ForgeApply
Try it free

ForgeApply · Job listing

Senior Security Engineer I, IAM

Oscar

New York, New York, UShybrid

Apply in about a minute — without sacrificing quality.

ForgeApply autofills this application and tailors your resume to this exact posting. You review everything before it's sent. Free trial, no card required.

About this role

Hi, we're Oscar. We're hiring a Senior Identity and Access Manager to join our Security Team.

Oscar is the first health insurance company built around a full stack technology platform and a relentless focus on serving our members. We started Oscar in 2012 to create the kind of health insurance company we would want for ourselves—one that behaves like a doctor in the family.

As an Identity and Access Management Engineer, you will build Oscar's identity and access management disciplines across internally built applications, standard identity platforms such as Okta and Google Workspace Identity, AWS-hosted systems, and the BigQuery data lake. You will design least privilege access models, create enterprise identity architectures, and build identity threat detection and response capabilities that protect workforce, internal application, and customer identity surfaces.

You will report to the Associate Director, Platform Security.

Work Location: This position is based in our New York City office, requiring a hybrid work schedule with 3 days of in-office work per week. Thursdays are a required in-office day for team meetings and events, while your other two office days are flexible to suit your schedule.

Pay Transparency: The base pay for this role is: $163,944 per year - $215,176 per year. You are also eligible for employee benefits, participation in Oscar's unlimited vacation program, company equity grants and annual performance bonuses.

About the role:

• 4+ years of relevant experience in Identity engineering.

• Experience designing or implementing identity and access management controls for enterprise systems, cloud environments, SaaS platforms, or internally built applications.

• Strong understanding of least privilege, role-based and attribute-based access control, privileged access patterns, identity lifecycle management, and access review processes.

• Hands-on experience with identity platforms such as Okta, Google Workspace Identity, and Google Cloud permission models.

• Working knowledge of authentication and authorization protocols such as SAML, OAuth, OIDC, SCIM, LDAP, and related session, token, and federation patterns.

• Experience partnering with software engineering teams to review permission models, design secure authorization patterns, and improve access controls in custom applications.

• Ability to reason about identity telemetry, detection logic, high-risk configuration states, and incident response workflows.

• Strong written and verbal communication skills, including the ability to explain identity risk and architecture tradeoffs to technical and non-technical audiences.

Bonus Points:

• Experience building identity controls in AWS environments and data platforms such as BigQuery.

• Experience building or operating ITDR, UEBA, SIEM, SOAR, or other security detection and response capabilities.

• Experience in healthcare, insurance, fintech, or another regulated technology environment.

• Experience writing automation, queries, or production-quality code to support identity workflows, detections, or platform integrations.

This is an authentic Oscar Health job opportunity. Learn more about how you can safeguard yourself from recruitment fraud here .

At Oscar, being an Equal Opportunity Employer means more than upholding discrimination-free hiring practices. It means that we cultivate an environment where people can be their most authentic selves and find both belonging and support. We're on a mission to change health care -- an experience made whole by our unique backgrounds and perspectives.

Pay Transparency: Final offer amounts, within the base pay set forth above, are determined by factors including your relevant skills, education, and experience. Full-time employees are eligible for benefits including: medical, dental, and vision benefits, 11 paid holidays, paid sick time, paid parental leave, 401(k) plan participation, life and disability insurance, and paid wellness time and reimbursements.

Artificial Intelligence (AI): Our AI Guidelines outline the acceptable use of artificial intelligence for candidates and detail how we use AI to support our recruiting efforts.

Reasonable Accommodation: Oscar applicants are considered solely based on their qualifications, without regard to applicant’s disability or need for accommodation. Any Oscar applicant who requires reasonable accommodations during the application process should contact the Oscar Benefits Team (accommodations@hioscar.com) to make the need for an accommodation known.

California Residents: For information about our collection, use, and disclosure of applicants’ personal information as well as applicants’ rights over their personal information, please see our Privacy Policy .

Salary insight

This posting doesn't disclose pay. Across 4,600 New York jobs with disclosed salaries on ForgeApply, the median is $175k.

See full Security Engineer salary data for New York

Based on live postings with disclosed pay on ForgeApply; refreshed daily. Not an estimate of this employer's offer.

Ready to apply to Oscar?

Apply in about a minute

Similar jobs

More like this: Security & Cybersecurity Jobs · Security & Cybersecurity Jobs in New York · More jobs at Oscar · Browse all jobs