Principal Cybersecurity Engineer (Identity & Access Management)
Tasks
- Define authentication authorization and privilege models
- Define enterprise IAM policies standards and control frameworks
- Define multi year IAM roadmap
- Define success criteria for IAM tooling and integrations
- Drive remediation of systemic identity risks
- Ensure consistency across workforce application and privileged identities
- Establish IAM risk metrics and maturity assessments
- Establish identity reference architectures and guardrails
- Evaluate IAM IGA and PAM technologies strategically
- Guide adoption of passwordless JIT access and adaptive authentication
- Influence funding prioritization and sequencing of IAM initiatives
- Influence identity operating models
- Monitor identity threat trends and best practices
- Oversee access governance methodologies
- Own enterprise IAM governance and architecture strategy
- Partner with IT HR legal compliance and engineering teams
- Represent identity risk and posture to leadership forums
- Serve as final design authority for identity integrations and access models
- Support audits and regulatory inquiries
Perks/Benefits
- Birthday day off
- Co-funded multisport card
- Flexible work arrangement
- Flexible working hours
- Free parking
- Onsite daycare
- Onsite gym
- Paid annual vacation
- Pension insurance
- Premium dental coverage
- Premium healthcare coverage
- Volunteering days
Skills/Tech-stack
Access Assurance | Access Control | Access Governance | Access Management | Adaptive Authentication | Attribute-Based Access Control | Attribute-based access | Authentication | Authorization | Governance and Administration | Identity Lifecycle Management | Identity Risk | Identity Risk Management | Identity and Access Management | Identity and access | Identity governance | Identity governance and administration | Identity lifecycle | Just-in-Time | Just-in-Time Access | Lifecycle Management | Passwordless Authentication | Privileged Access | Privileged Access Management | Privileged access governance | Risk Management | Role-Based Access | Role-Based Access Control | Security Architecture | Zero Trust
Education
Bachelor of Engineering | Bachelor of Science | Master of Science | PhD
Related jobs
-
Security Engineer, ISS CZK 1020K-1096KAI Security | AWS | Behavioral detection | CI/CD | Cloud NativeCompany-sponsored team events | Flexible time off | In-office collaboration | Wellness resourcesSenior-level Full TimePrague, Czech Republic7d ago
-
Access Management | BeyondTrust Privileged Access Management | Cause analysis | Cortex XDR | Data Loss Prevention5-week holiday | Cafeteria benefits program | Car allowance | Meal vouchers | Multisport cardMid-level Full TimePrague, Czech Republic9d ago
-
Identity Security Engineer (f/m/d) CZK 840K-960KAccess Management | Cause analysis | Cloud Security | Governance and Administration | Identity and Access Management25 vacation days | E-learning access | Flexible benefit account | Flexible working hours | Free parkingMid-level Full TimePrague, CZ9d ago
-
Access Management | BeyondTrust Privileged Access Management | Cause analysis | Compliance | Cortex XDRCafeteria benefits program | Car allowance | Meal vouchers | Multisport card | Paid HolidaysMid-level Full TimePrague, Czech Republic9d ago
-
ABAC | AWS IAM | Access Management | Access reviews | AnsibleCorporate coaching | Family days | Flexible start time | Internal knowledge base access | Psychologist supportSenior-level Full TimePrague, Prague, Czechia - Remote R16d ago
-
AWS | AWS CloudFormation | AWS Secrets | AWS Secrets Manager | Access ManagementFlexible working schedule | Home-office allowance | Hybrid work environment | Learning and career growth opportunities | Life and disability insuranceMid-level Full TimeCZ - Prague, Czechia19d ago
-
.NET | ABAC | AKS | API Design | API SecurityCafeteria benefits | Corporate mobile plan | Flexible time off | Gym wellness membership | Learning opportunitiesSenior-level Full TimePrague, Czechia21d ago
-
AWS | Access Control | Audit Logging | Authentication | AuthorizationCorporate mobile plan | Flexible cafeteria benefits | Learning and development budget | Meal vouchers | MentoringSenior-level Full TimePrague, Czechia21d ago
-
Access Management | Asset Inventory | By Design | Claroty | Configuration baselinesCareer development resources | Employee stock purchase plan | Healthcare benefits | Paid time off | Retirement benefitsSenior-level Full TimeCzech Republic - Brno - Kaštanová …26d ago
-
Application Security Engineer - Pentester CZK 420K-432KAPI Security | Application Security | Authentication | Authorization | BOLAFlexible cafeteria benefits | Gym and wellness card | Learning and development programs | Meal vouchers | Medical leaveEntry-level Full TimePrague, Czechia1mo ago
-
IAM Operations Engineer CZK 570K-757KAccess Control | Access Management | Access reviews | Ansible | AuthenticationCompany-sponsored team events | Flexible time off | Onsite work environment | Wellness resourcesMid-level Full TimePrague, Czech Republic1mo ago