Staff Identity & Access Management (IAM) Engineer

Company Description

For a winning team that is evolving.  Forward with Cuscal.

At Cuscal, you’ll find a strong, successful company that’s reimagining the future. And our team is right there at the heart of it all. Here, you’ll deliver or support interesting, ground-breaking projects that have real impact - on Australia’s financial services sector and the millions of customers it serves. You’ll innovate alongside skilled, smart, connected teams. And you’ll build an impressive, fulfilling career that continues to grow. As the largest independent payment solution providers, we’ve set the standard for over 50 years. Now, we’re preparing to pioneer the next 50.

Job Description

We are looking for a Staff Identity and Access Management (IAM) Engineer to design, implement and maintain secure, scalable IAM solutions the support the needs of the business.

What is this role about?

The Staff IAM Engineer requires deep expertise in IAM technologies, security protocols, and best practices, as well as the ability to collaborate with cross-functional teams to establish or improve existing IAM infrastructure. The ideal candidate will play a critical role in projects related securing the organisation’s systems and data, ensuring regulatory compliance, and supporting efficient, secure user access and identity lifecycle management.

Here’s some more insight into what you’ll work on,

• Design and implement IAM solutions that align with the organisation’s security policies, regulatory requirements, and business objectives.
• Develop and maintain IAM architecture, including Single Sign-On (SSO), Multi-Factor Authentication (MFA), Role-Based Access Control (RBAC), and other access control models.
• Collaborate with Infrastructure, security, and development teams to integrate IAM solutions into enterprise systems.
• Manage and automate identity lifecycle processes, including provisioning, de-provisioning, and role management for users, devices, and applications.
• Ensure that IAM solutions support seamless access for internal and external users.
• Implement and maintain access governance frameworks, ensuring appropriate access levels across the organisation.
• Support compliance requirements by conducting regular access reviews, auditing, and reporting to satisfy internal and external audits.

Qualifications

What can you bring?

• Proven experience with IAM and PAM technologies (e.g., Active Directory, Asure AD, Okta, CyberArk, BeyondTrust, etc.) and their implementation in a complex, regulated environment.
• 3+ years of experience in identity and access management, privileged access management, or related cybersecurity roles.
• Strong understanding of security principles, authentication, authorisation, and access control mechanisms.

• Be able to navigate the challenges of a varied role in a dynamic  organisation.

• Ability to identify tasks and activities required to meet project requirements and to set goals and priorities in line with business objectives.

Although not required, any knowledge and/or experience in the following would be highly desirable:

• Payment’s industry, ATM/EFT/POS technology, cards and finance or other regulated industries and/or 24x7 mission-critical environments.
• Knowledge of security frameworks and standards such as ISO 27001, NIST, CPS234, ASD Essential 8 etc.
• Understanding of legal, regulatory, privacy and security matters associated with the Banking and Finance Industry.

Additional Information

Why Cuscal? 
We are in the rapidly evolving world of payments, and we are committed to providing a diverse and inclusive workplace where the very best talent in Australia chooses to work. We support our colleagues with flexible work arrangements through our hybrid model whilst also offering a wide range of educational, financial, lifestyle, health & wellbeing benefits. 
 
Next Step 
If you think this role is the right fit for you, we invite you to apply. Let’s explore who you are and what drives you. We’d love to share our vision for the future of payments sector. Please note candidate screening and interviews may be conducted prior to the closing date of the job advert. 

Cuscal does not accept unsolicited resumes from recruitment agencies and search firms. Please do not email or send unsolicited resumes to any Cuscal employee, location or address.