IAM Engineer – Privileged Access & Secrets Management
Tasks
- Assist access reviews and privileged account certifications
- Define privileged account usage policies
- Define secrets storage and rotation policies
- Enforce session monitoring and credential rotation
- Ensure PAM and secrets practices align with ISO 27001 and GDPR
- Implement RBAC across Active Directory and cloud environments
- Implement secrets management platforms
- Integrate secrets management with CI CD pipelines
- Integrate secrets management with cloud platforms
- Investigate privileged access anomalies
- Lead PAM deployment and operations
- Maintain Active Directory group structures
- Maintain privileged access audit documentation
- Manage application secrets API keys and credentials
- Monitor and audit privileged access activities
- Monitor logs from PAM and secrets platforms
- Onboard privileged accounts and enforce least privilege
- Participate in IAM program initiatives
- Provide evidence for compliance assessments
- Recommend access control improvements
- Respond to identity security incidents
- Support authentication and authorization standards
- Support forensic investigations and remediation
Perks/Benefits
- N/A
Skills/Tech-stack
AWS | AWS Secrets | AWS Secrets Manager | Access Control | Access Management | Active Directory | Azure | BeyondTrust | CI/CD | Credential rotation | CyberArk | GDPR | HashiCorp Vault | ISO 27001 | OAuth | Privileged Access | Privileged Access Management | Role-Based Access | Role-Based Access Control | SAML | Scripting | Secrets Manager | Secrets management | Session Monitoring
Education
N/A
Related jobs
-
Security Operations Engineer HKD 67K-92KAccess Control | Cybersecurity | Data Loss Prevention | Data loss | Endpoint protectionDiscounts | Employee assistance program | Flexible work arrangements | Growing Families policy | Learning and development programsSenior-level Full TimeChadstone, Victoria, AU6d ago
-
Access Management | Ansible | CI/CD | Configuration Management | Container SecurityAnnual leave | Life insurance | Medical, dental, and vision insurance | Professional development allowance | Remote working policySenior-level Full TimeHong Kong11d ago
-
AI Agent Security Research Engineer SGD 143K-172KAutogen | CI/CD | CrewAI | Docker | GitLab CIEducation subsidy | Healthcare | L and D programs | Meal allowances | Wellness programsSenior-level Full TimeAPAC; Hong Kong, Hong Kong SAR; …12d ago
-
Senior Security Engineer HKD 119K-157KAWS | Access Management | Alibaba Cloud | CASB | Cloud PlatformsEmployee programs | Work-life balance initiativesSenior-level Full TimeHong Kong13d ago
-
Senior Engineer, Vulnerability Scanner SGD 118K-139KAgent systems | Autogen | CI/CD | CrewAI | DockerComprehensive healthcare | Education subsidy | L and D programs | Meal allowance | Team building programsSenior-level Full TimeHong Kong, Hong Kong SAR; Singapore, …15d ago
-
HK SecOps Engineer HKD 425K-541KAzure | CNAPP | Cloud Proxy | Cloud Security | Defender for EndpointAnnual leave | Health and insurance | Hybrid working | Training programs | Work from abroadMid-level Full TimeAll Cities, Hong Kong18d ago
-
IAM Engineer HKD 300K-300KAPI Integration | AWS CloudFormation | AWS IAM | AWS Lambda | AWS SecretsAnnual leave | Extended coverage for dependents | Hybrid or remote setup | Internal mobility program | Medical insuranceMid-level Full TimeHong Kong, Hong Kong SAR21d ago
-
Security IT Support Engineer HKD 300K-300KAccess Control | Access Management | Asset Management | Bash | DLPAnnual leave | Birthday leave | Extended medical coverage for dependents | Flexi-work hours | Hybrid workMid-level Full TimeHong Kong, Hong Kong SAR24d ago
-
Networking & Security Engineer HKD 300K-300KAccess Management | Bash | CentOS | Cisco | DHCPOn-call rotation | On-site workMid-level Full TimeHong Kong, Hong Kong, Hong Kong24d ago
-
AWS | Ansible | Apache | Bash | BlockchainCareer development | Professional certifications training | Remote workSenior-level Full TimeCentral, Hong Kong R1mo ago
-
Sales Engineer (Data Protection) HKD 312K-312KApplication Server Deployment | CNG | Cloud Computing | Cryptography | DB2Entry-level Full TimeHong-Kong Kowloon, Hong Kong1mo ago
-
AI Security Engineer HKD 112K-162KAPI Integration | Agent Orchestration | Agent systems | Authentication Security | AutomationAnnual leave | Crypto visa card | Extended medical coverage for dependents | Hybrid or remote work | Medical insuranceSenior-level Full TimeHong Kong, Hong Kong SAR1mo ago
-
Assistant Vice President – Application Security & Security Engineering - IT - 12 months contract HKD 267K-360KAWS | Access Management | Acunetix | Akamai | Application SecurityExecutive-level Full TimeHK-TKO G/F, Hong Kong1mo ago
-
Senior Product Security Engineer HKD 117K-166KAWS | Application Security | Cloud Security | Code review | ComplianceSenior-level Full TimeHong Kong1mo ago
-
Cybersecurity Engineer - Threat Modelling HKD 300K-300KLinux | Offensive security | Risk Analysis | Scripting | Security ArchitectureMid-level Full TimeHong Kong, Hong Kong1mo ago