A global organization is seeking a Senior Identity and Access Management (IAM) Engineer to support, operate, and enhance their enterprise IAM systems. The role involves managing platforms like Okta, Microsoft Entra, Active Directory, and SailPoint, and working across multiple teams to ensure secure, compliant, and efficient identity services.
Key Responsibilities:
- Operate and maintain IAM systems (Okta, Entra, AD, SailPoint) to ensure availability and performance
- Manage identity lifecycle (Joiner, Mover, Leaver), RBAC, and access request workflows
- Administer privileged access tools such as CyberArk and HashiCorp Vault
- Oversee Public Key Infrastructure (PKI) processes, including certificate management
- Troubleshoot access issues, MFA failures, and system bottlenecks
- Work on long-term fixes and improve system reliability through root cause analysis
- Participate in a 24/7 on-call rotation for incident response and critical support
- Collaborate with InfoSec and risk teams to resolve IAM-related vulnerabilities
- Contribute to IAM project delivery in Agile/SCRUM environments
- Support audits by maintaining documentation and ensuring compliance (e.g., SOX, HIPAA)
- Create and maintain SOPs, metrics, and reports to track IAM performance and impact
- Mentor junior team members and help build team capability
Requirements:
- 7+ years of experience in IAM or related infrastructure roles
- Strong hands-on experience with IAM tools and protocols (AD, RBAC, MFA, SSO, SAML, OAuth, PKI)
- Familiarity with regulatory environments and audit frameworks (SOX, HIPAA, etc.)
- Strong troubleshooting and stakeholder communication skills
- Scripting experience (e.g., PowerShell, Python) is a plus
- Industry certifications (e.g., CISSP, CISM, CIAM) are an advantage
- Experience in healthcare, finance, or other regulated industries preferred
