CrawlJobs Logo

Access Management Engineer

United States, Santa Clara · Job Posted May 16, 2026

Job offer has expired

Job Link Share

Job Description

We are looking for an experienced Access Management Engineer with strong expertise in Keycloak Identity and Access Management (IDP) to design, implement, and maintain secure authentication and authorization solutions. The ideal candidate will have hands on experience with Keycloak in production environments, containerization using Docker, and integration with enterprise applications.

Job Responsibility

  • Design, deploy, configure, and manage Keycloak IDP instances for enterprise scale identity and access management
  • Implement authentication flows including SSO, SAML, OpenID Connect (OIDC), OAuth 2.0, and custom user federation
  • Containerize and orchestrate Keycloak deployments using Docker (and Docker Compose/Kubernetes where applicable)
  • Integrate Keycloak with various applications, APIs, microservices, and identity providers (Active Directory, LDAP, social logins, etc.)
  • Manage user realms, clients, roles, groups, and fine grained authorization policies
  • Monitor, troubleshoot, and optimize Keycloak performance, security, and high availability setups
  • Implement security best practices, including certificate management, encryption, and compliance requirements
  • Collaborate with development, DevOps, and security teams to support identity related initiatives
  • Automate deployment and configuration processes for Keycloak environments

Requirements

  • Bachelor's or Higher Degree
  • Access Management
  • Total Experience: 5.00 to 7.00 Years
  • Keycloak Identity and Access Management (IDP) in production environments
  • Containerization using Docker
  • Integration with enterprise applications
  • SSO, SAML, OpenID Connect (OIDC), OAuth 2.0
  • Docker Compose/Kubernetes
  • Active Directory, LDAP, social logins
  • User realms, clients, roles, groups, fine grained authorization policies
  • Monitoring, troubleshooting, optimizing Keycloak performance
  • Security best practices, certificate management, encryption
  • Collaboration with development, DevOps, security teams
  • Automation of deployment and configuration processes

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Access Management Engineer

8 matching positions

Access Management Engineer

The Access Management Engineer is responsible for designing, implementing, and m...
Location
Location
United Kingdom , Cardiff
Salary
Salary:
Not provided
admiralgroup.co.uk Logo
Admiral Group Plc
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven experience implementing and operating Microsoft Entra in a medium to large organisation
  • Experience in Infrastructure as Code Terraform
  • Expert knowledge of Access controls and best practice
  • Highly organised, with ability to work independently or as part of a team
  • Strong analytical and problem-solving skills
  • Excellent communication skills, both written and verbal
Job Responsibility
Job Responsibility
  • Assist with product vision and strategy for Access Management solutions, including Entra ID, MFA, SSO and SCIM
  • Collaborate with teams to design, develop, and implement Access Management solutions and remediate vulnerabilities identified, lessons learnt from prior incidents, and resolve known issues
  • Proactively communicate updates, project statuses, and key milestones to stakeholders at all levels of the organisation
  • Work collaboratively with the IAM Compliance team in support of internal and external audit
  • Manage user identity lifecycle, including provisioning, de-provisioning, and role-based access control
  • Implement governance policies for privileged access and enforce least privilege principles
  • Design and enforce Conditional Access policies to protect sensitive resources
  • Use Terraform to automate deployment and management of Conditional Access configurations across environments
  • Implement Passkeys and other passwordless authentication methods to enhance security and user experience
  • Integrate FIDO2 and biometric authentication options within Microsoft Entra
What we offer
What we offer
  • Everyone receives 33 days holiday (including bank holidays) when they join us, increasing the longer you stay with us, up to a maximum of 38 days (including bank holidays)
  • You also have the option to buy or sell up to an additional five days of annual leave
  • All colleagues eligible for up to £3,600 of free shares each year after one year of service
  • Financial & Mortgage Advice
  • 24-Hour Ecare
  • Cycle to Work Scheme
  • Annual Holiday Allowance
  • Flexible Working
  • Simply Health
  • Private Health Cover
  • Fulltime
Read More
Arrow Right

Senior Identity Access Management Engineer

Roku is seeking a senior-level Identity Engineer to enhance its Zero-Trust archi...
Location
Location
United States , New York
Salary
Salary:
158000.00 - 279000.00 USD / Year
roku.com Logo
Roku
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years of hands-on experience with identity and access management and automating cloud technologies, particularly within the Microsoft ecosystem
  • Strong analytical skills and attention to detail, with the ability to troubleshoot complex infrastructure and identity-related issues
  • Excellent communication skills, with the ability to clearly explain technical concepts to both technical and non-technical stakeholders
  • Deep experience with Microsoft Entra ID, including Conditional Access, Identity Governance, and Privileged Identity Management
  • Familiarity with Microsoft 365 services: Exchange Online, Defender, Purview, Sentinel, Intune, and related platforms
  • Automation and scripting skills using PowerShell, Azure CLI, and Microsoft Graph API
  • working knowledge of Azure services such as Function Apps and Logic Apps
  • Experience in onboarding and managing enterprise applications in Azure Entra ID
  • Advanced knowledge of Azure Single Sign-On (SSO) login methods, including OAuth2, OpenID Connect, and SAML, and their integration with enterprise applications
  • Knowledge of privileged access tools (Azure PIM, CyberArk, etc), secrets management (HashiCorp or Azure Key Vault), and workload identity patterns SPIFEE & SPIRE
Job Responsibility
Job Responsibility
  • Lead enterprise-wide IAM standardization, including identity lifecycle, access governance, and policy enforcement across global regions
  • Drive automation across IAM to streamline administration and deliver a smoother user experience
  • Support enterprise applications onboarding into Azure Entra ID, including SSO, Conditional Access, and role-based access control (RBAC)
  • Enhance privileged access management and implement scalable monitoring, alerting, and auditability solutions to support a secure, geographically distributed workforce
  • Collaborate with IT, Networking, and Security teams to troubleshoot identity-related issues and support global infrastructure initiatives
  • Advance Zero Trust Identity Fabric principles like continuous verification, least-privilege access, and identity-aware policy enforcement across users, devices, workloads, and non-human identities
  • Build identity automation with a DevOps mindset, writing scripts, developing pipelines, and engineering tooling from scratch rather than just configuring them
What we offer
What we offer
  • health insurance
  • equity awards
  • life insurance
  • disability benefits
  • parental leave
  • wellness benefits
  • paid time off
  • global access to mental health and financial wellness support and resources
  • healthcare (medical, dental, and vision)
  • commuter
  • Fulltime
Read More
Arrow Right

Senior Identity Access Management Engineer

Roku is seeking a senior-level Identity Engineer to enhance its Zero-Trust archi...
Location
Location
United States , Boston
Salary
Salary:
158000.00 - 279000.00 USD / Year
roku.com Logo
Roku
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years of hands-on experience with identity and access management and automating cloud technologies, particularly within the Microsoft ecosystem.
  • Strong analytical skills and attention to detail, with the ability to troubleshoot complex infrastructure and identity-related issues.
  • Excellent communication skills, with the ability to clearly explain technical concepts to both technical and non-technical stakeholders.
  • Deep experience with Microsoft Entra ID, including Conditional Access, Identity Governance, and Privileged Identity Management.
  • Familiarity with Microsoft 365 services: Exchange Online, Defender, Purview, Sentinel, Intune, and related platforms.
  • Automation and scripting skills using PowerShell, Azure CLI, and Microsoft Graph API
  • working knowledge of Azure services such as Function Apps and Logic Apps.
  • Experience in onboarding and managing enterprise applications in Azure Entra ID.
  • Advanced knowledge of Azure Single Sign-On (SSO) login methods, including OAuth2, OpenID Connect, and SAML, and their integration with enterprise applications.
  • Knowledge of privileged access tools (Azure PIM, CyberArk, etc), secrets management (HashiCorp or Azure Key Vault), and workload identity patterns SPIFEE & SPIRE.
Job Responsibility
Job Responsibility
  • Lead enterprise-wide IAM standardization, including identity lifecycle, access governance, and policy enforcement across global regions.
  • Drive automation across IAM to streamline administration and deliver a smoother user experience.
  • Support enterprise applications onboarding into Azure Entra ID, including SSO, Conditional Access, and role-based access control (RBAC).
  • Enhance privileged access management and implement scalable monitoring, alerting, and auditability solutions to support a secure, geographically distributed workforce.
  • Collaborate with IT, Networking, and Security teams to troubleshoot identity-related issues and support global infrastructure initiatives.
  • Advance Zero Trust Identity Fabric principles like continuous verification, least-privilege access, and identity-aware policy enforcement across users, devices, workloads, and non-human identities.
  • Build identity automation with a DevOps mindset, writing scripts, developing pipelines, and engineering tooling from scratch rather than just configuring them.
What we offer
What we offer
  • Health insurance
  • equity awards
  • life insurance
  • disability benefits
  • parental leave
  • wellness benefits
  • paid time off
  • global access to mental health and financial wellness support and resources
  • healthcare (medical, dental, and vision)
  • life
  • Fulltime
Read More
Arrow Right

Identity and Access Management Engineer

We are looking for an Identity and Access Management Engineer to support secure ...
Location
Location
United States , Silver Spring
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven experience designing and supporting identity and access management solutions in complex enterprise environments
  • Strong knowledge of federation concepts and hands-on experience with OAuth 2.0, OpenID Connect, claims, and token-based authentication
  • Ability to develop process documentation and integration standards for onboarding enterprise applications
  • Experience improving identity lifecycle workflows, including user onboarding, role changes, and offboarding activities
  • Familiarity with access governance practices such as certification reviews, remediation tracking, and segregation of duties enforcement
  • Working knowledge of Active Directory-related technologies, including Group Policy Objects and enterprise access architecture
  • Understanding of supporting infrastructure domains such as server virtualization, enterprise storage, DevOps practices, and architecture standards
Job Responsibility
Job Responsibility
  • Architect and support identity federation integrations for enterprise platforms using modern authentication and authorization standards such as OAuth 2.0 and OpenID Connect
  • Establish and maintain trust relationships and secure sign-on configurations to ensure dependable access across connected applications
  • Create clear onboarding frameworks and technical documentation to streamline the integration of new business systems into the identity environment
  • Investigate and resolve complex authentication issues involving tokens, claims, and federated access flows
  • Drive improvements to joiner, mover, and leaver processes so that account provisioning and deprovisioning remain accurate and timely
  • Enhance access models and contribute to role engineering efforts that align user permissions with business responsibilities
  • Support access review activities by helping coordinate certification campaigns and tracking remediation work through completion
  • Reinforce segregation of duties controls and apply policy standards that reduce risk and strengthen governance
  • Collaborate with infrastructure and engineering teams on directory services, Group Policy Objects, virtualization, storage, and DevOps-related IAM dependencies
What we offer
What we offer
  • Medical insurance
  • Vision insurance
  • Dental insurance
  • Life insurance
  • Disability insurance
  • 401(k) plan
  • Free online training
  • Access to top jobs
  • Fulltime
Read More
Arrow Right

Senior Identity & Access Management Engineer

Join the Identity & Access Management team within our Global Technology Platform...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
justeattakeaway.com Logo
Just Eat Takeaway.com
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience implementing IAM and Identity Governance concepts including RBAC, Segregation of Duties, and Access Recertification
  • Hands-on experience administering Okta Identity Governance or similar platforms
  • Solid understanding of SSO, SCIM, SAML, and OpenID authentication protocols
  • Ability to work with minimal supervision on projects and support activities, while mentoring team members
  • Experience with Okta Workflows or similar automation tools
  • Scripting capability in Okta Expression Language or willingness to learn
  • Clear communication skills working across global teams and time zones
Job Responsibility
Job Responsibility
  • Design and implement governance processes for global IAM systems
  • Develop and enhance Identity Governance automation using Okta Identity Governance
  • Manage project delivery in two-week agile sprints, mentoring engineers
  • Resolve 3rd line technical issues and participate in on-call rotation
  • Communicate technical updates clearly to stakeholders across Global Technology Platforms
  • Ensure audit compliance through process walkthroughs and internal reviews
  • Proactively identify and address platform issues before business impact occurs
  • Fulltime
Read More
Arrow Right

Lead Identity Access & Management Engineer

We are looking for a skilled Lead Identity Access & Management Engineer to join ...
Location
Location
United States , Easton
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Extensive experience with Active Directory administration and architecture
  • Proven expertise in managing and configuring Group Policy Objects (GPOs)
  • Strong knowledge of identity and access management principles and technologies
  • Demonstrated ability to plan and execute cloud-based AD migrations
  • Familiarity with security protocols and methods to safeguard IAM systems
Job Responsibility
Job Responsibility
  • Design, implement, and maintain Active Directory (AD) structures to enhance organizational efficiency
  • Develop and manage Group Policy Objects (GPOs) to ensure compliance and streamlined access control
  • Lead the transition and architecture planning for Active Directory cloud integration
  • Identify and address security vulnerabilities within identity and access management systems
  • Collaborate with cross-functional teams to map out and execute the organization's cloud migration strategy
  • Redefine and restructure existing AD configurations to align with best practices
  • Provide expert guidance on IAM technologies and processes to support business objectives
  • Monitor and optimize the performance of AD and IAM systems
  • Stay updated on industry trends and emerging technologies to enhance IAM solutions
What we offer
What we offer
  • medical, vision, dental, and life and disability insurance
  • eligible to enroll in our company 401(k) plan
Read More
Arrow Right

Identity & Access Management Engineer

We’re looking for an Identity & Access Management Engineer to design, implement,...
Location
Location
United States , Jacksonville
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • IAM platforms such as Okta, Azure AD, PingFederate, PingID, or similar
  • Strong understanding of authentication protocols (SAML, OAuth, OIDC)
  • Experience with Active Directory / Azure AD
  • Familiarity with cloud environments (AWS or Azure)
  • Experience supporting audit and compliance efforts
Job Responsibility
Job Responsibility
  • Design and support SSO and MFA solutions across internal and external applications
  • Implement and manage identity federation (SAML, OAuth2, OIDC)
  • Integrate IAM platforms with SaaS, cloud, and on‑prem applications
  • Manage user lifecycle provisioning/deprovisioning
  • Conduct access reviews, entitlement audits, and policy enforcement
  • Support compliance initiatives (SOC 2, HIPAA, SOX, etc.)
  • Troubleshoot authentication, authorization, and access issues
  • Collaborate with security teams on zero‑trust and least‑privilege initiatives
What we offer
What we offer
  • medical, vision, dental, and life and disability insurance
  • eligible to enroll in our company 401(k) plan
  • free online training
Read More
Arrow Right

Senior Customer Identity and Access Management Engineer

Are you passionate about securing digital identities and creating seamless user ...
Location
Location
Ireland , Dublin 2
Salary
Salary:
Not provided
bentley.com Logo
Bentley Systems
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • A minimum of 5 years of hands-on experience with the Ping Identity suite
  • Thorough understanding of Identity and Access Management (IAM) for both enterprise and customer-facing applications
  • Strong coding and scripting abilities (Java & TypeScript are preferred)
  • In-depth knowledge of OAuth, OIDC, and SAML
  • Knowledge of System for Cross-domain Identity Management (SCIM)
  • Experience with API configuration and deployment
  • Strong experience with Linux environments (navigating, tuning, etc.)
  • Excellent problem-solving and communication skills
Job Responsibility
Job Responsibility
  • Lead the management and administration of the full Ping Identity suite, including Ping Federate, Ping Access, Ping Directory, Ping Data Proxy, Ping Data Sync, and Ping Authorize
  • Architect and manage common Ping Components, such as IdP & SP adapters, selectors, authentication policies, and more
  • Deploy, configure, and troubleshoot modern authentication protocols, including OAuth, OIDC, and SAML, ensuring compliance with industry standards
  • Strengthen security by configuring and deploying Multi-Factor Authentication (MFA) solutions
  • Oversee the entire lifecycle of digital certificates
  • Develop and maintain clean, efficient, and well-documented code and scripts, with a preference for Java & TypeScript
  • Configure and deploy APIs to extend and integrate our CIAM solutions
  • Thrive in a DevOps model, contributing to our CI/CD pipelines and automation efforts
  • Operate within our cloud-based infrastructure, with a preference for AWS
  • Manage and maintain containerized environments
What we offer
What we offer
  • A great Team and culture
  • An exciting career as an integral part of a world-leading software company
  • An attractive salary and benefits package
  • A commitment to inclusion, belonging, and colleague well-being through global initiatives and resource groups
  • A company committed to making a real difference by advancing the world’s infrastructure for a better quality of life
Read More
Arrow Right