Senior Automation Engineer Identity Governance

Role Overview:

• We are seeking a Senior Automation Engineer to design and build continuous policy-driven remediation automation for identity governance and compliance gaps across a complex enterprise directory ecosystem.
• This role is critical to achieving our FY26 FY27 outcomes including automated enforcement of identity hygiene elimination of manual remediation continuous compliance monitoring and scalable governance for both human and non-human identities. The engineer will work closely with IAM architects security and platform teams to move the organization from reactive remediation to self-healing identity controls by default.

Basic Qualifications:

Key Responsibilities

1. Automated Governance & Compliance Remediation

• Build automation that detects and remediates identity governance violations across Active Directory and Entra ID including inactive accounts orphaned identities misconfigurations and policy drift.
• Implement event- and time-based remediation workflows such as:
  • Automatic disablement of inactive accounts after defined thresholds (e.g. 90 days)
  • Automatic deletion of disabled accounts after remediation windows elapse
• Automate remediation of identified AD and identity security findings eliminating manual ticket-driven cleanup.

2. Continuous Identity Hygiene Automation

• Engineer automated controls for:
  • Service account password rotation and expiration notifications
  • Enforcement of baseline identity security standards across domains and tenants
• Ensure identities remain compliant throughout their entire lifecycle not just at creation or audit time.

3. Identity Lifecycle & Zero Standing Privilege

• Partner with IAM architects to automate least-privilege and just-in-time access models reducing and eliminating standing privileged access.
• Support automated human and non-human identity governance including lifecycle enforcement and privilege clean-up.

4. Monitoring Signals and Self-Healing Controls

• Build automation that integrates monitoring signals policy outcomes and directory health data into closed-loop remediation pipelines.
• Enable continuous monitoring and regular AD health checks with automated response where feasible.

5. Scale Standardization and Platform Thinking

• Design reusable automation frameworks and remediation patterns that can be applied across:
  • Multiple domains and tenants
  • Business units with varying maturity
• Help evolve Directory Services into a standardized automated identity platform not a collection of scripts.

Required Education:

• BA/BS Degree Comp Sci/IS or related field