IAM Security Expert – Remote-First

🚀 Be part of a movement to change the way Europe pays

In today’s digital world, payments often still feel outdated: random delays and confusing rules make it harder than it should be to pay and get paid. The European Payments Initiative (EPI) is here to change all that, forever.

With Wero, our digital wallet, we make sending and receiving money simple, seamless and secure across France, Belgium and Germany, with more countries and omnichannel solutions coming soon. Supported by 14 major banks and the two largest European acquirers, EPI is building a new, proud European payment system: easy, instant and transparent, all for the greater good.

🔎 What's in it for you

We are currently on the lookout for an IAM Security Expert with deep technical expertise and a strategic mindset to design and operate secure, scalable identity and access systems. You will be a key member of the team, responsible for managing our use of protocols like WebAuthn, OAuth2, OIDC, and SCIM, as well as shaping how we enforce access rights across our systems—both technically and organizationally.

🐝 About the team

You’ll join a pan-European team of talented security experts from a wide range of backgrounds supporting cutting-edge payment solutions. They are located across Europe, in Germany, France, the Netherlands and Belgium.

💥 Your impact

• Implement and manage use of identity protocols (OAuth2, OIDC, WebAuthn, SCIM) and federated identity and access rights management systems
• Design and enforce access control models across applications and infrastructure
• Define and improve lifecycle processes for access provisioning, review, and deprovisioning
• Align IAM practices with Zero Trust architecture and internal security controls
• Collaborate with security, engineering, and compliance teams to ensure seamless integration and robust security measures
• Collaborate on compliance audits and ensure access rights support regulatory requirements
• Work with developers to embed secure authentication and authorization flows into services
• Continuously improve internal IAM tooling, automation, and control monitoring

🕵🏻‍♀️ To succeed, you should meet at least 70% of these requirements

• +5 years of experience in cybersecurity including at least 3 years in IAM
• Hands-on experience with modern IAM protocols and standards (OAuth2, OIDC, WebAuthn, SCIM)
• Solid understanding of access control models and their practical applications
• Understand the difference between IAM concepts such as RBAC, ABAC, DAC, or MAC and be and be able to implement them
• Experience with IAM in distributed, cloud-native environments
• Familiarity with Zero Trust principles, Okta and Entra ID
• Understanding of the organizational and governance aspects of identity and access management
• Fluent in English (CEFR C1 or C2) is mandatory; proficiency in German, Dutch, French, or any additional European languages is a plus
• Strong communication skills and the ability to collaborate across technical and business teams
• Experience with Microsoft SC-300 certification is a plus

🪜 If this looks like you, the recruitment steps are:

1. A first call with one of our recruiters
2. A technical interview with the Security Team Lead and a Security Expert
3. A final interview with the Head of Operations & Service Delivery and the CISO
4. Hopefully, an offer you can’t refuse

⛔ Turn back if …

• You know about IAM and Okta, but never looked under the hood
• You’re seeking to implement technical solutions on your own
• You’re looking for an already highly structured environment with no ambiguity

Otherwise, apply!

🫶 Our commitment to equal employment opportunities

EPI offers the same job opportunities to all, without distinction of gender, ethnicity, religion, sexual orientation, social status, disability, or age. EPI promotes the development of an inclusive work environment that mirrors the diversity of the clients our product is serving.