IAM Engineer, Identity Security

We are seeking a proactive Mid-Level IAM Engineer to join our Identity Security Team. This role is instrumental in the design, implementation, and optimization of Identity and Access Management (IAM) solutions within our cloud-native environment. You will ensure the security and efficiency of user and privileged access processes, acting as a key product contributor for our Privileged Access Management (PAM) system, Teleport. This position demands strong technical IAM skills combined with the ability to influence product strategy and drive solution delivery.

Responsibilities

• Lead implementation and management of core IAM solutions (Okta, Microsoft Entra ID), serving as the primary engineering resource and product advocate for Teleport (PAM).
• Drive and automate the full IAM lifecycle including provisioning, de-provisioning, role management, and access reviews.
• Develop and maintain robust automation scripts (PowerShell, Python, Bash) to streamline IAM operations and enhance security.
• Provide expert troubleshooting for complex IAM issues, ensuring timely support and systemic improvements.
• Collaborate with cross-functional teams (infrastructure, cloud engineering, dev) to design, integrate, and deliver secure IAM solutions.
• Contribute to the strategic vision, roadmap, and requirements for IAM product areas, especially PAM (Teleport), based on business value, security risks, and compliance needs.
• Ensure IAM solutions adhere to compliance standards (GDPR, ISO27001, SOC2) and cybersecurity best practices; actively identify and assess identity/access-related risks.
• Document IAM processes and configurations to foster operational excellence.
• Stay updated on IAM trends, proactively recommending innovative security solutions.
• Define, track, and report on IAM performance metrics (KPIs), leveraging analytics for continuous optimization.
• Act as an interface between technical teams and stakeholders, providing clear project and security outcome updates.

Requirements

• Bachelor's degree in Computer Science, Information Security, or related field.
• 4-6 years progressive experience in IAM or closely related IT security roles.
• Deep understanding of IAM concepts, best practices, and the IAM lifecycle.
• Proven hands-on experience in cloud-native environments (AWS, Azure, GCP).
• Expertise with enterprise IAM solutions (Okta, Microsoft Entra ID).
• Required: Direct, hands-on experience with PAM solutions; highly preferred: Teleport experience.
• Advanced proficiency in scripting for automation (PowerShell, Python, Bash) with a track record of implemented solutions.
• Solid understanding of security and cloud architecture concepts.
• Strong analytical, complex problem-solving, and logical thinking skills.
• Demonstrated ownership of tasks and projects; ability to work independently and collaboratively.
• Excellent written and verbal English communication skills, articulating complex concepts to diverse audiences.
• Strong commitment to continuous learning and cybersecurity passion.

Preferred Qualifications

• Security or cloud professional certifications (e.g., CompTIA Security+, CCSP, AWS Security, Azure Security, CISM, CISSP).
• Experience with API integration and development for IAM solutions (RESTful APIs).
• Familiarity with Identity Governance & Administration (IGA) concepts.