Senior IAM Engineer

• 5–8 years in IAM, with deep knowledge of Identity Governance (IGA) and Privileged Access Management (PAM).
• Hands-on experience with Saviynt for identity lifecycle and access governance.
• Experience with Delinea (preferred), CyberArk, or BeyondTrust for PAM.

Job Description

The Senior Identity and Access Management Engineer will serve as the Subject Matter Expert (SME) for access provisioning, governance, privileged access, and administrative needs across the organization. This role will be responsible for executing the Client IAM strategy and implementing best practices and solutions, ensuring compliance with relevant policies, and meeting the guidance of the Head of Identity and Access Management and IT leadership. In addition, this individual will ensure that business partners, contractors, and employees have the right access to the right systems at the right times for the right reasons. We embrace and accept individual experiences and backgrounds to achieve a diverse and inclusive workplace.

We need you to have:

• Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or equivalent work experience.
• 5-8 years of experience in Identity and Access Management (IAM).
• 5+ years of industry experience in the development, customization, configuration, and deployment of Identity Management and Governance products such as Saviynt (Preferred) or SailPoint.
• 3+ years of experience working with any of these tools: Delinea (Preferred), CyberArk, BeyondTrust, or equivalent tool experience.
• Expert knowledge in core IAM Domains: Identity Governance and Administration, Privileged Access Management, Endpoint Privileged Management, Authentication, Authorization, Identity Lifecycle Management.
• Expert experience and knowledge of Web Services and APIs for data integration and lifecycle provisioning, including REST, SOAP, and SCIM.
• Extensive hands-on experience with IAM technologies, standards and practices (e.g. LDAP, x509, Kerberos, RBAC, Privileged Access Management, Privileged Management, Radius, SAML, OAuth2, OpenID connect, Multi-factor Authentication, Single-sign-on).
• Familiarity with Active Directory, group policy management, and operating multiple federation technologies (i.e. ADFS, Ping, Okta, Azure AD, AWS IAM).
• Author and maintain various jobs used for lifecycle automation using scripting and configuration languages such as JSON, Java, SQL, PowerShell, Python, XML, or similar.
• Excellent development skills – Java, JSON, SQL, API development, and PowerShell.
• Experience working with or deploying SOD to SAP systems using the IGA/IAM tools