Iam engineer job description
our organization is seeking an identity and access management (iam) engineer to join our team. In this role, you will be responsible for designing, implementing, and maintaining robust iam solutions that ensure access to enterprise systems and data.
the successful candidate will play a critical role in shaping our identity strategy, driving automation, and supporting compliance initiatives.
key responsibilities:
* design, implement, and manage iam solutions and provisioning/deprovisioning workflows for various personas, including internal, b2b, and b2c.
* manage, maintain, and secure hybrid microsoft authentication, authorization, and accounting (aaa) infrastructure, including domain controllers, active directory, group policy, and event logging/forwarding.
* develop and enforce iam policies, standards, and best practices.
* automate iam processes using scripting and automation tools.
* troubleshoot and resolve iam-related issues.
* lead identity-related aspects of security incident response, including investigations, containment, and remediation, and post-incident analysis and implementation to strengthen iam defenses.
required skills and qualifications:
* bachelor's degree in computer science, information security, or related field highly desired.
* advanced english level.
* minimum 3 years of experience in iam engineering.
* proficiency and experience automating using scripting tools and powershell.
* expert proficiency in managing an enterprise hybrid microsoft iam environment.
* strong knowledge and experience leveraging iam protocols and standards (saml, oauth, oidc, scim, graph api).
* enterprise experience migrating and federating iam solutions for multiple personas across organizational boundaries.
* expert knowledge of token management, mfa, and user lifecycle management.
* expertise in collecting, retaining, and reviewing relevant log information from iam solutions for compliance or incident response activities.
desired skills and experience:
* formal relevant certifications such as microsoft certified: identity and access administrator associate.
* experience implementing security features under a microsoft 365 e5 / entra id p2 license in a global enterprise, including rbac, conditional access policies, defender for identity, pim, token protection, etc.
* familiarity with regulatory and compliance frameworks (e.g., sox, hipaa, gdpr).
* strong project management, metric development, and reporting skills.
* experience with devsecops and ci/cd pipeline integration.
benefits:
* we value employee well-being and offer several resources to support their health, work, and personal needs.
* employee assistance program provides immediate and confidential help 24/7 for any problem related to health, work, or personal life.
* learning platforms, such as linkedin learning and steelcase university, promote continuous professional and personal growth.
* discounts and perks on car insurance, doctor's appointments, clinical checkups, early stimulation packages for children, and more to help employees achieve a better work-life balance.
why people choose to work with us:
* we put people at the center of everything we do and understand the role of work in bringing meaning and purpose to lives.
* we prioritize supporting employees both in and out of work, in all aspects of their lives.
* we make a positive lasting impact through our work and communities.