<p><span>Its fun to work in a company where people truly believe in what they are doing. At Dutch Bros Coffee, we are more than just a coffee company. We are a fun-loving, mind-blowing company that makes a difference one cup at a time. </span></p><p></p><p><u><span><b>Position Overview:</b></span></u></p><p><span>This role is central to securing our organizations digital landscape. You will be responsible for the strategic implementation and ongoing optimization of our Identity and Access Management solutions, focusing on Privileged Access Management and Identity Governance & Administration. This position requires a proactive, technically skilled individual who can manage complex identity integrations, automate key processes, and champion a Zero Trust security model. You will collaborate with various teams to ensure our identity infrastructure remains secure, scalable, and compliant with evolving business and regulatory demands.</span></p><p></p><p><u><span><b>Job Qualifications:</b></span></u></p><ul><li><p><b><span>Bachelor’s degree in related field; computer science, information security, or a related field/required</span></b></p></li><li><p><span>5+ years of experience in Identity and Access Management (IAM), with a strong focus on Privileged Access Management (PAM) and Identity Governance & Administration (IGA).</span></p></li><li><p><span>Demonstrated experience deploying and managing cloud identity platforms like Okta, Auth0, and Microsoft Entra ID in hybrid environments.</span></p></li><li><p><span>Proven experience with Terraform and CI/CD pipelines for automating IAM policy and configuration.</span></p></li><li><p><span>Solid understanding of IAM principles, including user lifecycle management, provisioning with SCIM, and compliance frameworks (e.g., SOX, PCI DSS).</span></p></li><li><p><span>Expertise in developing and executing enterprise-wide identity strategies and governance frameworks. Experience with IAM automation, including workflow orchestration, API integrations, and scripting.</span></p></li><li><p><span>Proficient in designing and optimizing PAM solutions with Just-In-Time (JIT) access, credential vaulting, and session monitoring. Proven ability to implement Zero Trust Network Access (ZTNA) architectures and conditional access policies based on user, device, and risk signals.</span></p></li><li><p><span>Hands-on experience with comprehensive IGA solutions, including automating the full identity lifecycle <span>(Joiner-Mover-Leaver),</span> access certifications, and policy enforcement, with a deep understanding of Segregation of Duties (SoD) principles.</span></p></li><li><p><span>Extensive experience with modern authentication methods such as passwordless (FIDO2/WebAuthn), Multi-Factor Authentication (MFA), and Single Sign-On (SSO). Strong knowledge of identity federation protocols, including SAML, OAuth2.0, and OIDC.</span></p></li><li><p><span>Advanced knowledge of Role-Based Access Control (RBAC) and fine-grained authorization. Experience securing and managing non-human identities (NHIs) and service accounts, including lifecycle management and credential rotation.</span></p></li><li><p><span>Hands-on experience with cloud-based identity services (e.g., Okta, Auth0, Entra ID) and their integration with on-premise Active Directory.</span></p></li></ul><p></p><p><b><u><span>Location Requirement: </span></u></b></p><p>This role is located in Tempe, Arizona. This position is required to be in office 4 days per week (Mon-Thurs); Fridays are optional remote work days.</p><p></p><p><u><span><b>Key Result Areas (KRAs):</b></span></u></p><div><ul><li><p><span>Lead the implementation and optimization of PAM solutions to enhance access security. This includes deploying Just-in-Time (JIT) access, credential vaulting, and session monitoring to minimize lateral movement and secure privileged accounts.</span></p></li><li><p><span>Drive the improvement of identity governance by automating the full user lifecycle <span>(Joiner-Mover-Leaver),</span> access reviews, and provisioning workflows. Ensure compliance by enforcing Segregation of Duties (SoD) policies and leveraging API-driven orchestration.</span></p></li><li><p><span>Manage and enhance the identity stack by modernizing authentication methods and ensuring seamless integration. This involves implementing federation protocols (SAML, OIDC), passwordless authentication (FIDO2), and unified conditional access policies across hybrid environments.</span></p></li><li><p><span>Improve overall security by implementing a Zero Trust Network Access (ZTNA) architecture. Deploy advanced risk-based MFA, biometric solutions, and advanced conditional access policies that maintain a balance between security and user experience.</span></p></li><li><p><span>Establish and maintain a comprehensive identity strategy and governance framework aligned with enterprise risk management. Ensure regulatory compliance through automated access reviews, audit reporting, and continuous monitoring of identity-related security posture.</span></p></li><li><p><span>Accelerate IAM initiatives by driving automation through workflow orchestration, API integrations, and custom scripting. The goal is to reduce manual effort, improve response times, and enable self-service capabilities.</span></p></li><li><p><span>Must be able to collaborate in-person with occasional impromptu in-person meetings</span></p></li></ul><p></p></div><p></p><p><u><span><b>Physical Requirements:</b></span></u></p><ul><li><p><b>In-Office Environment:</b> Must be able to work in a busy, crowded, and loud office with frequent distractions and interruptions</p><ul><li><p>Must be able to collaborate in-person with occasional impromptu in-person meetings </p></li></ul></li><li><p><b>Office Conditions:</b> Adaptability to typical office conditions, which may include exposure to air conditioning, heating, artificial lighting, and varying noise levels</p></li><li><p><b>Mobility</b>: Ability to sit, stand, reach, twist, stretch, and work at a desk for long stretches.  Must be able to occasionally move or lift office items up to 25 pounds</p></li><li><p><b>Hearing Requirements:</b> Hearing must be sufficient or correctable to ensure clear understanding of spoken information, including participating in virtual meetings and phone calls. Use of hearing aids or other assistive devices is acceptable if needed.</p></li><li><p><b>Reading and Writing Proficiency:</b> Ability to read and write in English is essential for processing documents, drafting reports, and following up on necessary actions. Proficiency in written communication is required to handle job-related tasks effectively.</p></li><li><p><b>Vision Requirements:</b> Vision must be adequate or correctable to perform essential job duties, such as reading documents on a computer screen and using other visual tools. Use of corrective lenses or other measures to meet visual requirements is expected if needed.</p></li><li><p><b>Technology Proficiency:</b> Must be proficient in operating a computer and other office productivity tools such as printers, scanners, and collaboration software. </p></li><li><p><b>Effective Communication:</b> Must possess strong verbal and written communication skills to interact effectively with team members, clients, and other stakeholders via email, video conferencing, and other in office communication tools.</p></li></ul><p></p><p><b>Compensation:</b></p><p>DOE</p><p></p><p><span>If you like wild growth and working in a unique and fun environment, surrounded by positive community, youll enjoy your career with us!</span></p>