Job Title: Identity and Access Management/IAM Engineer

Department: Information Technology/Technology & Operations

Job Summary:

We are seeking a highly skilled and motivated IAM Engineer to join our dynamic Technology & Operations team. In this role, you will be responsible for implementing, managing, and securing identity and access management systems, as well as overseeing privileged access management practices. Your expertise will play a critical role in safeguarding our enterprise’s sensitive data, ensuring proper access controls, and enhancing security posture across the organization.

Job Responsibilities:

• Identity and Access Management:

1. Develop and implement end-to-end IAM management solutions based on industry best

practices, policies and regulatory requirements.

2. Administer user provisioning, deprovisioning, and identity lifecycle management.

3. Collaborate with internal teams to define access control policies and user roles, as well

as application onboarding.

4. Monitor, manage, and enforce access controls to ensure compliance with internal and

regulatory security standards.

5. Troubleshoot and resolve IAM-related incidents, ensuring minimal disruption to user

activities.

6. Perform regular audits of user access rights and recommend adjustments based on least

privilege principles.

7. Develop and enforce IAM governance policies, ensuring adherence to best practices.

• Privileged Access Management:

1. Design, implement, and manage Privileged Access Management (PAM) solutions (e.g.,

CyberArk, BeyondTrust).

2. Oversee the management of privileged accounts, ensuring their security and compliance

with security policies.

3. Configure and maintain PAM systems to ensure proper management and monitoring of

elevated access.

4. Work with cross-functional teams to establish and enforce least-privilege principles for

privileged accounts.

5. Regularly review privileged access permissions to ensure alignment with the principle of

least privilege.

6. Create and manage workflows for privilege escalation and approval processes.

• Collaboration & Documentation:

1. Collaborate with IT and security teams to design secure access management

architectures.

2. Document IAM and PAM processes, configurations, and best practices for internal

reference.

3. Assist in training and educating employees on IAM and PAM processes to foster security

awareness.

Qualifications:

• Bachelor’s Degree in Computer Science, Engineering, IT, or a related field, or equivalent

work experience required

• 5 to 6 years of experience in an Identity access management or privileged access

management

• Have knowledge and experience in any of the IAM tools such as RSA (Preferably), SailPoint,

Oracle, One Identity, ForgeRock, Micro Focus, etc.

• Have knowledge and experience in any of the PAM tools such as CyberArk, BeyondTrust,

MasterSAM, etc.

• Experience with cloud IAM/PAM solutions (e.g., Azure AD, AWS IAM).

• Have knowledge of IAM concept on user provisioning, RBAC and access governance.

• Demonstrated expertise in scripting languages, including PowerShell, PERL, VBScript, as well as proficiency in programming languages such as Java and Javascript.

• Keen insight and mindset to improve existing security solutions and services in use by

partnering with IAM Architecture, IAM Service Owner, and Security Operations to drives

automation and innovation across the security solutions supported.

• Excellent interpersonal communication and organizational skills and the ability to work

within tight timeframes.

• Ability to troubleshoot, resolve technical issues, and perform root cause analysis.

• Strong problem-solving and analytical abilities.