAM vendor certifications (e.g., SailPoint IdentityNow Engineer, CyberArk Trustee/Defender, Ping Identity Certified Professional)
Experience in SailPoint, CyberArk, Ping, Entra and Active Directory
Benefits
Leave programs
Adoption assistance
Student loan repayment programs
Company
Apogem Capital
Apogem Capital is an alternatives investor, with decades of experience investing in the middle market.
201-500 employees
H1B Sponsorship
Apogem Capital has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2024 (1)
2022 (1)
Funding
Current Stage
Growth StageLeadership Team
Josh Niedner
Chief Executive Officer
Recent News
AltAssets Private Equity News
2025-11-26
2025-11-24
Company data provided by crunchbase