Security Engineer

Coupa makes margins multiply through its community-generated AI and industry-leading total spend management platform for businesses large and small. Coupa AI is informed by trillions of dollars of direct and indirect spend data across a global network of 10M+ buyers and suppliers. We empower you with the ability to predict, prescribe, and automate smarter, more profitable business decisions to improve operating margins.

Why join Coupa?

🔹 Pioneering Technology: At Coupa, we're at the forefront of innovation, leveraging the latest technology to empower our customers with greater efficiency and visibility in their spend.

🔹 Collaborative Culture: We value collaboration and teamwork, and our culture is driven by transparency, openness, and a shared commitment to excellence.

🔹 Global Impact: Join a company where your work has a global, measurable impact on our clients, the business, and each other.

Learn more on Life at Coupa blog and hear from our employees about their experiences working at Coupa.

The Impact of a IAM & AppSec Engineer at Coupa:

We are seeking an experienced Security Engineer to help build Coupa’s Identity and Access Management (IAM) and fraud programs. You will be instrumental in deploying and automating key security platforms, directly contributing to our compliance and security integrity across all environments. The outcome of your work will drive operational efficiency in access governance and proactively defend our core financial applications against fraud, protecting both Coupa and our customers.

What You'll Do:

• Platform Architecture & Development: Design, deploy, and maintain robust, highly-available IAM infrastructure, leveraging tools like Okta for identity services and SailPoint for access governance and lifecycle management.
• Automation & Scripting: Develop and maintain automation scripts (Python, PowerShell, or similar) to streamline identity lifecycle processes and integrate IAM solutions using Infrastructure-as-Code (IaC) principles.
• Authentication Standards: Implement and enforce modern authorization and authentication standards, including SAML, OAuth 2.0, OpenID Connect (OIDC), and SCIM for seamless and secure application integration.
• Privileged Access Management (PAM): Assist in the engineering and operational support of PAM solutions to manage and audit access to critical systems and administrative accounts.
• Coupa Fraud Defense: Collaborate closely with product, engineering, and risk teams to embed fraud controls into application development lifecycles and business processes.
• Security Monitoring: Partner with security operations team to utilize application logs and security events from Coupa products into our centralized SIEM for real-time fraud detection and response.
• Incident Response: Serve as a technical expert during fraud-related security incidents, assisting with forensic analysis and remediation.

What You Will Bring to Coupa:

• 3-5 years of hands-on experience in an IAM Engineering, Application Security, or Cyber Security role within a cloud-native environment.
• Proven, hands-on experience engineering and maintaining enterprise-level IAM solutions, including strong practical knowledge of Okta and/or SailPoint.
• Deep expertise in modern authorization and authentication protocols (SAML, OAuth 2.0, OIDC, SCIM).
• Proficiency in scripting or programming languages for automation and building APIs/integrations.
• Expertise in application security principles with the ability to specifically address fraud
• Solid understanding of cloud security principles and experience with cloud Identity Providers (e.g., Azure AD/Entra ID, AWS IAM).
• Relevant security certifications (e.g., CISSP, CISM, Okta Certified Administrator, SailPoint IdentityNow Engineer).
• Experience with Infrastructure-as-Code tools (e.g., Terraform) is a plus

The estimated pay range for this role is $104,000 - $135,000

The starting salary for the successful candidate will be based on permissible, non-discriminatory factors such as skills, experience, and geographic location.

#LI-REMOTE

#LI-AA2

Coupa complies with relevant laws and regulations regarding equal opportunity and offers a welcoming and inclusive work environment. Decisions related to hiring, compensation, training, or evaluating performance are made fairly, and we provide equal employment opportunities to all qualified candidates and employees.

Please be advised that inquiries or resumes from recruiters will not be accepted.

By submitting your application, you acknowledge that you have read Coupa’s Privacy Policy and understand that Coupa receives/collects your application, including your personal data, for the purposes of managing Coupa's ongoing recruitment and placement activities, including for employment purposes in the event of a successful application and for notification of future job opportunities if you did not succeed the first time. You will find more details about how your application is processed, the purposes of processing, and how long we retain your application in our Privacy Policy.