CrawlJobs Logo

Identity & Privileged Access Engineer

thisisiceberg.com Logo

Iceberg Cyber Security

Location Icon

Location:
United Kingdom , London

Category Icon
Category:
IT - Software Development

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

Not provided
Save Job
Save Icon
Apply Position

Job Description:

My client, a global trading firm is investing heavily in identity security and privileged access transformation as part of a wider cyber acceleration programme. They’re now hiring an Identity & Privileged Access Engineer to help modernise and secure authentication, privileged access, and identity management across the organisation.

Job Responsibility:

  • Securing privileged access pathways
  • Implementing and improving PAM controls
  • Managing Microsoft Entra ID and conditional access
  • Supporting phishing-resistant authentication initiatives
  • Automating identity and access workflows
  • Improving least-privilege and access governance controls

Requirements:

  • Hands-on technical security background
  • Experience in IAM, PAM, infrastructure security or cloud security
  • Exposure to scripting/automation
  • Understanding of privileged access and authentication security
  • Strong problem-solving and implementation mindset

Additional Information:

Job Posted:
May 11, 2026

Work Type:
On-site work
Icon
Iceberg Cyber Security - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Identity & Privileged Access Engineer

Identity and Access Management Engineer

Do you have experience designing and implementing Identity and Access Management...
Location
Location
Australia , Melbourne
Salary
Salary:
Not provided
easygo.io Logo
Easygo Gaming
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum 3-5 years hands-on experience administering and architecting enterprise Identity and Access Management systems, particularly Okta or similar IAM platforms
  • Advanced technical expertise with modern identity protocols and standards including OIDC (OpenID Connect), SAML, and SCIM implementations
  • Proven experience managing Google Workspace as an Identity Provider, including application integrations and access management
  • Demonstrated ability to design identity architectures that balance security requirements with user experience and operational efficiency
  • Track record of successfully evaluating, selecting, and implementing identity technologies in production environments
  • Experience configuring SSO integrations for SaaS and enterprise applications using federated identity protocols
  • Strong understanding of authentication mechanisms including Multi-Factor Authentication (MFA), passwordless authentication, and passkey technologies
  • Practical knowledge of authorization models, role-based access control (RBAC), and attribute-based access control (ABAC) concepts
Job Responsibility
Job Responsibility
  • Design and architect enterprise identity and access management solutions that scale across nearly 2,000 global employees while maintaining security and operational efficiency
  • Serve as the organization's IAM subject matter expert, providing authoritative guidance on identity technologies, standards, and best practices to stakeholders across IT, Security, and Development teams
  • Develop comprehensive identity architecture roadmaps to uplift and modernize access control systems across the organization, aligning with business growth and security requirements
  • Evaluate, procure, and implement identity tools and platforms to continuously enhance IAM capabilities and address evolving organizational needs
  • Manage and optimize Google Workspace as the primary Identity Provider, ensuring seamless integration with enterprise applications and services
  • Configure and maintain enterprise identity systems including Okta and related IAM platforms, implementing OIDC, SAML, and SCIM integrations for application access
  • Provide expert consultation to product and engineering teams on customer-facing authentication systems, advising on MFA implementation, passkey adoption, and secure authentication flows
  • Design and enforce access control policies and authorization frameworks in alignment with least privilege and zero trust principles
  • Lead identity-related projects from conception to deployment, managing stakeholder expectations and delivering measurable improvements to identity operations
  • Automate identity lifecycle management processes including provisioning, de-provisioning, and access recertification workflows
What we offer
What we offer
  • In-house baristas serving free coffee, tea, fresh juices, and smoothies
  • Daily catered breakfast and regular company-wide events
  • Snack walls and drink fridges on every floor
  • Fun /modern office spaces with pool tables, table tennis, gaming consoles, and an F1 simulator
  • Access to our Employee Assistance Program for you and your loved ones
  • 9,000+ courses on our Learning & Development platform
  • One paid volunteer day per year
  • Weekly Wednesday massages by professional masseuses
  • Team budgets for lunches and activities to celebrate achievements
  • Social sports teams and participation in Corporate Games
  • Fulltime
Read More
Arrow Right

Identity Governance and Privileged User Engineer

Join the IAM team to manage privileged access and identity governance. Work with...
Location
Location
Switzerland , Bioggio
Salary
Salary:
Not provided
avaloq.com Logo
Avaloq
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Degree in IT or a related field
  • 2–3 years of experience in PAM/IGA roles
  • Hands-on experience with One Identity Safeguard or similar tools (e.g., CyberArk, BeyondTrust, Delinea)
  • Strong Windows and Linux engineering skills
  • Solid knowledge of AD, Azure AD/Entra ID, LDAP, and authentication protocols
  • Proficiency in Terraform, Ansible, and PowerShell
  • SQL knowledge preferred
  • Strong documentation skills and a compliance-focused mindset
  • Fluent in English
Job Responsibility
Job Responsibility
  • Operate and maintain One Identity Safeguard
  • Manage credential policies, password rotation, and integrations
  • Onboard systems and accounts into PAM
  • Monitor platform health and troubleshoot issues
  • Support JML processes with One Identity Manager
  • Maintain workflows, mappings, and job server operations
  • Integrate new applications and validate access assignments
  • Maintain SOPs, runbooks, and audit-compliant records
  • Manage IAM components on Windows/Linux
  • Perform patching, hardening, and monitoring
What we offer
What we offer
  • Annual bonus
  • Flexible working
  • Instant recognition scheme
  • Access to Udemy for professional and personal learning
  • Fulltime
Read More
Arrow Right

IAM - Privileged Access Management Principal

Principal PAM Architect to lead the strategy, architecture, design, and implemen...
Location
Location
United States , Houston
Salary
Salary:
117500.00 - 270000.00 USD / Year
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or related field (or equivalent experience)
  • 8+ years in cybersecurity or IT with demonstrated hands-on PAM specific experience in enterprise-scale environments
  • Proven experience in architecture, design, and implementation of PAM solutions across large, complex enterprises
  • Deep technical expertise with CyberArk (Privileged Cloud and on-prem)
  • Strong knowledge of Zero Trust principles, JIT/JEA access models, and privileged identity lifecycle management
  • Experience integrating PAM with cloud platforms (Azure, AWS, GCP), DevOps pipelines, and enterprise IT ecosystems
  • Experience with secrets management platforms (CyberArk Conjur, HashiCorp Vault, AWS Secrets Manager, etc.)
  • Working knowledge of modern authentication standards (SAML, OIDC, FIDO2, MFA, passwordless)
  • Hands-on expertise with Windows, Linux, Active Directory, and cloud IAM models
  • Good understanding of the privilege access models of Active Directory, Azure/Entra ID, AWS and GCP
Job Responsibility
Job Responsibility
  • Define PAM strategy, roadmap, and reference architectures aligned to enterprise security and compliance requirements
  • Design and implement scalable PAM solutions for large, complex environments across on-prem, hybrid, and multi-cloud infrastructures
  • Incorporate Zero Trust, Just-in-Time (JIT), and Just Enough Access (JEA) models into PAM solutions
  • Lead the enterprise rollout and lifecycle management of CyberArk Privileged Cloud and related modules
  • Implement and manage privileged session monitoring, endpoint privilege management (EPM), and application-to-application password management
  • Drive integration of PAM with identity providers, SIEM/SOAR, ITSM, and DevOps pipelines
  • Establish and enforce policies for privileged access governance, auditing, and regulatory compliance
  • Conduct regular reviews of PAM controls to prevent credential theft, lateral movement, and unauthorized access
  • Act as the PAM subject matter expert (SME), advising executives, architects, and engineering teams on privileged access security
  • Mentor and guide engineering teams on PAM best practices and secure operations
What we offer
What we offer
  • Health & Wellbeing benefits
  • Personal & Professional Development programs
  • Unconditional Inclusion environment
  • Comprehensive benefits suite supporting physical, financial and emotional wellbeing
  • Fulltime
Read More
Arrow Right

ICAM Identity Engineer

We are seeking an ICAM Identity Engineer to provide hands-on technical expertise...
Location
Location
United States , Tampa
Salary
Salary:
Not provided
barbaricum.com Logo
Barbaricum
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Active TS/SCI Clearance
  • Demonstrated, hands-on expertise with at least one core ICAM platform (Microsoft Entra ID, enterprise PAM such as Delinea, or enterprise IGA such as SailPoint)
  • Strong understanding of identity security principles: least privilege, MFA, JIT/JEA, RBAC/ABAC
  • Experience with Active Directory administration and Group Policy management
  • Ability to design, implement, and troubleshoot complex enterprise security policies
  • DoD 8140 compliance at IAT Level II
Job Responsibility
Job Responsibility
  • Design and implement Microsoft Entra ID Conditional Access policies aligned with Zero Trust principles for Azure and AWS
  • Configure and maintain CAC/PKI-based Certificate Authentication and legacy ADFS environments
  • Manage Ping Federate as an enterprise federation gateway
  • onboard applications for SSO using SAML and OIDC
  • enforce phishing-resistant MFA
  • Onboard privileged user, service, and application accounts into Delinea
  • Implement policies for credential rotation, session recording, and privileged session monitoring
  • Develop and maintain Just-in-Time (JIT) and Just-Enough-Administration (JEA) workflows to reduce standing privileges
  • Configure SailPoint to automate Joiner-Mover-Leaver processes
  • Build and maintain enterprise access catalogs and automated approval workflows
Read More
Arrow Right

Sr. IAM Engineer (PAM)

The Senior Identity and Access Management (IAM) Engineer specializing in Privile...
Location
Location
India , Gurgaon
Salary
Salary:
1350000.00 INR / Year
realign-llc.com Logo
Realign
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Information Technology, or a related field
  • 5+ years of experience in Identity and Access Management, with a focus on Privileged Access Management
  • Strong knowledge of PAM solutions, such as CyberArk, BeyondTrust, or Thycotic
  • Experience with implementing IAM frameworks, such as RBAC, ABAC, and PBAC
  • Excellent communication and problem-solving skills
  • Ability to work collaboratively in a team environment
Job Responsibility
Job Responsibility
  • Design, implement, and maintain Privileged Access Management solutions to safeguard critical systems and data
  • Develop and enforce access controls, policies, and procedures to protect sensitive information
  • Collaborate with stakeholders to define and implement IAM strategies that align with business objectives
  • Monitor and analyze access logs and security incidents to detect and respond to threats in a timely manner
  • Automate identity lifecycle management processes to improve efficiency and compliance
  • Provide technical guidance and support to junior engineers and team members
  • Stay current on industry trends and emerging technologies in IAM and cybersecurity
  • Fulltime
Read More
Arrow Right

Identity Engineer - Privileged Access

We’re hiring an Identity Engineer – Privileged Access to play a hands-on, subjec...
Location
Location
Australia , Richmond
Salary
Salary:
Not provided
auspost.com.au Logo
Australia Post
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Hands-on Identity Engineering specialist with deep expertise in Privileged Access Management
  • Strong track record of delivering and supporting critical business services within medium to large enterprise environments
  • Extensive experience across CyberArk and supporting technologies, with CyberArk Privileged Cloud highly desirable
  • Recognised as a subject matter expert with demonstrated thought leadership
  • Successfully managed and governed PAM environments in line with security best practice
  • Strong technical depth across directory services and identity platforms, including LDAP, Active Directory and Entra
  • Comfortable operating in complex, multicloud environments, with AWS experience highly regarded
  • Proficient in scripting languages such as PowerShell, Python and Perl
  • Experienced working with modern engineering and delivery tooling including GitLab, CI/CD pipelines, Jira and enterprise testing platforms
  • Trusted partner who builds high value relationships across engineering, architecture, security and enablement teams
Job Responsibility
Job Responsibility
  • Play a hands-on, subject matter expert role in strengthening the security foundations of Australia Post
  • Accountable for designing, enhancing and supporting our Privileged Access Management (PAM) platform
  • Ensure the PAM platform operates reliably, securely and at scale to enable critical business services
  • Balance delivery and operations
  • Bring strong technical depth, a customer-first mindset and a focus on quality, stability and continuous improvement
  • Own and uplift our CyberArk Privileged Cloud PAM platform end-to-end
  • Responsible for the operation, enhancement and support of the privileged access management platform: CyberArk Privileged Cloud and the services that it supports including service management
  • Fulfill the 24×7 support obligation by participating equally in the on-call roster and duties
  • Demonstrate technical thought leadership in delivery and service optimisation keeping a continuous improvement mindset
  • Provide expert technical consulting to both mature the function in BAU and deliver robust work products for projects that align to design standards, patterns and identity strategy
What we offer
What we offer
  • Career Development opportunities
  • Work-Life Balance with flexible working arrangements
  • Employee Wellbeing resources and support
  • Inclusive and barrier-free recruitment process and workplace
  • Fulltime
Read More
Arrow Right
New

Security Technologist 4

This is a hybrid role in Redmond, WA. Aquent is partnering with a leading techno...
Location
Location
United States , Redmond
Salary
Salary:
61.25 - 66.25 USD / Hour
aquent.com Logo
Aquent
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Demonstrated experience in security engineering with hands-on ownership in one or more of: identity & access management, cloud security, incident response, security operations, or security governance
  • Working knowledge of identity security capabilities such as Multi-Factor Authentication (MFA), Conditional Access, and Privileged Identity Management concepts
  • Experience supporting or administering enterprise identity and cloud ecosystems (e.g., Role-Based Access Control (RBAC) models, access reviews, privileged access workflows)
  • Experience with vulnerability management and operational remediation
  • Ability to operate in a ticket-driven environment with strong documentation practices, including approvals, justification, and evidence, to support auditability
  • Strong communication and stakeholder management skills, with the ability to explain risk, defend security guardrails, and partner with production and engineering teams to deliver compliant solutions
  • Candidates with a bachelor’s degree are highly preferred
  • Core skills in security operations and alert triage
  • incident response
  • Strong cloud security and tenant hardening mindset
Job Responsibility
Job Responsibility
  • Identity & Access Management (IAM) + Privileged Access
  • Security Operations, Incident Triage, and Response
  • Cloud / Tenant Security & Endpoint Compliance
  • Security Assessments (Software, Partners, New Solutions)
  • Governance, Risk, Compliance, and Policy Enforcement
  • Vulnerability & Patch Management
  • Security Tooling, Automation, and Operational Excellence
What we offer
What we offer
  • Subsidized health, vision, and dental plans
  • paid sick leave
  • retirement plans with a match
  • free online training through Aquent Gymnasium
Read More
Arrow Right

Senior Cyber Security Engineer II-Identity Governance

The Sr. Cyber Security Engineer II – Identity Governance is a pivotal role respo...
Location
Location
United States , Framingham
Salary
Salary:
139000.00 - 191000.00 USD / Year
staplespromo.com Logo
Staples Promotional Products
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Cybersecurity, Computer Science, or a related field or equivalent work experience
  • 10 or more years of progressively complex experience in cybersecurity
  • Proven experience with cybersecurity frameworks (e.g., NIST, ISO 27001)
  • Hands-on experience with security systems, including firewalls, intrusion detection systems, anti-virus software, authentication systems, log management, and content filtering
  • Knowledge of network protocols and data encryption methods
  • Hands-on experience supporting Active Directory in an enterprise environment
  • Practical experience with identity and access management concepts including: user lifecycle provisioning, entitlement management, role-based access control (RBAC)
  • Experience building or supporting application integrations with an IGA platform
  • Experience supporting SSO and authentication integrations
  • Working knowledge of conditional access and modern authentication controls
Job Responsibility
Job Responsibility
  • Engineer, maintain, and secure Active Directory components including domains, OUs, group structures, service accounts, and delegated administration models
  • Support hybrid identity patterns integrating on‑premises Active Directory with cloud identity platforms
  • Partner with infrastructure and cloud teams to ensure directory services are resilient, monitored, and aligned to security best practices
  • Apply Zero Trust security concepts to identity systems, recognizing Active Directory and identity connectors as high‑risk control plane assets
  • Support privileged access separation, administrative role scoping, and least‑privilege enforcement across identity platforms
  • Participate in hardening initiatives to reduce privilege escalation paths and credential exposure within identity services
  • Implement and support SSO and federation integrations using industry‑standard protocols (SAML, OIDC, OAuth)
  • Assist in designing and maintaining conditional access policies based on user risk, role, device posture, and authentication context
  • Troubleshoot authentication and authorization issues across directories, identity providers, and integrated applications
  • Support joiner / mover / leaver lifecycle processes across Active Directory and downstream applications
What we offer
What we offer
  • Competitive base salary + bonus on eligible positions
  • 22 days plus 7 major holidays and 1 floating holiday
  • Company match 401(k) plan
  • Online and retail discounts
  • Physical and mental health wellness programs
  • Daycare, cafeteria, fitness center, and coffee shop at our HQ
  • Inclusive culture with associate-led Business Resource Groups
  • Fulltime
Read More
Arrow Right