WHOOP

Security Engineer IAM

Reposted 9 Hours Ago

Easy Apply

Boston MA USA

Hybrid

Mid level

Fitness • Hardware • Healthtech • Sports • Wearables

Power your performance with 24/7 data

The Role

The IAM Security Engineer will design and implement identity and access management controls across cloud platforms. Responsibilities include configuring SSO MFA and managing identity lifecycle ensuring secure access and collaborating with Security and IT teams.

Summary Generated by Built In

At WHOOP we’re on a mission to unlock human performance and healthspan. Our wearable technology provides personalized insights that help millions of members better understand their bodies and make smarter decisions about training recovery and lifestyle.

Identity is foundational to securing modern cloud-native platforms SaaS ecosystems and enterprise systems. We are seeking an IAM Security Engineer to support the design implementation and continuous improvement of identity and access management controls across workforce identity SaaS platforms and production cloud environments.

In this role you will work closely with Security IT and Engineering teams to implement secure authentication and authorization patterns that protect critical systems and data.

Responsibilities

Implement authentication and authorization controls across SaaS platforms cloud infrastructure and internal applications
Configure and maintain SSO MFA conditional access policies and federation integrations
Assist with the evolution of single sign-on (SSO) multi-factor authentication (MFA) conditional access and zero trust access models
Assist in design and enforce role-based and attribute-based access control models (RBAC/ABAC) across cloud and SaaS systems
Validate identity provider integrations including application onboarding and SCIM provisioning
Partner with Engineering to secure application authentication flows API access service-to-service authentication and token management
Harden and optimize identity provider configurations including lifecycle management federation and SCIM provisioning
Support AWS IAM security including policy implementation role configuration cross-account access management and identity federation
Implement privileged access and identity lifecycle controls including provisioning deprovisioning access reviews entitlement governance least privilege enforcement and just-in-time access mechanisms
Secure APIs service accounts and non-human identities used in automation and CI/CD workflows
Implement and improve identity monitoring and detection capabilities including anomaly detection session risk analysis and identity threat response
Partner with GRC to support identity-related audits evidence collection and control validation across frameworks such as ISO 27001 SOC 2 PCI DSS and GDPR
Contribute to incident response efforts involving identity compromise credential abuse or unauthorized access events

Qualifications

3+ years of experience in IAM engineering or identity architecture
Hands-on experience with enterprise identity providers such as Okta Azure AD or similar enterprise IAM platforms
Strong understanding of modern authentication and authorization protocols including SAML OAuth 2.0 OIDC SCIM and JWT
Experience designing and implementing RBAC and/or ABAC models in cloud-native environments
Strong knowledge of AWS IAM cross-account access models and cloud identity federation
Experience securing APIs service accounts machine identities and CI/CD authentication workflows
Experience with privileged access management concepts and least privilege enforcement
Experience automating IAM tasks using scripting or infrastructure-as-code tools (i.e. Python Terraform or similar infrastructure-as-code tooling)
Familiarity with identity threat detection and response methodologies
Bachelor’s degree in Computer Science Cybersecurity or related field; relevant certifications (i.e. CISSP CISM GIAC AWS Security Specialty Okta Certified Professional) or equivalent practical experience will also be considered

This role is based in the WHOOP office located in Boston MA. The successful candidate must be prepared to relocate if necessary to work out of the Boston MA office.

Interested in the role but don’t meet every qualification? We encourage you to still apply! At WHOOP we believe there is much more to a candidate than what is written on paper and we value character as much as experience. As we continue to build a diverse and inclusive environment we encourage anyone who is interested in this role to apply.

WHOOP is an Equal Opportunity Employer and participates in E-verify to determine employment eligibility

The WHOOP compensation philosophy is designed to attract motivate and retain exceptional talent by offering competitive base salaries meaningful equity and consistent pay practices that reflect our mission and core values.

At WHOOP we view total compensation as the combination of base salary equity and benefits with equity serving as a key differentiator that aligns our employees with the long-term success of the company and allows every member of our corporate team to own part of WHOOP and share in the company’s long-term growth and success.

The U.S. base salary range for this full-time position is $130000 - $170000. Salary ranges are determined by role level and location. Within each range individual pay is based on factors such as job-related skills experience performance and relevant education or training.

In addition to the base salary the successful candidate will also receive benefits and a generous equity package.

These ranges may be modified in the future to reflect evolving market conditions and organizational needs. While most offers will typically fall toward the starting point of the range total compensation will depend on the candidate’s specific qualifications expertise and alignment with the role’s requirements.

Top Skills

Aws Iam

Azure Ad

Jwt

Oauth 2.0

Oidc

Okta

Python

SAML

Scim

Terraform

What the Team is Saying

View all jobs at WHOOP

View WHOOP Profile

Report Job

Am I A Good Fit?

beta

Get Personalized Job Insights.

Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.

The Company

HQ: Boston MA

500 Employees

Year Founded: 2012

What We Do

At WHOOP we’re on a mission to unlock human performance. WHOOP empowers members to perform at a higher level through a deeper understanding of their bodies and daily lives. Our wearable device and performance optimization platform has been adopted by many of the world's greatest athletes and consumers alike.

Why Work With Us

At WHOOP we’re focused on building an inclusive and equitable team with a strong sense of belonging for everyone—increasing representation in every way as our team grows. We believe that our differences are our source of strength—so much so it’s one of our core values. 