CrawlJobs Logo

Identity Governance and Privileged User Engineer

avaloq.com Logo

Avaloq

Location Icon

Location:
Switzerland , Bioggio

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

Not provided
Save Job
Save Icon
Apply Position

Job Description:

Join the IAM team to manage privileged access and identity governance. Work with One Identity Safeguard and One Identity Manager to secure accounts, support JML processes, and integrate applications.

Job Responsibility:

  • Operate and maintain One Identity Safeguard
  • Manage credential policies, password rotation, and integrations
  • Onboard systems and accounts into PAM
  • Monitor platform health and troubleshoot issues
  • Support JML processes with One Identity Manager
  • Maintain workflows, mappings, and job server operations
  • Integrate new applications and validate access assignments
  • Maintain SOPs, runbooks, and audit-compliant records
  • Manage IAM components on Windows/Linux
  • Perform patching, hardening, and monitoring
  • Provide L2/L3 support for IAM and directory services
  • Automate with Terraform and Ansible
  • Develop PowerShell scripts
  • Use SQL for troubleshooting

Requirements:

  • Degree in IT or a related field
  • 2–3 years of experience in PAM/IGA roles
  • Hands-on experience with One Identity Safeguard or similar tools (e.g., CyberArk, BeyondTrust, Delinea)
  • Strong Windows and Linux engineering skills
  • Solid knowledge of AD, Azure AD/Entra ID, LDAP, and authentication protocols
  • Proficiency in Terraform, Ansible, and PowerShell
  • SQL knowledge preferred
  • Strong documentation skills and a compliance-focused mindset
  • Fluent in English
  • German or French is a plus

Nice to have:

German or French is a plus

What we offer:
  • Annual bonus
  • Flexible working
  • Instant recognition scheme
  • Access to Udemy for professional and personal learning

Additional Information:

Job Posted:
January 16, 2026

Employment Type:
Fulltime
Work Type:
Hybrid work
Icon
Avaloq - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Identity Governance and Privileged User Engineer

Identity Governance and Privileged User Engineer

Join the IAM team to manage privileged access and identity governance. Work with...
Location
Location
Switzerland , Bioggio
Salary
Salary:
Not provided
avaloq.com Logo
Avaloq
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Degree in IT or a related field
  • 2–3 years of experience in PAM/IGA roles
  • Hands-on experience with One Identity Safeguard or similar tools (e.g., CyberArk, BeyondTrust, Delinea)
  • Strong Windows and Linux engineering skills
  • Solid knowledge of AD, Azure AD/Entra ID, LDAP, and authentication protocols
  • Proficiency in Terraform, Ansible, and PowerShell
  • SQL knowledge preferred
  • Strong documentation skills and a compliance-focused mindset
  • Fluent in English
Job Responsibility
Job Responsibility
  • Operate and maintain One Identity Safeguard
  • Manage credential policies, password rotation, and integrations
  • Onboard systems and accounts into PAM
  • Monitor platform health and troubleshoot issues
  • Support JML processes with One Identity Manager
  • Maintain workflows, mappings, and job server operations
  • Integrate new applications and validate access assignments
  • Maintain SOPs, runbooks, and audit-compliant records
  • Manage IAM components on Windows/Linux
  • Perform patching, hardening, and monitoring
What we offer
What we offer
  • Annual bonus
  • Flexible working
  • Instant recognition scheme
  • Access to Udemy for professional and personal learning
  • Fulltime
Read More
Arrow Right

IT Cyber Security Engineer

We are seeking a security-minded Identity & Endpoint Security Engineer to join o...
Location
Location
India
Salary
Salary:
Not provided
uk.alterahealth.com Logo
Altera Digital Health Inc. UK
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Information Security, IT, or related field (or equivalent experience)
  • 10+ years of experience in IT security or systems engineering with focus on identity and device security
  • Proven experience supporting hybrid identity environments (Azure AD + on-prem AD)
  • Basic scripting and automation experience (PowerShell preferred)
  • Understanding of authentication, identity federation, access governance, and secure configuration baselines
  • Familiarity with Zero Trust, least privilege, and identity protection models
  • Knowledge of Microsoft Intune, Conditional Access, and App Protection Policies
  • Experience using Microsoft Graph API for automation or reporting
  • Ability to troubleshoot identity or compliance issues across hybrid environments
Job Responsibility
Job Responsibility
  • Administer and secure Microsoft 365 services including Exchange Online, SharePoint, Teams, and OneDrive
  • Manage user identities, access, roles, and licenses across Microsoft Entra ID, Active Directory, and Microsoft 365
  • Monitor and enforce Conditional Access, MFA, App Protection Policies, and Privileged Identity Management (PIM)
  • Configure and maintain hybrid identity synchronization (Azure AD Connect or cloud sync)
  • Support Zero Trust and least-privilege access models across hybrid identity environments
  • Automate user provisioning, access audits, and compliance reporting using PowerShell
  • Maintain endpoint security posture for Windows and macOS devices using Microsoft Intune and Mosyle
  • Manage mobile device compliance using Intune MDM (iOS/Android), focusing on app protection and data loss prevention
  • Utilize Microsoft Graph API for automation, auditing, and identity governance tasks
  • Assist with security incident response, audit preparation, and compliance verification
  • Fulltime
Read More
Arrow Right
New

Specialist IS Security Engineer – Identity Management

Join our team at AMGEN Capability Center Portugal, the #1 company in Best Workpl...
Location
Location
Portugal , Lisbon
Salary
Salary:
Not provided
amgen.com Logo
Amgen
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Master’s degree and 4 years of Information Systems or Information Security experience
  • Bachelor’s degree and 6 years of Information Systems or Information Security experience
  • Associate’s degree and 8 years of Information Systems or Information Security experience
  • Strong experience with identity and access management (IAM) and identity security solutions
  • Hands-on experience integrating SailPoint with enterprise applications (on-prem and cloud)
  • Solid understanding of identity governance concepts, including RBAC, access certifications, least privilege, and user lifecycle management
  • Proficiency with identity platforms such as SailPoint, Okta, Azure AD / Entra ID
  • Knowledge of authentication and provisioning protocols (SCIM, SAML, OAuth, OpenID Connect)
  • Experience working with APIs and secure integration patterns
  • Strong understanding of directory services (LDAP, Active Directory)
Job Responsibility
Job Responsibility
  • Design, implement, administer, and maintain security controls for Amgen’s identity and access management ecosystem, including provisioning, authentication, and authorization systems
  • Engineer and support secure identity provisioning solutions aligned with IAM and RBAC frameworks across on-premises and cloud environments
  • Serve as a security engineering lead for IdM and access-related initiatives, ensuring solutions meet security architecture standards, governance requirements, and regulatory expectations
  • Conduct security reviews, threat modeling, and risk assessments for identity-related systems and integrations
  • Partner with project and application teams to embed security best practices into system designs, configurations, and deployments
  • Monitor security, operational, and performance metrics for managed systems
  • develop KPIs to track security posture, availability, and growth trends
  • Support incident response activities related to identity, access, and authentication issues, including investigation, containment, remediation, and documentation
  • Develop and maintain security documentation, including system security designs, operational procedures, incident response playbooks, and access control policies
  • Evaluate emerging security tools, technologies, and industry trends to continuously improve identity and access security capabilities
What we offer
What we offer
  • Work That Matters – Build tech that accelerates scientific breakthroughs and helps patients worldwide
  • Modern Tech Stack – Cloud-first, automation-focused, AI-powered
  • Global Scale, Agile Mindset – Collaborate across continents while working in nimble, high-impact teams
  • Continuous Learning – Access to certifications, trainings, mentorship, and career mobility
  • AMGEN Total Rewards Plan – Comprehensive benefits in healthcare, finance, and well-being
  • Flexibility – Hybrid work model with time split between our Lisbon office and remote work
  • Fulltime
Read More
Arrow Right

IAM Security Engineer

Truveta is the world’s first health provider led data platform with a vision of ...
Location
Location
United States , Seattle; Bellevue
Salary
Salary:
128000.00 - 155000.00 USD / Year
truveta.com Logo
Truveta
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree or equivalent in Computer Science, Information Security, or Information Systems
  • 3-5 years of hands-on experience in an Identity and Access Management (IAM) role with a strong focus on Azure environments
  • Strong understanding of Azure Entra ID (Azure Active Directory), including Conditional Access, MFA, Identity Governance, PIM, directory services, and RBAC
  • Experience supporting SSO integrations and identity protocols such as SAML, OAuth 2.0, OpenID Connect, and SCIM provisioning
  • Ability to analyze and improve access models, workflows, and entitlements, applying least privilege and zero-trust principles
  • Proficiency with PowerShell or similar scripting tools to automate IAM tasks
  • Experience monitoring for identity-related threats, anomalous login behavior, and misconfigurations in cloud IAM environments
  • Working knowledge of IT/security governance and compliance frameworks (e.g., SOC 2, ISO 27001, NIST) and experience supporting audits or access reviews
  • Strong troubleshooting and diagnostic skills for identity issues involving authentication, authorization, directory sync, and permissions
  • Excellent written and verbal communication skills, including the ability to work cross-functionally with engineering, IT, and security teams
Job Responsibility
Job Responsibility
  • Identity Lifecycle & Access Management: Manage and improve provisioning, de-provisioning, and modification processes for user accounts and service principals across cloud and enterprise systems
  • Conduct access reviews, entitlement cleanups, and role evaluations to ensure least-privilege access
  • Identify gaps in lifecycle processes and recommend enhancements or workflow automation opportunities
  • Access Requests & Role Governance: Process and validate access requests, ensuring alignment with RBAC models, security policies, and job function requirements
  • Contribute to the development and refinement of RBAC roles, access policies, and approval workflows
  • Partner with stakeholders to analyze access patterns and propose more efficient and secure role structures
  • Application Integration & IAM Enablement: Support onboarding applications into IAM systems, including SSO configuration, SCIM provisioning, OAuth app integration, and secure authentication setup
  • Work with application and engineering teams to ensure proper identity integration and consistent enforcement of IAM standards
  • Assist with evaluating and implementing new IAM tools or capabilities as the organization evolves
  • Security Controls & Identity Governance: Implement and support IAM security controls such as MFA, Conditional Access policies, PIM, and identity governance features
What we offer
What we offer
  • Interesting and meaningful work for every career stage
  • Comprehensive benefits with strong medical, dental and vision insurance plans
  • 401K plan
  • Professional development & training opportunities for continuous learning
  • Work/life autonomy via flexible work hours and flexible paid time off
  • Generous parental leave
  • Regular team activities (virtual and in-person)
  • Additional compensation such as incentive pay and stock options for certain roles.
  • Fulltime
Read More
Arrow Right

IAM Solutions Architect

Join a leading organization dedicated to empowering individuals and businesses t...
Location
Location
United States , Southlake, Austin
Salary
Salary:
72.30 - 80.33 USD / Hour
aquent.com Logo
Aquent
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Computer Science, Computer Information Systems, Management Information Systems, or a related technical field
  • A minimum of 10 years of experience in information security, with at least 5 years specifically focused on Identity and Access Management (IAM)
  • At least 3 years of experience in an enterprise-level architecture role, with a direct focus on IAM technologies and strategy
  • Demonstrated deep knowledge of critical IAM domains, including authentication and authorization, Single Sign-On (SSO), Identity Governance and Administration (IGA), Directory Services, Federation Services, and Privileged Access Management (PAM)
  • Proven ability to define robust IAM architectures and develop strategic roadmaps
  • Strong background in aligning IAM strategy with enterprise security policies and overarching business objectives
Job Responsibility
Job Responsibility
  • Architect and establish comprehensive strategies for managing the identity lifecycle, including user authentication and authorization across both on-premise and cloud environments
  • Define, document, and maintain reference architectures, technology standards, processes, and policies for core identity solutions
  • Seamlessly integrate new identity solutions into existing infrastructure, ensuring compatibility and optimal performance
  • Provide expert leadership and direction for technical infrastructure support, including on-call support and resolution of escalated trouble tickets, and lead the resolution of key implementation and system integration challenges
  • Leverage deep understanding of federation concepts and technologies, including SAML, OAuth, and OIDC, to design advanced identity solutions
  • Design and engineer sophisticated identity and access management solutions within leading cloud platforms, including Azure and AWS, and potentially other cloud providers
  • Lead Proof of Concepts (POCs) and develop tactical and strategic solution roadmaps for identity initiatives
  • Collaborate effectively with product vendors and internal governance teams, presenting and demonstrating application solutions to diverse stakeholders
  • Guide the deployment of directory services infrastructure, ensuring adherence to best practices, robust security architecture, and resilience against vulnerabilities
What we offer
What we offer
  • subsidized health, vision, and dental plans, paid sick leave, and retirement plans with a match
Read More
Arrow Right

Lead IT Systems Engineer

dbt Labs is seeking a strategic and hands-on Lead IT Systems Engineer to join ou...
Location
Location
India
Salary
Salary:
Not provided
getdbt.com Logo
dbt Labs
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6+ years of experience in enterprise systems engineering, with demonstrated success in technical leadership, architectural decision-making, and team direction
  • Proven ability to establish technical vision and roadmaps for identity management systems, particularly with Okta Identity Engine and Okta Workflows
  • Experience designing and implementing secure access frameworks using Teleport, with emphasis on architecture planning, governance models, and security principles
  • Strategic expertise in multi-cloud infrastructure (AWS, GCP, Azure) with focus on architectural decisions, resource planning, and security integration
  • Hands-on experience with Infrastructure as Code tools such as Terraform, Pulumi, AWS CloudFormation, Azure Bicep, or Google Cloud Deployment Manager, including managing Okta via the Terraform and CI-driven change management
  • Track record of successful collaboration with engineering leadership to align infrastructure strategy with organizational objectives
  • Leadership experience in SaaS platform integration and strategy (Google Workspace, Slack, Zoom, Notion, Jamf)
  • Ability to design endpoint management strategies for MacOS environments that balance security requirements with user experience
  • Technical leadership in automation development, including code review, architectural guidance, and API integration strategy
  • Experience developing and implementing DLP frameworks, governance policies, and enterprise security strategies
Job Responsibility
Job Responsibility
  • Provide technical leadership and mentorship to a team of systems engineers—setting technical direction, reviewing work, and developing team members’ technical skillsets
  • Architect and maintain identity systems using Okta Identity Engine and Okta Workflows. Implement and manage secure infrastructure access using Teleport, including JIT access, least privilege, and RBAC
  • Administer and automate enterprise SaaS platforms such as Google Workspace, Slack, Zoom, Notion, and Jamf
  • Manage endpoint provisioning and compliance for a MacOS-first environment
  • Build automated workflows for user and system lifecycle management using scripting and APIs (e.g., Python, Bash)
  • Provision and manage cloud infrastructure resources (in AWS, GCP, and Azure) in support of internal tooling and engineering projects
  • Define and manage infrastructure as code using Terraform or similar tools (for example, Pulumi, AWS CloudFormation, Azure Bicep, or Google Cloud Deployment Manager) to provision, secure, and govern cloud resources and identity integrations, including Okta (for example, with the Okta Terraform provider and CI-driven change management)
  • Collaborate with engineering and platform teams to ensure timely, secure access to cloud resources for development and infrastructure needs
  • Enhance and manage DLP tooling and access governance across collaboration and productivity platforms
  • Support and lead incident management processes for those related to access or enterprise tooling
Read More
Arrow Right

Senior Security Engineer

The Senior Security Engineer will provide hands-on technical leadership within t...
Location
Location
United Kingdom , Leeds; Thame
Salary
Salary:
65000.00 - 75000.00 GBP / Year
pexa.co.uk Logo
PEXA UK
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proactive, can-do attitude to get things done quickly and efficiently
  • Strong collaboration and communication skills
  • Willingness to contribute ideas to the security programme
  • Demonstratable first-hand experience in achieving organisational adherence to security best practices
  • Experience in the practical protection of a remote working laptop estate and SaaS cloud solutions
  • Experience in identity and access management solutions
  • Experience in device business automation and updates
  • Experience in the security aspects of cloud web application hosting and defence measures like WAF
Job Responsibility
Job Responsibility
  • Maintenance and Operational Security: Ensure all security solutions remain operationally effective
  • Ensure technical teams timely patch applications, systems, software, and hardware
  • Maintain and audit secure configurations for devices, applications, and cloud environments
  • Access Control and Identity Management: Conduct regular user and privileged account reviews
  • Manage and monitor Privileged Identity Management (PIM) profiles and elevated access accounts
  • Coordinate with IT and HR for onboarding/offboarding
  • Tool, Infrastructure, and Encryption Management: Maintain and optimise security infrastructure and tools
  • Oversee encryption key and certificate management
  • Work with vendors and internal teams to ensure tools remain current
  • VPN, Network & Firewall Security: Design, configure, and maintain secure VPN and Zero-Trust network solutions
What we offer
What we offer
  • Your growth: We encourage you to hit your personal and professional learning and development goals with our tailored programs and tools
  • Your wellness: We care about your holistic wellbeing
  • Your work/life blend: We want to help you create your ideal work/life blend
  • Fulltime
Read More
Arrow Right

Senior System Security and Information Assurance Engineer

The Senior PAM Engineer will play a critical role within Line of Effort 2, respo...
Location
Location
United States , Tampa
Salary
Salary:
Not provided
barbaricum.com Logo
Barbaricum
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Active DoD Top Secret clearance with SCI eligibility
  • Master’s degree (MA/MS) in Cybersecurity, Information Technology, Computer Science, Engineering, or related field
  • 10+ years of professional experience in cybersecurity, systems engineering, or information assurance
  • Meets Cyber Engineer – Senior labor category requirements, including independent execution of all functional duties and support to mission-critical program elements
  • DoD 8570 IAT Level II certification or higher (e.g., Security+ CE, CCNA Security)
  • Deep expertise in Privileged Access Management (PAM) architectures and Zero Standing Privilege concepts
  • Hands-on experience implementing Just-In-Time (JIT) access workflows
  • Experience integrating PAM solutions with Active Directory, SIEM platforms (Splunk), and Identity Governance (IGA) tools
  • Experience producing technical documentation to support RMF and ATO processes (LLDs, SSPs, SOPs)
  • Ability to lead or oversee the efforts of less senior staff as required by program needs
Job Responsibility
Job Responsibility
  • Lead the installation, configuration, and technical implementation of an enterprise Privileged Access Management (PAM) solution (Delinea-focused) across multiple network enclaves
  • Discover, inventory, and onboard privileged user, administrator, and service accounts into a secure credential vault
  • Design and enforce policies for Just-In-Time (JIT) access, session monitoring, and session recording to achieve zero standing privileges
  • Develop scripts and API-based integrations between the PAM solution, Splunk SIEM, and Identity Governance (IGA) platforms
  • Support RMF accreditation activities by developing Low-Level Design (LLD) documents, System Security Plans (SSPs), and Standard Operating Procedures (SOPs)
  • Support Authority to Operate (ATO) efforts through security control implementation and technical validation
  • Lead enterprise rollout of PAM policies from pilot groups to full operational enforcement
  • Collaborate with Zero Trust architects, identity teams, and cyber engineers to ensure alignment with enterprise security architecture
Read More
Arrow Right
Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Germany Jobs Ireland Jobs Poland Jobs
Company
Blog About Us Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
CrawlJobs Group
ITFlashcards AllDevBlogs
© 2026 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy