Senior IAM Automation Engineer

WHO WE ARE Apex Fintech Solutions (Apex) powers innovation and the future of digital wealth management by building tech-forward solutions that help simplify, automate, and facilitate access to financial markets for all. Our robust suite of fintech software enables us to support clients such as Stash, Betterment, SoFi, Webull, and eToro, amongst many others; collectively, Apex powers access to the stock market for over 22+ million end customers.    At Apex, we are changing how the securities industry operates by reinventing the status quo, which was manual, slow, and accessible only by the ultra-wealthy. We're digitizing and democratizing systems so that everyone has an opportunity to invest.  When you're at Apex, you drive this change. You're part of a global team with a clear vision: to be the trusted technology that powers the digital economy. Our offices in Austin, Dallas, Chicago, New York, Portland, Belfast, and Manila are home to over 1,000 employees.  Together, we’re shaping the future of financial innovation. Embrace change. Solve big. Win together. And be G.R.E.A.T. — grit, results, empathy, accountability, and teamwork — with Apex.  We’re proud to be recognized for the innovative work we do, the purpose-driven nature of our work, and the collaborative culture we’ve created. Here are just a few of the many awards we’ve recently received:  Best Places to Work   2026, 2025, 2024, 2023 - Presented by BuiltIn  WealthTech of the Year   2025 - Presented by US FinTech Awards  The World’s Top 250 Fintech Companies   2024 - Presented by CNBC  ABOUT THIS ROLE About This Role We’re seeking a Senior IAM Automation Engineer to transform how Apex manages workforce identity and access management. This role combines DevOps/SRE practices with deep IAM expertise to eliminate manual, UI-based processes and build self-service, API-driven solutions that scale across our hybrid and multi-cloud environment. As a senior technical contributor, you’ll also mentor junior team members and help elevate the team’s overall automation and engineering capabilities. You’ll focus on workforce identity (employees, contractors, partners) while collaborating with our CIAM team who handles customer-facing identity services. As a technical leader, you’ll drive the implementation of Tines as our strategic automation platform, develop infrastructure-as-code for identity systems, and architect integrations that enable the business to move fast without compromising security. As IAM evolves with AI adoption, you’ll help lead our response to emerging non-human identity (NHI) challenges, partnering with SecOps to develop governance for AI agents, service accounts, and machine identities. You’ll also leverage AI tools effectively and responsibly in your daily work to accelerate automation development and problem-solving. This role requires someone who can write production code, architect distributed systems, and translate business requirements into automated solutions, not just configure IAM platforms. What You’ll Do Build infrastructure-as-code for identity systems - Develop and maintain Terraform, PowerShell, and Python automation across our hybrid infrastructure (on-prem AD/Adaxes, Entra ID, Okta, AWS IAM, GCP/GCI) to enable repeatable, version-controlled deployments with proper change management. Design API-driven automation and integrations - Architect scalable solutions that orchestrate identity workflows across HRIS (Workday), ticketing (ServiceNow), collaboration platforms (Slack, Teams, M365), and enterprise applications, leveraging APIs and SDKs to eliminate manual processes. Implement observability and self-healing capabilities - Build monitoring, alerting, and automated remediation for identity systems to reduce operational toil, improve reliability, and enable proactive issue detection across authentication flows and provisioning processes. Enable rapid application onboarding - Create automation frameworks and integration patterns that allow the business to onboard new SaaS applications with minimal manual intervention while maintaining security and compliance standards. Pioneer non-human identity (NHI) governance - Partner with SecOps to develop policies, controls, and automation for managing AI agents, LLM API keys, service accounts, bot identities, and machine-to-machine authentication as AI adoption accelerates across the organization. Mentor and develop junior team members - Share your hard-won experience and technical expertise to elevate the team’s capabilities. Conduct code reviews, pair programming sessions, and knowledge transfer that builds automation skills, IAM expertise, and engineering judgment across the team. Drive technical innovation in the identity space - Evaluate emerging tools and practices, establish CI/CD pipelines for IAM deployments, and leverage AI-powered development tools (LLMs, code generation, AI assistants) responsibly to accelerate automation delivery and stay ahead of business needs. Required Skills & Experience Technical Expertise Software development proficiency - 5+ years writing production code (Python, PowerShell, Go, or similar) with strong API and SDK integration experience IAM architecture skills - Deep understanding of SSO protocols (SAML, OIDC), provisioning standards (SCIM), directory services (Active Directory, Entra ID), and enterprise IAM platforms (Okta strongly preferred) Infrastructure-as-Code mastery - Hands-on experience with Terraform, Ansible, or similar tools, plus CI/CD pipelines for automated deployments DevOps/SRE practices - Experience building observable, reliable systems with appropriate monitoring, logging, and incident response capabilities Workflow automation platforms - Demonstrated ability to implement and govern low-code/code-first automation tools (Tines, Workato, n8n, or similar) Platform Experience Demonstrated hands-on experience with the following: Enterprise SSO and IAM (Ok