CrawlJobs Logo

Identity Governance and Privileged User Engineer

avaloq.com Logo

Avaloq

Location Icon

Location:
Switzerland , Bioggio

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

Not provided
Save Job
Save Icon
Apply Position

Job Description:

Join the IAM team to manage privileged access and identity governance. Work with One Identity Safeguard and One Identity Manager to secure accounts, support JML processes, and integrate applications.

Job Responsibility:

  • Operate and maintain One Identity Safeguard
  • Manage credential policies, password rotation, and integrations
  • Onboard systems and accounts into PAM
  • Monitor platform health and troubleshoot issues
  • Support JML processes with One Identity Manager
  • Maintain workflows, mappings, and job server operations
  • Integrate new applications and validate access assignments
  • Maintain SOPs, runbooks, and audit-compliant records
  • Manage IAM components on Windows/Linux
  • Perform patching, hardening, and monitoring
  • Provide L2/L3 support for IAM and directory services
  • Automate with Terraform and Ansible
  • Develop PowerShell scripts
  • use SQL for troubleshooting

Requirements:

  • Degree in IT or a related field
  • 2–3 years of experience in PAM/IGA roles
  • Hands-on experience with One Identity Safeguard or similar tools (e.g., CyberArk, BeyondTrust, Delinea)
  • Strong Windows and Linux engineering skills
  • Solid knowledge of AD, Azure AD/Entra ID, LDAP, and authentication protocols
  • Proficiency in Terraform, Ansible, and PowerShell
  • SQL knowledge preferred
  • Strong documentation skills and a compliance-focused mindset
  • Fluent in English

Nice to have:

German or French is a plus

What we offer:
  • Annual bonus
  • Flexible working
  • Instant recognition scheme
  • Access to Udemy for professional and personal learning

Additional Information:

Job Posted:
December 23, 2025

Employment Type:
Fulltime
Work Type:
Hybrid work
Icon
Avaloq - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Identity Governance and Privileged User Engineer

Engineer, Identity and Access Management

As an Identity Engineer, you will be responsible for the design, implementation,...
Location
Location
United States
Salary
Salary:
66379.50 USD / Year
stridelearning.com Logo
Stride, Inc.
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Five (5+) years of experience in identity & access management, user administration, or security compliance
  • Documented experience and a solid understanding of identity lifecycle management, credential management, role-based access, and identity governance
  • Demonstrable experience with identity management & administration tools and practices
  • Prior in-depth expertise with Active Directory, Entra ID, and SailPoint Identity Security Cloud required
  • Hands-on experience with Privileged Identity Management systems required
  • In-depth understanding of leading-edge identity governance - enabling technologies & practices
  • Strong demonstrated ability to gain consensus and support across diverse functions and departments
  • Excellent communication and presentation skills (verbal and written)
  • Experienced guiding stakeholders with risk-based decision-making
  • Ability to identify, document, and communicate information security issues to business and information owners
Job Responsibility
Job Responsibility
  • Design, implement, and maintain Stride’s Identity Governance, Management, Privileged Access Management technologies and Access technologies
  • Enforce company policies and procedures related to IAM, IGA, and PAM
  • Update and maintain policies, standards, and procedures as needed
  • Work with other IT team members to ensure seamless integrations into the overall IT infrastructure
  • Develop architecture diagrams, process workflows, and technical documentation for identity governance frameworks
  • Design and implement API integrations to enhance automation and system interoperability
  • Work with DevOps and engineering teams to integrate IAM capabilities into cloud and hybrid environments
  • Troubleshoot IAM & IGA issues and develop creative solutions to solve problems
  • Implement IGA & IAM controls & support IT IAM Controls testing (SOX and non-SOX)
  • Create detailed technical documentation and architecture diagrams to support IAM and PAM initiatives
What we offer
What we offer
  • Health benefits
  • Retirement contributions
  • Paid time off
  • Eligible employees may receive a bonus
  • Fulltime
Read More
Arrow Right

Senior Cyber Security Engineer II-Identity Governance

The Sr. Cyber Security Engineer II – Identity Governance is a pivotal role respo...
Location
Location
United States , Framingham
Salary
Salary:
139000.00 - 191000.00 USD / Year
staplespromo.com Logo
Staples Promotional Products
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Cybersecurity, Computer Science, or a related field or equivalent work experience
  • 10 or more years of progressively complex experience in cybersecurity
  • Proven experience with cybersecurity frameworks (e.g., NIST, ISO 27001)
  • Hands-on experience with security systems, including firewalls, intrusion detection systems, anti-virus software, authentication systems, log management, and content filtering
  • Knowledge of network protocols and data encryption methods
  • Hands-on experience supporting Active Directory in an enterprise environment
  • Practical experience with identity and access management concepts including: user lifecycle provisioning, entitlement management, role-based access control (RBAC)
  • Experience building or supporting application integrations with an IGA platform
  • Experience supporting SSO and authentication integrations
  • Working knowledge of conditional access and modern authentication controls
Job Responsibility
Job Responsibility
  • Engineer, maintain, and secure Active Directory components including domains, OUs, group structures, service accounts, and delegated administration models
  • Support hybrid identity patterns integrating on‑premises Active Directory with cloud identity platforms
  • Partner with infrastructure and cloud teams to ensure directory services are resilient, monitored, and aligned to security best practices
  • Apply Zero Trust security concepts to identity systems, recognizing Active Directory and identity connectors as high‑risk control plane assets
  • Support privileged access separation, administrative role scoping, and least‑privilege enforcement across identity platforms
  • Participate in hardening initiatives to reduce privilege escalation paths and credential exposure within identity services
  • Implement and support SSO and federation integrations using industry‑standard protocols (SAML, OIDC, OAuth)
  • Assist in designing and maintaining conditional access policies based on user risk, role, device posture, and authentication context
  • Troubleshoot authentication and authorization issues across directories, identity providers, and integrated applications
  • Support joiner / mover / leaver lifecycle processes across Active Directory and downstream applications
What we offer
What we offer
  • Competitive base salary + bonus on eligible positions
  • 22 days plus 7 major holidays and 1 floating holiday
  • Company match 401(k) plan
  • Online and retail discounts
  • Physical and mental health wellness programs
  • Daycare, cafeteria, fitness center, and coffee shop at our HQ
  • Inclusive culture with associate-led Business Resource Groups
  • Fulltime
Read More
Arrow Right

Senior Software Engineer – Identity & Access Management (IAM)

Location
Location
United States
Salary
Salary:
Not provided
redhibbert.com Logo
Red Hibbert Group
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, IT, or related field
  • 7+ years of experience in Identity & Access Management or IT Security
  • Strong expertise in Azure Active Directory (Microsoft Entra ID)
  • Experience with Conditional Access, MFA, PIM, and Identity Protection
  • Experience with SSO protocols: SAML, OAuth 2.0, OpenID Connect
  • Familiarity with PowerShell scripting
  • Experience working in enterprise IT environments
  • Strong communication and collaboration skills
Job Responsibility
Job Responsibility
  • Lead enterprise-level Azure Active Directory (Microsoft Entra ID) operations
  • Design and manage Conditional Access policies, MFA, and passwordless authentication
  • Manage identity lifecycle (user, group, role provisioning and governance)
  • Implement Privileged Identity Management (PIM) and access governance
  • Support and troubleshoot SSO integrations (SAML, OAuth2, OpenID Connect)
  • Monitor identity security signals, risky sign-ins, and audit logs
  • Perform root cause analysis for IAM-related incidents
  • Collaborate with security, DevOps, and application teams
  • Mentor junior engineers and define operational best practices
  • Maintain documentation, SOPs, SLAs, and KPIs
  • Fulltime
Read More
Arrow Right
New

Information Security Engineer

The Information Security Engineer is responsible for designing, implementing, an...
Location
Location
Türkiye , Istanbul
Salary
Salary:
Not provided
5CA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 4+ years of experience in information security engineering, cloud security, or infrastructure security roles
  • Hands-on experience implementing security controls in Azure and Microsoft 365 ecosystems
  • Experience with Defender for Endpoint, Defender for Cloud, Defender for Identity, and Sentinel
  • Experience with secure cloud networking, identity governance, and Zero Trust principles
  • Experience supporting complex incident response investigations
  • Familiarity with ITIL processes (incident, change, problem)
  • Understanding of security frameworks (i.e. ISO 27001:2022) and data privacy regulations (i.e. GDPR)
  • Azure security architecture, governance, and configuration
  • Advanced Entra ID identity governance and access control
  • Endpoint and cloud threat detection (Defender suite)
Job Responsibility
Job Responsibility
  • Design, implement, and maintain security controls across Azure, Entra ID, Microsoft 365, network, and endpoint environments
  • Develop and maintain secure configurations, baselines, and policy frameworks using Azure Policy, Intune compliance, and conditional access
  • Integrate and optimize security tools including Microsoft Defender suite, SIEM/SOAR platforms, cloud security posture management, and identity governance systems
  • Support the design and review of cloud architectures, including secure VNet design, firewalls/NSGs, Private Link, and hybrid connectivity
  • Implement key cloud security protections such as encryption, identity governance, privileged access control, and secure automation frameworks
  • Partner with Cloud Engineers to codify security controls using Infrastructure-as-Code (IaC)
  • Implement and manage identity governance: MFA, Conditional Access, PIM, RBAC, role lifecycle automation
  • Review, assess, and refine authentication and access control configurations
  • Conduct periodic privileged access audits and align identity practices with Zero Trust principles
  • Tune and enhance SIEM/Sentinel detections, automation, and response playbooks
What we offer
What we offer
  • Flexibility to work 100% remotely with no wasted commute time and travel costs
  • Position at a fast-paced international company with ambitious gaming, e-commerce, and tech clients
  • Diverse and inclusive culture with people from 80+ countries, speaking 25+ languages
  • Innovative digital tools, and continuous opportunities for learning and development
  • Access to Udemy Business for learning and development
  • Fun employee engagement activities and participation in 5CA employee-lead communities such as 5CA Connect, Pride, 5CA Gamers, Women of 5CA
  • Fulltime
Read More
Arrow Right
New

Information Security Engineer

The Information Security Engineer is responsible for designing, implementing, an...
Location
Location
South Africa
Salary
Salary:
Not provided
5CA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 4+ years of experience in information security engineering, cloud security, or infrastructure security roles
  • Hands-on experience implementing security controls in Azure and Microsoft 365 ecosystems
  • Experience with Defender for Endpoint, Defender for Cloud, Defender for Identity, and Sentinel
  • Experience with secure cloud networking, identity governance, and Zero Trust principles
  • Experience supporting complex incident response investigations
  • Familiarity with ITIL processes (incident, change, problem)
  • Understanding of security frameworks (i.e. ISO 27001:2022) and data privacy regulations (i.e. GDPR)
  • Azure security architecture, governance, and configuration
  • Advanced Entra ID identity governance and access control
  • Endpoint and cloud threat detection (Defender suite)
Job Responsibility
Job Responsibility
  • Design, implement, and maintain security controls across Azure, Entra ID, Microsoft 365, network, and endpoint environments
  • Develop and maintain secure configurations, baselines, and policy frameworks using Azure Policy, Intune compliance, and conditional access
  • Integrate and optimize security tools including Microsoft Defender suite, SIEM/SOAR platforms, cloud security posture management, and identity governance systems
  • Support the design and review of cloud architectures, including secure VNet design, firewalls/NSGs, Private Link, and hybrid connectivity
  • Implement key cloud security protections such as encryption, identity governance, privileged access control, and secure automation frameworks
  • Partner with Cloud Engineers to codify security controls using Infrastructure-as-Code (IaC)
  • Implement and manage identity governance: MFA, Conditional Access, PIM, RBAC, role lifecycle automation
  • Review, assess, and refine authentication and access control configurations
  • Conduct periodic privileged access audits and align identity practices with Zero Trust principles
  • Tune and enhance SIEM/Sentinel detections, automation, and response playbooks
What we offer
What we offer
  • The flexibility to work 100% remotely with no wasted commute time and travel costs
  • A position at a fast-paced international company with ambitious gaming, e-commerce, and tech clients
  • A diverse and inclusive culture with people from 80+ countries, speaking 25+ languages
  • Innovative digital tools, and continuous opportunities for learning and development
  • Access to Udemy Business for learning and development
  • Fun employee engagement activities and participation in 5CA employee-lead communities
  • Fulltime
Read More
Arrow Right
New

Information Security Engineer

The Information Security Engineer is responsible for designing, implementing, an...
Location
Location
Serbia , Belgrade
Salary
Salary:
Not provided
5CA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 4+ years of experience in information security engineering, cloud security, or infrastructure security roles
  • Hands-on experience implementing security controls in Azure and Microsoft 365 ecosystems
  • Experience with Defender for Endpoint, Defender for Cloud, Defender for Identity, and Sentinel
  • Experience with secure cloud networking, identity governance, and Zero Trust principles
  • Experience supporting complex incident response investigations
  • Familiarity with ITIL processes (incident, change, problem)
  • Understanding of security frameworks (i.e. ISO 27001:2022) and data privacy regulations (i.e. GDPR)
  • Azure security architecture, governance, and configuration
  • Advanced Entra ID identity governance and access control
  • Endpoint and cloud threat detection (Defender suite)
Job Responsibility
Job Responsibility
  • Design, implement, and maintain security controls across Azure, Entra ID, Microsoft 365, network, and endpoint environments
  • Develop and maintain secure configurations, baselines, and policy frameworks using Azure Policy, Intune compliance, and conditional access
  • Integrate and optimize security tools including Microsoft Defender suite, SIEM/SOAR platforms, cloud security posture management, and identity governance systems
  • Support the design and review of cloud architectures, including secure VNet design, firewalls/NSGs, Private Link, and hybrid connectivity
  • Implement key cloud security protections such as encryption, identity governance, privileged access control, and secure automation frameworks
  • Partner with Cloud Engineers to codify security controls using Infrastructure-as-Code (IaC)
  • Implement and manage identity governance: MFA, Conditional Access, PIM, RBAC, role lifecycle automation
  • Review, assess, and refine authentication and access control configurations
  • Conduct periodic privileged access audits and align identity practices with Zero Trust principles
  • Tune and enhance SIEM/Sentinel detections, automation, and response playbooks
What we offer
What we offer
  • Flexibility to work 100% remotely
  • Position at a fast-paced international company with ambitious gaming, e-commerce, and tech clients
  • Diverse and inclusive culture with people from 80+ countries, speaking 25+ languages
  • Innovative digital tools, and continuous opportunities for learning and development
  • Access to Udemy Business for learning and development
  • Fun employee engagement activities and participation in 5CA employee-lead communities
  • Fulltime
Read More
Arrow Right

Identity Governance and Privileged User Engineer

Join the IAM team to manage privileged access and identity governance. Work with...
Location
Location
Switzerland , Bioggio
Salary
Salary:
Not provided
avaloq.com Logo
Avaloq
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Degree in IT or a related field
  • 2–3 years of experience in PAM/IGA roles
  • Hands-on experience with One Identity Safeguard or similar tools (e.g., CyberArk, BeyondTrust, Delinea)
  • Strong Windows and Linux engineering skills
  • Solid knowledge of AD, Azure AD/Entra ID, LDAP, and authentication protocols
  • Proficiency in Terraform, Ansible, and PowerShell
  • SQL knowledge preferred
  • Strong documentation skills and a compliance-focused mindset
  • Fluent in English
  • German or French is a plus
Job Responsibility
Job Responsibility
  • Operate and maintain One Identity Safeguard
  • Manage credential policies, password rotation, and integrations
  • Onboard systems and accounts into PAM
  • Monitor platform health and troubleshoot issues
  • Support JML processes with One Identity Manager
  • Maintain workflows, mappings, and job server operations
  • Integrate new applications and validate access assignments
  • Maintain SOPs, runbooks, and audit-compliant records
  • Manage IAM components on Windows/Linux
  • Perform patching, hardening, and monitoring
What we offer
What we offer
  • Annual bonus
  • Flexible working
  • Instant recognition scheme
  • Access to Udemy for professional and personal learning
  • Fulltime
Read More
Arrow Right

IAM Security Engineer – Identity Governance & Administration

We are seeking a Senior IAM Security Engineer specializing in Identity Governanc...
Location
Location
United States , Indianapolis
Salary
Salary:
40.00 - 48.00 USD / Hour
solomonpage.com Logo
Solomon Page
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Information Security, Computer Science, or related field (or equivalent experience)
  • Strong hands-on experience with IGA platforms such as SailPoint and/or Saviynt
  • Experience managing user, entitlement, privileged, and non-human identity certifications
  • Solid understanding of IAM concepts including: Least privilege and access governance, Role-Based Access Control (RBAC), Non-human identity management, Joiner / Mover / Leaver (JML) lifecycle
  • Experience supporting access governance audits and compliance activities
  • Strong Excel and documentation skills
  • Strong project coordination or project management experience
Job Responsibility
Job Responsibility
  • IGA Certification Lifecycle Execution
  • Own the end-to-end lifecycle of access certifications, including design, configuration, launch, monitoring, escalation, closure, and documentation
  • Configure and manage certifications within SailPoint and Saviynt
  • Define certification parameters including scope, reviewers, schedules, escalation rules, and completion criteria
  • Monitor certification campaigns daily and manage reviewer follow-ups, escalations, and overdue items
  • Post-Certification Remediation & Follow-Through
  • Manage all post-certification remediation activities
  • Partner with IAM provisioning teams and application owners to ensure remediation activities are properly executed
  • Ensure certifications are closed with complete, audit-ready documentation and evidence
  • Audit Readiness & Governance
What we offer
What we offer
  • medical
  • dental
  • 401(k)
  • direct deposit
  • commuter benefits
  • Fulltime
Read More
Arrow Right