Logo
First American

Principal Engineer Identity Security-Hybrid

First American, Santa Ana, CA, United States

Who We Are Join a team that puts its People First! Since 1889, First American (NYSE: FAF) has held an unwavering belief in its people. They are passionate about what they do, and we are equally passionate about fostering an environment where all feel welcome, supported, and empowered to be innovative and reach their full potential. Our inclusive, people-first culture has earned our company numerous accolades, including being named to the Fortune 100 Best Companies to Work For list for nine consecutive years. We have also earned awards as a best place to work for women, diversity and LGBTQ+ employees, and have been included on more than 50 regional best places to work lists. First American will always strive to be a great place to work, for all. For more information, please visit www.careers.firstam.com. What We Do Leads security engineering efforts for Microsoft and Identity Management platforms including cloud. This role will be central to delivering strategic identity and access management solutions that strengthen the security posture of First American and its global partners. You will take ownership of the design, implementation, and management of Microsoft solutions, including Workforce Identity and B2B, and ensuring comprehensive identity and access management (IAM) services across the organization.

How You'll Contribute

  • Lead complex technical engineering discussions for purpose to create solutions designed to drive innovation while ensuring solutions are designed for secure deployment in the cloud and other platforms.

  • Collaborate with Operations, Governance, and Engineering teams to ensure the secure development, deployment, and optimization of access management services.

  • Drive innovation, establish best practices, and influence the future architecture of identity security while being hands-on in developing solutions.

  • Make recommendations on integration strategies, engineering solutions, platforms and application infrastructure required to successfully implement a complete solution providing best practice advice to customers to optimize product effectiveness.

  • Build a trusted advisory relationship with strategic customers across the business and engage with Architects and senior management to identify customer priorities, technical objections and design strategies encompassing the entire ecosystem to deliver business value.

  • Perform market research on best-of-breed technologies and lead the engineering team to develop successful proof-of-concepts to test and learn new capabilities.

  • Lead discussions with business partners to clearly understand opportunities and identify innovative ways to leverage technology to solve complex business issues.

  • Design, develop and enhance technical architecture patterns and frameworks for others to leverage across the enterprise.

  • Work with customers, stakeholders, product managers, and product owners to understand and maintain a high-level understanding of the current and upcoming requirements for the system

  • Understand and communicate the nonfunctional requirements for the system.

  • Evaluate design alternatives, and perform cost benefit analysis.

  • Develop and maintain whatever models and documentation are necessary to describe how the system does what it is intended to do, including recommended domain and user case models

  • *Define and split large architectural objectives into smaller incremental objectives.

  • Present the technological vision of the solution during planning, provide domain models and exemplary use cases that describe larger system behavior, and participate actively in interactively during the planning process.

  • Champion change by serving as a resource to help teams make appropriate system and component level design decisions during implementation.

  • Top level technical expert in one or more highly specialized phases of applications programming.

  • Research, design, write, test and implement complex software applications and systems.

  • Provide practical, actionable approaches to overcoming technical and procedural challenges in implementing strategy.

  • Lead Cloud Identity governance.

  • Champion change; drive and set technical direction affecting multiple groups/business units.

  • Provide leadership by instructing, mentoring and training team members within and outside the work group.

  • Work with other engineers to establish common roadmaps in support of upcoming user and business needs.

  • Interact with and influence senior management on technical matters requiring coordination between organizations.

  • Provides technical consulting on complex projects.

  • Required to perform duties outside of normal work hours based on business needs.

What You'll Bring

Required Education, Experience, Certification/Licensure

  • Bachelor's Degree or equivalent combination of education and experience.

  • Typically have 15+ years of directly related experience. At least 10 years of experience in enterprise-level security engineering

  • Extensive experience with Microsoft Entra ID, Active Directory and Azure, AWS, OCI, GCP Cloud

  • In-depth knowledge of modern authentication protocols (SAML, OAuth2, etc.)

  • Expertise in implementing IAM lifecycle management, provisioning, single sign-on (SSO), multi-factor authentication (MFA), and role-based access control (RBAC)

  • Strong understanding of identity lifecycle management, access control, and security policies

  • Experience working with distributed team is preferred.

  • Expertise with Cloud Security configurations that are agnostic in execution.

  • Expertise with developing multiple tiers of multi-tiered IAM Cloud integrations.

  • Expertise in designing Identity based Security models for Cloud platforms.

  • Constantly updating technical knowledge and skills and mentoring others to increase the skill level of the department and the company.

  • Must have conceptual understanding of Cloud container domain technologies.

  • Ability to convey technical and conceptual ideas/topics to non-technical personnel.

  • Presentation skills

  • Strong organizational or Project Management skills

  • Devises or modifies procedures to solve complex problems considering computer equipment capacity and limitations, operating time, and form of desired results.

  • Responsible for program design, coding, automated testing, debugging, and documentation.

  • Responsible for quality assurance review of architectural objectives

  • Has full technical knowledge of all phases of Cloud Identity relationships

  • Identifies problems, anticipates effects across business communities, research best practice alternatives, prepares presentations, drives solutions, tests to confirm, gains consensus from a broad business community, and implements customized solutions.

  • Troubleshoots and drives solutions on a wide variety of complex problems.

  • Works to define drive and implement broad based conceptual issues.

  • Acts independently under broad direction.

  • Actively identifies issues, seeks out solutions and makes recommendations to the broad business community to apply customized solutions to solve business problems.

Salary Range: $192,400.00-$256,500.00

This hiring range is a reasonable estimate of the base pay range for this position at the time of posting. Pay is based on a number of factors which may include job-related knowledge, skills, experience, business requirements and geographic location

** Note that the following statements only apply to candidates who will be working from an unincorporated area within Los Angeles County. ** First American will consider for employment all qualified applicants, including those with arrest or conviction records, in a manner consistent with the requirements of applicable state and local laws (e.g., the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act). First American intends to conduct a review of an applicant's criminal history in connection with a conditional offer. First American reasonably believes that a criminal history may have a direct, adverse and negative relationship with the following material job duties for this position potentially resulting in the withdrawal of the conditional offer of employment: handling of confidential, proprietary or trade secret information belonging to First American or its customers, administrating or facilitating financial transactions, and the ability to meet customer-imposed criminal history requirements. What We Offer By choice, we don't simply accept individuality - we embrace it, we support it, and we thrive on it! Our People First Culture celebrates diversity, equity and inclusion not simply because it's the right thing to do, but also because it's the key to our success. We are proud to foster an authentic and inclusive workplace For All. You are free and encouraged to bring your entire, unique self to work. First American is an equal opportunity employer in every sense of the term. Based on eligibility, First American offers a comprehensive benefits package including medical, dental, vision, 401k, PTO/paid sick leave and other great benefits like an employee stock purchase plan.