Job Overview
Location
Remote
Job Type
Full-time
Category
Security Engineer
Date Posted
May 16, 2026
Full Job Description
đź“‹ Description
- • Design, implement, and operate end-to-end identity and access management (IAM) systems for Valon’s enterprise workforce identity stack, ensuring consistent and secure governance of all human and machine identities.
- • Support the design and implementation of secure identity patterns for product teams building on ValonOS, integrating authentication and authorization capabilities directly into customer-facing systems.
- • Manage and evolve Valon’s Identity Provider (IdP) platform—such as Okta, Azure AD/Entra ID, or Google Workspace—including SSO integrations, MFA policies, conditional access rules, and directory synchronization workflows.
- • Define, enforce, and audit role-based access control (RBAC) and group-based access policies across internal applications, cloud environments, and development tooling to enforce least-privilege principles.
- • Collaborate with Engineering teams to design and operationalize privileged access management (PAM) solutions and identity vaults for internal infrastructure, securing elevated credentials and reducing attack surfaces.
- • Build AI-assisted automation workflows to accelerate core IAM operations such as provisioning, deprovisioning, access recertification, and anomaly detection, while assessing and mitigating risks introduced by AI/LLM systems.
- • Evaluate security risks in AI-powered IAM pipelines, including data exposure, prompt injection, unauthorized model access, and misuse of automated identity decisioning systems.
- • Partner with Product, Engineering, Data, Compliance, Legal, and other cross-functional teams to identify, prioritize, and remediate data security risks tied to identity and access controls.
- • Maintain compliance with regulatory frameworks including SOC 2, CCPA, NYDFS, and FTC requirements through policy development, audit preparation, and control documentation.
- • Participate in on-call rotations for incident response, vulnerability management, security reviews, and urgent access-related escalations.
- • Engage with external security auditors, penetration testing firms, and third-party partners to validate Valon’s security posture and address findings related to identity and access controls.
- • Advise engineering teams on secure implementation of authentication and authorization models, including SAML 2.0, OIDC/OAuth 2.0, SCIM, LDAP, RBAC, and ABAC across heterogeneous systems.
- • Govern non-human identities such as service accounts, API keys, and AI agent identities with audit logging, lifecycle management, and policy-as-code practices.
- • Maintain applied knowledge of industry security standards including NIST, CIS, OWASP, and ISO 27001, and apply them to IAM architecture and operational policies.
- • Communicate complex security concepts effectively to technical engineers, product managers, and non-technical stakeholders to drive security adoption across the organization.
- • Contribute to the continuous improvement of security culture through training, documentation, feedback loops, and 360-degree review participation.
- • Support company-wide security initiatives such as security training, policy updates, and incident remediation while maintaining alignment with Valon’s AI-native operating system vision.
🎯 Requirements
- • 5+ years in security engineering roles with a core focus on identity and access management
- • Bachelor's degree in Information Security, Computer Science, Technology or related field
- • Hands-on experience with an enterprise IdP (Okta, Entra ID, or Google Workspace) including SSO, MFA, SCIM
- • Deep understanding of authentication and authorization models: SAML, OIDC/OAuth 2.0, RBAC, ABAC, and API access controls
- • Proven experience administering cloud IAM systems (GCP preferred), including service accounts and workload identity federation
- • Relevant security certifications (e.g., CISSP, CISM, CCSK, CCSP or similar)
🏖️ Benefits
- • Base Compensation Band: $180K - 230K, with equity stake in the company and 401k plan
- • Comprehensive medical, dental, and vision benefits
- • Pre-tax deductions for public transportation, rideshare services, and parking expenses
- • Flexible paid time off, 11 company holidays, and 12 weeks fully paid baby bonding leave for all parents
- • Quarterly team and company outing budgets for activities such as team dinners, cooking classes, or swag
- • Company-wide orientation and ongoing learning & development opportunities with 360-degree feedback cycles
Skills & Technologies
Azure
GCP
OAuth
Senior
Remote
$180k-230k
Degree Required
About Valon Technologies, Inc.
Valon Technologies, Inc. provides cloud-based mortgage servicing software to lenders and loan servicers. Its platform automates payment processing, escrow management, customer communications, and compliance reporting, aiming to replace legacy servicing systems with modern APIs and real-time data access. The company serves banks, credit unions, and non-bank mortgage companies across the United States.
Get more remote jobs like this
Subscribe to the weekly newsletter for similar remote roles and curated hiring updates.
Newsletter
Weekly remote jobs and featured talent.
No spam. Only curated remote roles and product updates. You can unsubscribe anytime.
