Senior Corporate Security Engineer, IAM jobs in United States
cer-icon
Apply on Employer Site
company-logo

Navan · 2 hours ago

Senior Corporate Security Engineer, IAM

positionUnited States
timeFull-time
remoteRemote
seniorityMid, Senior Level
money$128K/yr - $230K/yr
date5+ years exp

Navan is a modern, dynamic SaaS company revolutionizing the way businesses manage travel and expenses. We are seeking a Senior Corporate Security Engineer to join our team, responsible for ensuring the security of our corporate environment and implementing cutting-edge security solutions.

Business TravelFinancial ServicesPaymentsSoftware
check
H1B Sponsor Likelynote

Responsibilities

Manage Workforce IAM and Identity Governance: Lead the management and optimization of our Workforce IAM and Identity Governance systems, demonstrating deep, hands-on knowledge across the entire Okta platform. You will be responsible for designing and enforcing granular authentication policies, managing the full lifecycle of application access through Okta Access Requests and Entitlements, and leveraging Okta Device Trust to establish a zero-trust security posture for all corporate resources
Federate and Configure Application Access: Integrate a wide range of SaaS and custom applications into our identity platforms, Okta and Microsoft Entra ID, for single sign-on. This requires a strong technical understanding of modern federation protocols including SAML 2.0, OpenID Connect, and SCIM for automated user provisioning
Secure Devices and Endpoints: Develop and implement comprehensive security strategies for a diverse fleet of corporate devices. This includes managing Windows endpoints with Microsoft Intune, macOS devices with Jamf, and ChromeOS devices via the Google Admin console, ensuring all endpoints are protected against unauthorized access and threats
Manage Endpoint Detection and Response (EDR): Lead the deployment, administration, and tuning of our EDR platform, specifically the CrowdStrike Falcon suite. Your responsibilities will include leveraging products like Falcon Insight for incident investigation, Falcon Prevent for next-gen antivirus, and proactive threat hunting to identify and neutralize advanced threats on corporate endpoints
Implement Zero Trust Network Access: Design and deploy Zero Trust security models to enhance network security and safeguard company resources
Deploy Data Loss Prevention Solutions: Implement DLP strategies focusing on protecting PII and PCI data within SaaS applications like Google Workspace, Salesforce, and Box
Enable Large-Scale Endpoint Management: Oversee the deployment and maintenance of secure operating systems and platforms at scale. A key responsibility is to implement and manage a robust patch management strategy across all corporate operating systems (Windows, macOS, ChromeOS), ensuring timely remediation of vulnerabilities to reduce the company's attack surface
Orchestrate Security Posture Checks: Automate security checks for all new infrastructure deployments to ensure compliance with security standards
Implement Endpoint State Attestation: Deploy tooling, such as Microsoft Entra Conditional Access and Intune compliance policies, to continuously validate the security state of endpoints
Scale Proactive Security Controls: Extend security measures to new environments, including those acquired through mergers or acquisitions
Stay Current with Industry Trends: Keep abreast of the latest security threats, technologies, and trends to proactively address potential vulnerabilities
Develop Custom Security Solutions: Contribute to the development of custom and open-source security tools tailored to our needs

Qualification

Okta platformZero Trust Network AccessEndpoint DetectionResponseMicrosoft IntuneData Loss PreventionSAML 2.0OpenID ConnectSCIMAutomation MindsetInfrastructure management toolsGoogle WorkspaceMicrosoft 365Communication SkillsProblem-Solving Abilities

Required

Minimum of 5 years of experience in corporate security engineering within a SaaS or similar environment
Expert-level proficiency with the Okta platform for workforce Identity and Access Management (SSO, MFA, IGA)
Demonstrated experience designing and implementing complex access management automation and workflows, with a strong preference for candidates skilled in Okta Access Requests and Okta Workflows
Strong knowledge of securing devices and endpoints, including hands-on experience with Mobile Device Management platforms like Microsoft Intune
Familiarity with Microsoft Entra ID in hybrid or multi-cloud environments
Experience with securing Google Workspace and Microsoft 365/Enterprise Suite
Hands-on experience implementing an enterprise zero trust network access solution such as ZScaler
Understanding of Zero Trust Network Access models
Experience with infrastructure management tools (Puppet, Chef, Ansible, Terraform)
Knowledge of Data Loss Prevention strategies in SaaS applications
Experience with vulnerability management tools and methodologies
Passion for automating processes to improve efficiency and scalability
Ability to effectively communicate complex security concepts to technical and non-technical stakeholders, including collaboration with the physical security team
Demonstrated ability to identify security risks and develop effective mitigation strategies

Preferred

Okta Certification is a strong plus
Hands-on experience implementing an enterprise zero trust network access solution such as ZScaler is a strong plus
Highly Desirable: Okta Certified Professional or Higher, Microsoft Security Certifications
Nice to Have: CISSP, CISM, or similar security certifications
Bachelor's degree in Computer Science, Information Security, or a related field preferred

Benefits

Health benefits
Comprehensive Benefits

Company

Navan

twittertwittertwitter
Glassdoor3.1
company-logo
Navan provides travel, expense, and corporate card management to automate manual processes and drive spend visibility.
dateFounded in 2015
location
Palo Alto, California, USA
people-size1001-5000 employees
web-link
https://navan.com

H1B Sponsorship

Navan has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (45)
2024 (22)
2023 (38)

Funding

Current Stage
Public Company
Total Funding
$2.25B
Key Investors
Goldman Sachs Bank USACoatueGreenoaks
2025-10-30IPO
2025-04-07Convertible Note
2022-12-08Debt Financing· $400M

Leadership Team

leader-logo
Ariel Cohen
CEO and Co-Founder
linkedin
leader-logo
Carlos Avelar
Account Executive

Recent News

Navan
TripActions Raises $250 Million in Series D Funding Led by Andreessen Horowitz to Solve Antiquated Product, Service and Experience of the Corporate Travel Management Industry
2025-12-24
navan
TripActions Expands Its Global Footprint with Israel Office
2025-12-24
Navan
TripActions Secures $275M in Funding as it Creates a New Category of T&E
2025-12-24
Company data provided by crunchbase