Identity & Compliance Engineer
Designing and engineering identity security infrastructure for financial services, healthcare, and federal environments — from the identity provider to the compliance audit trail.
Engineering Tracks
Federated identity, OIDC/SAML, Joiner-Mover-Leaver automation, and PostgreSQL audit pipelines built on Keycloak and RHEL 10.
HashiCorp Vault credential vaulting, AppRole machine identity, Ansible-automated rotation, and tamper-evident SHA-256 audit trails.
AI-assisted access certification, continuous compliance monitoring, and cross-framework evidence generation across PCI DSS, SOX, NIST, and HIPAA.
Platform Projects
Enterprise identity provider with OIDC/SAML, Python JML automation, PostgreSQL audit pipeline, and 51 mapped compliance controls.
CyberArk-equivalent PAM environment with HashiCorp Vault, AppRole auth, Ansible rotation, TLS, and SHA-256 tamper evidence.
AWS-native SIEM with Okta event polling, CloudWatch threat detection, SNS alerting, and Terraform infrastructure.
AI-assisted IAM policy analysis with Amazon Bedrock, async job engine, Athena cross-project queries, and CRITICAL finding alerts.
"Compliance shouldn't be a lagging, reactive check. It's an active architectural layer engineered directly into the infrastructure from day one."
Compliance Coverage