ForgeApply · Job listing
Principal IAM Lead
Drivewealth
Apply in about a minute — without sacrificing quality.
ForgeApply autofills this application and tailors your resume to this exact posting. You review everything before it's sent. Free trial, no card required.
About this role
About Us
DriveWealth is on a mission to make investing easier. We believe that everyone should have the ability to control their financial future, and that access to financial markets should not be limited by geography, wealth, or legacy systems. We are a global B2B financial technology organization dedicated to democratizing access to financial independence around the world. Our mission is realized through an API-based platform, empowering our partners to offer seamless investing and trading experiences to clients worldwide, all from their mobile devices. Our technology provides partners with a modern, extensible toolkit, enabling traditional investment workflows and innovative techniques like fractional share ownership. DriveWealth has evolved into a global platform offering trading of US equities, mutual funds, ETFs, fixed income, and options.
There’s never been a better time to build a category-defining business and there has rarely been a team better positioned for this opportunity. Our culture blends the pace and agility of a fintech start-up with the impact, stability, and discipline of Wall Street. We encourage creativity and experimentation while ensuring institutional-grade execution and regulatory compliance in everything we do. Join us and help build the future of global investing!
About This Role
DriveWealth is seeking a Principal IAM Lead to own and evolve our enterprise identity and access management ecosystem. This is a senior, hands-on technical leadership role for someone who lives at the intersection of identity architecture, security engineering, and platform administration. You will serve as the subject matter expert for our Okta and Auth0 environments, driving secure, scalable, and well-governed identity solutions across the organization. The ideal candidate has deep platform-level expertise, strong troubleshooting instincts, and the confidence to make and defend changes to authentication and security policies that affect the entire company.
What You'll Do
Okta Platform Ownership
• Serve as the principal administrator and subject matter expert for Okta, including SSO and SCIM integrations, Okta Workflows, and Okta Identity Governance (OIG)
• Design, build, and maintain group rules and access policies that support least-privilege and lifecycle management
• Manage Okta licensing, entitlements, and platform capacity planning
• Demonstrate deep expertise on how authentication rules (MFA policies, sign-on policies, adaptive authentication, risk-based policies, etc.) are applied within Okta, and update and tune these policies as business and security
• needs evolve.
Auth0 Platform Management
• Maintain strong working knowledge of the Auth0 platform, including tenants, rules/actions, and application configurations
• Create, configure, and troubleshoot Identity Provider (IdP) connections across all major IdP types (SAML, OIDC, social, enterprise directories, etc.)
• Diagnose and resolve authentication and federation issues across integrated applications
API Integration
• Leverage Okta, Auth0, and related APIs to automate identity workflows, integrations, and reporting
• Troubleshoot and build API-based solutions to extend platform capabilities beyond native UI functionality
• Client & Enterprise SSO Onboarding
• Configure and manage SSO connections for external clients and enterprise customers, acting as the primary technical point of contact for partner-side IT/security teams during setup
• Gather and validate partner IdP metadata (OIDC) and configure corresponding Auth0 connections
• Test and troubleshoot partner SSO connections end-to-end prior to go-live, resolving certificate, attribute mapping, and claims issues
• Maintain documentation and a repeatable onboarding process for bringing new clients onto SSO
Cloud Identity (AWS)
• Apply working knowledge of AWS and AWS Identity Center (formerly AWS SSO) to support cloud identity federation and access management
• Collaborate with cloud infrastructure teams to align identity governance across on-prem, SaaS, and cloud environments
AI & Emerging Technology Security
• Secure access to AI/ML platforms, tools, and resources, including LLM APIs, AI agents, and machine-to-machine authentication for AI-driven services
• Apply IAM governance principles (least privilege, lifecycle management, auditing) to non-human identities and AI agents to mitigate emerging risks such as over-privileged connectors or unauthorized data access
• Partner with engineering and security teams to define access and authentication standards for internally built and third-party AI tooling
Leadership & Strategy
• Act as a trusted advisor to security, IT, and application teams on identity best practices and architecture decisions
• Map IAM controls to compliance and Zero Trust frameworks (e.g., SOC 2, ISO 27001, NIST) in partnership with GRC teams
• Mentor junior IAM engineers and contribute to the long-term IAM roadmap
• Document standards, runbooks, and processes to mature the IAM program
• Own vendor relationships and roadmap discussions with Okta, Auth0, and related identity vendors
You Bring
• Extensive hands-on experience administering Okta at an enterprise level, including SSO/SCIM, Okta Workflows, and Okta Identity Governance
• Strong, demonstrable experience with Auth0, including IdP connection creation and troubleshooting across major identity providers
• Solid understanding of authentication and authorization concepts (SAML, OIDC, OAuth 2.0, MFA, adaptive/risk-based policies)
• Working knowledge of identity and security logging practices to support monitoring and investigation
• Practical experience consuming and integrating with REST APIs for automation and troubleshooting
• Working knowledge of AWS, including AWS Identity Center
• Familiarity with directory services (Active Directory, Entra ID) and how they integrate with Okta/Auth0
• Strong troubleshooting skills and comfort making high-impact chang
Salary insight
The midpoint of this range ($165k) is about 6% below the median disclosed salary for New York roles listed on ForgeApply ($175k across 4,606 jobs).
Based on live postings with disclosed pay on ForgeApply; refreshed daily. Not an estimate of this employer's offer.
Ready to apply to Drivewealth?
Apply in about a minuteSimilar jobs
- Senior IAM Engineer — Xai · Austin, TX; Palo Alto, CA; Washington, D.C.
- Senior Manager, Identity & Access Management (IAM) — Databricks · Mountain View, California
- Staff IAM Engineer — Ironcladhq · San Francisco
- Staff IAM Engineer — Clear · New York, New York, United States
- Senior Staff Software Engineer - IAM — Databricks · Seattle, Washington
- Senior Staff Software Engineer - IAM — Databricks · Mountain View, California
- Senior Identity & Access Management (IAM) Analyst — Equipmentsharecom · Columbia, MO (Headquarters)
- Senior Software Engineer, IAM — Crusoe · San Francisco, CA - US
More like this: More jobs at Drivewealth · Browse all jobs