IAM Engineer – Privileged Access & Secrets Management
Tasks
- Assist access reviews and privileged account certifications
- Define privileged account usage policies
- Define secrets storage and rotation policies
- Enforce session monitoring and credential rotation
- Ensure PAM and secrets practices align with ISO 27001 and GDPR
- Implement RBAC across Active Directory and cloud environments
- Implement secrets management platforms
- Integrate secrets management with CI CD pipelines
- Integrate secrets management with cloud platforms
- Investigate privileged access anomalies
- Lead PAM deployment and operations
- Maintain Active Directory group structures
- Maintain privileged access audit documentation
- Manage application secrets API keys and credentials
- Monitor and audit privileged access activities
- Monitor logs from PAM and secrets platforms
- Onboard privileged accounts and enforce least privilege
- Participate in IAM program initiatives
- Provide evidence for compliance assessments
- Recommend access control improvements
- Respond to identity security incidents
- Support authentication and authorization standards
- Support forensic investigations and remediation
Perks/Benefits
- N/A
Skills/Tech-stack
AWS | AWS Secrets | AWS Secrets Manager | Access Control | Access Management | Active Directory | Azure | BeyondTrust | CI/CD | Credential rotation | CyberArk | GDPR | HashiCorp Vault | ISO 27001 | OAuth | Privileged Access | Privileged Access Management | Role-Based Access | Role-Based Access Control | SAML | Scripting | Secrets Manager | Secrets management | Session Monitoring
Education
N/A
Related jobs
-
Security IT Support Engineer HKD 300K-300KAccess Control | Access Management | Asset Management | Bash | DLPAnnual leave | Birthday leave | Extended medical coverage for dependents | Flexi-work hours | Hybrid workMid-level Full TimeHong Kong, Hong Kong SAR3d ago
-
Networking & Security Engineer HKD 300K-300KAccess Management | Bash | CentOS | Cisco | DHCPOn-call rotation | On-site workMid-level Full TimeHong Kong, Hong Kong, Hong Kong3d ago
-
AWS | Ansible | Apache | Bash | BlockchainCareer development | Professional certifications training | Remote workSenior-level Full TimeCentral, Hong Kong R11d ago
-
Sales Engineer (Data Protection) HKD 312K-312KApplication Server Deployment | CNG | Cloud Computing | Cryptography | DB2Entry-level Full TimeHong-Kong Kowloon, Hong Kong13d ago
-
AI Security Engineer HKD 112K-162KAPI Integration | Agent Orchestration | Agent systems | Authentication Security | AutomationAnnual leave | Crypto visa card | Extended medical coverage for dependents | Hybrid or remote work | Medical insuranceSenior-level Full TimeHong Kong, Hong Kong SAR18d ago
-
Assistant Vice President – Application Security & Security Engineering - IT - 12 months contract HKD 267K-360KAWS | Access Management | Acunetix | Akamai | Application SecurityExecutive-level Full TimeHK-TKO G/F, Hong Kong25d ago
-
Senior Product Security Engineer HKD 117K-166KAWS | Application Security | Cloud Security | Code review | ComplianceSenior-level Full TimeHong Kong28d ago
-
Cybersecurity Engineer - Threat Modelling HKD 300K-300KLinux | Offensive security | Risk Analysis | Scripting | Security ArchitectureMid-level Full TimeHong Kong, Hong Kong1mo ago
-
Mid-level Full TimeHong Kong, HK, HK1mo ago
-
Analyst - Information Security (Ref: 26000047) HKD 300K-300KAccess Management | Active Directory | Alibaba Cloud | Application Security | AzureCareer development | Training opportunitiesMid-level Full TimeHong Kong1mo ago
-
Analyst - Information Security (Ref: 26000047) HKD 300K-300KAccess Management | Active Directory | Application Security | Auth0 | AzureMid-level Full TimeHong Kong1mo ago
-
Senior-level Full TimeHong Kong1mo ago