Lead IAM Engineer

About Bullish Bullish is an institutionally focused global digital asset platform that provides market infrastructure and information services. These include: Bullish Exchange – a regulated and institutionally focused digital assets spot and derivatives exchange, integrating a high-performance central limit order book matching engine with automated market making to provide deep and predictable liquidity. Bullish Exchange is regulated in Germany, Hong Kong, and Gibraltar. CoinDesk Indices – a collection of tradable proprietary and single-asset benchmarks and indices that track the performance of digital assets for global institutions in the digital assets and traditional finance industries. CoinDesk Data – a broad suite of digital assets market data and analytics, providing real-time insights into prices, trends, and market dynamics. CoinDesk Insights – a digital asset media and events provider and operator of Coindesk.com, a digital media platform that covers news and insights about digital assets, the underlying markets, policy, and blockchain technology. Reports to: Head of Security Engineering We are seeking a highly skilled and experienced Identity and Access Management (IAM) Lead Engineer to join our growing security team. This role is crucial for designing, implementing, and maintaining our enterprise-wide identity and access solutions. The ideal candidate will possess deep technical expertise in IAM principles, strong leadership skills, and hands‑on experience with modern Identity Governance and Administration (IGA) platforms, specifically SailPoint Identity Security Cloud (ISC) . Key Responsibilities Lead the architecture, design, and implementation of robust, scalable, and secure IAM solutions across the enterprise. Serve as the subject matter expert for Identity Governance and Administration (IGA), Access Management (AM), and Privileged Access Management (PAM) components. Develop and maintain the roadmap for the IAM program, ensuring alignment with security policies, regulatory requirements, and business goals. Communicate with various technical stakeholders and business leaders. Provide technical guidance and mentorship to junior engineers. Design, configure, and maintain all components of the SailPoint ISC platform, including: Application onboarding and connector configuration. Lifecycle management (provisioning/de-provisioning). Access certification campaigns and policy enforcement. Role‑based access control (RBAC) and attribute‑based access control (ABAC). Troubleshoot and resolve complex issues related to SailPoint ISC integrations and workflows. Drive the adoption of best practices for SailPoint ISC within the organization. Oversee the integration of various enterprise applications and systems with the IAM platform. Collaborate with application owners and development teams to ensure secure identity practices are embedded in software development lifecycles (SDLC). Monitor system performance and ensure high availability, integrity, and security of the IAM infrastructure. Required Qualifications Experience Minimum of 7 years of progressive experience in Information Security, with at least 5 years dedicated specifically to Identity and Access Management. Proven experience as a technical lead or architect on large‑scale IAM implementations. Extensive, hands‑on experience with SailPoint ISC is mandatory. Strong experience with at least one directory/authentication service (e.g., Active Directory, LDAP, Okta). Experience with protocols such as SAML, OAuth 2.0, and OpenID Connect. Good to have experience in GCP IAM or any cloud infrastructure service. Skills Deep understanding of IAM concepts, including IGA, PAM, Federation, and Multi-Factor Authentication (MFA). Proficiency in scripting or programming languages (e.g., Python, Java, PowerShell). Excellent communication, presentation, and interpersonal skills. Preferred Qualifications Relevant industry certifications (e.g., CISSP, CISM, Certified SailPoint Engineer). Experience with other IGA, PAM, or AM solutions (e.g., Ping Identity, CyberArk). Familiarity with cloud platforms (AWS, Azure, or GCP) and cloud-native IAM solutions. Bullish is proud to be an equal opportunity employer. We are fast evolving and striving towards being a globally-diverse community. With integrity at our core, our success is driven by a talented team of individuals and the different perspectives they are encouraged to bring to work every day. #J-18808-Ljbffr