Enterprise IAM Engineer II

We don’t think about job roles in a traditional way. We are anti-silo. Anti-career stagnation. Anti-conventional. 

Beyond ONE is a digital services provider radically reshaping the personalised digital ecosystems of consumers in high growth markets around the world. We’re building a digital services aggregator platform, with a strong telco foundation, and a profitable growth strategy that empowers users to drive their own experience—subscribe once, source from many, and only pay for what you actually use. 

Since being founded in 2021, we’ve acquired Virgin Mobile MEA, Friendi Mobile MEA and Virgin Mobile LATAM (with 6.5 million subscribers) and 1600 dedicated  colleagues across Chile, Colombia, KSA, Kuwait, Mexico, Oman and UAE. 

To disrupt for good takes a rebellious spirit, a questioning mind and a warm heart. We really care about how to get things done and not who manages who. We benefit from our diversity, and together, we disrupt the way we and others thinkin about our lives for good.  

Do you want to exchange ideas, learn from each other and leave your mark on our journey? This is the place for you. 

Role Purpose

Why this role matters:

As Enterprise IAM Engineer II, you will play a key role in securing and streamlining employee identity and access across our business and engineering systems. Your contributions will help shape our enterprise IAM infrastructure and governance frameworks, and ultimately the way we disrupt the market through secure, scalable access management.

What success looks like:

In your first year, you will automate end-to-end joiner/mover/leaver workflows, expand SSO capabilities across core platforms, and lead the implementation of scalable role-based access controls (RBAC) across high-impact systems including HR, finance, and production environments.

Why this is for you:

If you're keen on solving fragmented access challenges across a hybrid, multi-cloud enterprise, hit us up. We're looking for someone ready to tackle this challenge head-on and make an impact from day one.

Key Responsibilities

In this role, you will:

• Lead the design and implementation of Identity & Access Management (IAM) systems and integrations, ensuring secure and scalable employee access across the enterprise.

• Collaborate with HR, IT, engineering, and compliance teams to define access needs and enforce consistent RBAC frameworks.

• Manage the automation of identity lifecycle processes (joiner/mover/leaver) to minimize friction and maximize compliance across systems.

• Enhance Single Sign-On (SSO) across applicable platforms, enforcing security best practices such as MFA and conditional access.

• Develop technical integrations between identity sources (e.g., HRIS) and target systems to support seamless provisioning and deprovisioning.

• Monitor IAM incidents, investigate anomalies, and lead resolution efforts aligned with audit and compliance requirements.

• Drive IAM metrics and reporting initiatives to support transparency, audit readiness, and continuous improvement.

• Stay ahead of IAM trends, focusing on innovations across hybrid and multi-cloud enterprise environments.

Qualifications & Attributes

We’re seeking someone who embodies the following:

Education:

• Bachelor’s or Master’s degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• Industry certifications preferred (e.g., CISSP, CISM, Microsoft Certified: Identity and Access Administrator, Okta Certified Professional).

Experience:

• 3–5 years of hands-on experience in an IAM role within a mid-to-large scale enterprise.
• Proven experience with systems like Microsoft Entra ID, SAP, Microsoft 365, AWS IAM, and Privileged Access Management.
• Functional exposure to IAM transformation or system automation initiatives.
• Experience with Mobile Device Management tools (e.g., InTune, JumpCloud, Jamf) is a plus.

Technical Skills:
Must-haves:

• Expertise in IAM tools (e.g., Entra ID, Azure AD, Okta, Ping Identity).

• Proficiency with directory services (LDAP, AD), SAML, OAuth2, OpenID Connect, and SCIM.

• Strong scripting/programming skills (e.g., PowerShell, Python).

• Hands-on experience in enterprise infrastructure environments (cloud-native/hybrid).

• Familiarity with GRC practices as they relate to IAM.

Nice-to-haves:

• Experience with API integration and system orchestration.

• Ability to automate IAM controls within CI/CD pipelines.

Unique Attributes:

• Thrives in fast-paced and technically complex environments.

• Demonstrates a high degree of ownership and ability to self-direct.

• Possesses a proactive mindset and the ability to quickly adopt new technologies.

• Excels with methodologies such as Agile and DevOps.

What we offer:

• Rapid learning opportunities - we enable learning through flexible career paths, exposure to challenging & meaningful work that will help build and strengthen your expertise.
• Hybrid work environment - flexibility to work from home 2 days a week.
• Healthcare and other local benefits offered in market.

By submitting your application, you acknowledge and consent to the use of Greenhouse & BrightHire during the recruitment process. This may include the storage and processing of your data on servers located outside your country of residence. For further information, please contact us at dataprivacy@beyond.one.