IAM & AI Security Engineer

Company: Vivid Computing Private Limited

Experience: 3+ Years

Location: Remote - India

Job Type: Full-Time

Job Summary

Vivid Computing is seeking an experienced IAM & AI Security Engineer with over 3 years of experience to join our expanding Cybersecurity practice. This role is crucial for implementing and delivering Identity and Access Management (IAM) solutions for enterprise clients, with a specific emphasis on Generative AI and agentic systems. You will leverage platforms like Okta and Auth0, apply standard authentication protocols, and play a key role in securing AI-powered applications deployed by our customers. This is a hands-on, delivery-focused position offering significant ownership and direct customer impact from the outset.

Responsibilities

• Implement authentication and authorization solutions for enterprise applications using Okta, Auth0, and standard protocols such as OAuth 2.0, OpenID Connect (OIDC), and SAML 2.0.
• Integrate IAM platforms into customer environments, including Single Sign-On (SSO), Multi-Factor Authentication (MFA), machine-to-machine (M2M) flows, and custom scopes and claims.
• Develop Python-based tooling, scripts, and middleware to automate IAM workflows, token management, and security event processing.
• Apply IAM expertise to Generative AI use cases, securing Large Language Model (LLM) APIs, AI agent tool calls, and agentic workflows against unauthorized access and privilege escalation.
• Manage machine identities and API credentials for AI workloads, including service accounts, ephemeral tokens, and secrets rotation using vault-based or equivalent secrets management tools.
• Support agent-to-agent (A2A) authentication patterns, ensuring AI agents verify trust before exchanging sensitive context or invoking external tools.
• Conduct threat assessments for identity and access risks specific to AI agent architectures, documenting findings and recommending remediation strategies.
• Collaborate with customers throughout the integration lifecycle, translating security requirements into configurations and delivering functional solutions.
• Maintain audit logs, access policies, and monitoring configurations across deployed environments.
• Contribute to internal documentation, integration guides, and reusable security templates.

Required Qualifications

• Minimum of 3 years of experience in security engineering, IAM, or a closely related field.
• Hands-on experience with Okta and/or Auth0, including configuring authentication policies, setting up M2M flows, and implementing OAuth 2.0/OIDC integrations.
• Working knowledge of OAuth 2.0, OpenID Connect, and SAML 2.0, with the ability to trace token flows, understand claims and scopes, and troubleshoot integrations.
• Proficiency in Python for writing production-quality security tooling and automation code.
• Exposure to AI/LLM-based systems, understanding the identity and access challenges presented by agents, tool-calling, and multi-step AI workflows.
• Ability to work directly with enterprise customers and articulate technical security concepts clearly.
• Bachelor's degree in Computer Science, Information Security, or equivalent practical experience.

Preferred Qualifications

• Experience with Go for security services or tooling, or a strong motivation to learn it.
• General familiarity with secrets management concepts and vault-style tools.
• Working knowledge of cryptographic fundamentals, including signing algorithms (RS256/ES256), key rotation, TLS/mTLS, and PKI basics.
• Experience deploying or securing workloads in Kubernetes and Docker environments.
• Exposure to cloud IAM on AWS (IAM, Cognito, Secrets Manager), GCP, or Azure Entra ID.
• Understanding of Zero Trust architecture principles and least-privilege access design.
• Relevant certifications such as Okta Certified Professional, AWS Security Specialty, CompTIA Security+, or similar.

Technical Skills

• Required: Okta & Auth0 (Authentication policies, SSO, MFA, M2M flows, custom scopes & claims, OAuth 2.0 / OIDC integrations), IAM Protocols (OAuth 2.0, OpenID Connect (OIDC), SAML 2.0, JWT / JWK, PKCE, SCIM, token introspection & revocation), Python (Production-quality security tooling, automation, API integrations, SDK development), AI & Agent Security (LLM APIs, AI agent frameworks, A2A auth patterns, tool-call security, prompt injection awareness)
• Advantage: Go (Experience in developing apps/ tools with Go - willingness to ramp up is equally valued), Cryptography (Signing algorithms (RS256/ES256), key rotation, TLS/mTLS, PKI basics), Secrets Management (Vault-style tools, credential rotation, dynamic secrets, secure storage concepts), Kubernetes & Docker (Containerised workload security, K8s RBAC, pod identity basics), Cloud IAM (AWS IAM / Cognito / Secrets Manager, GCP, or Azure Entra ID - at least one in depth), Security Practices (Zero Trust principles, threat assessment, least-privilege access design, audit logging)

Working Conditions

• Location: Fully remote, open to candidates anywhere in India. This role will transition to a hybrid in-office model upon Vivid Computing's establishment of an India office, with advance notice and support provided.
• Travel: Occasional travel may be required for customer engagements or team offsites.
• Work Style: Collaborative, async-friendly team environment with direct ownership of work.

Compensation & Benefits

• Health benefits as per applicable regulations.
• Flexible Paid Time Off (PTO) and a culture that respects personal time.
• Direct access to leadership and opportunities for company growth.

To Apply

Send your resume and a brief note detailing your IAM experience and exposure to AI systems to info@vividcomputing.com.