Identity & Privileged Access Engineer Job at Iceberg Cyber Security (London)

Identity Engineer - Privileged Access

We’re hiring an Identity Engineer – Privileged Access to play a hands-on, subjec...

Location

Australia , Richmond

Salary:

Not provided

Australia Post

Expiration Date

Until further notice

Requirements

Hands-on Identity Engineering specialist with deep expertise in Privileged Access Management
Strong track record of delivering and supporting critical business services within medium to large enterprise environments
Extensive experience across CyberArk and supporting technologies, with CyberArk Privileged Cloud highly desirable
Recognised as a subject matter expert with demonstrated thought leadership
Successfully managed and governed PAM environments in line with security best practice
Strong technical depth across directory services and identity platforms, including LDAP, Active Directory and Entra
Comfortable operating in complex, multicloud environments, with AWS experience highly regarded
Proficient in scripting languages such as PowerShell, Python and Perl
Experienced working with modern engineering and delivery tooling including GitLab, CI/CD pipelines, Jira and enterprise testing platforms
Trusted partner who builds high value relationships across engineering, architecture, security and enablement teams

Job Responsibility

Play a hands-on, subject matter expert role in strengthening the security foundations of Australia Post
Accountable for designing, enhancing and supporting our Privileged Access Management (PAM) platform
Ensure the PAM platform operates reliably, securely and at scale to enable critical business services
Balance delivery and operations
Bring strong technical depth, a customer-first mindset and a focus on quality, stability and continuous improvement
Own and uplift our CyberArk Privileged Cloud PAM platform end-to-end
Responsible for the operation, enhancement and support of the privileged access management platform: CyberArk Privileged Cloud and the services that it supports including service management
Fulfill the 24×7 support obligation by participating equally in the on-call roster and duties
Demonstrate technical thought leadership in delivery and service optimisation keeping a continuous improvement mindset
Provide expert technical consulting to both mature the function in BAU and deliver robust work products for projects that align to design standards, patterns and identity strategy

What we offer

Career Development opportunities
Work-Life Balance with flexible working arrangements
Employee Wellbeing resources and support
Inclusive and barrier-free recruitment process and workplace

Fulltime

Senior IT Engineer — Identity & Access Management

This contract-to-permanent opportunity is ideal for a senior-level candidate who...

Location

United States , Ada

Salary:

Not provided

Robert Half

Expiration Date

Until further notice

Requirements

Demonstrated experience in identity and access management engineering, with strong depth in enterprise IAM architecture and operations
Hands-on expertise with Okta, including tenant configuration, lifecycle management, authentication policies, and single sign-on enablement
Strong knowledge of SSO and federation technologies, including SAML, OAuth, and modern authentication concepts across SaaS applications
Experience integrating identity platforms with systems such as Microsoft Entra ID, Active Directory, Google Workspace, or other directory services
Ability to design secure provisioning, deprovisioning, and access governance processes in regulated or compliance-driven environments
Proven troubleshooting skills for authentication, authorization, and federation issues across cloud and hybrid application ecosystems
Comfortable in a client-facing role with the ability to communicate technical recommendations clearly to varied stakeholders

Job Responsibility

Architect and implement enterprise identity and access solutions centered on Okta for clients operating in regulated and multi-platform environments
Configure and strengthen Okta capabilities such as directory services, adaptive authentication, lifecycle automation, workflow orchestration, and governance controls
Integrate identity platforms with Entra ID, Active Directory, JumpCloud, Google Workspace, and other cloud or hybrid systems to create consistent access experiences
Lead the design and support of SSO and federation solutions using SAML and OAuth standards, including claims design, attribute mapping, token settings, and authentication flow decisions
Troubleshoot authentication and federation issues by analyzing logs, protocol behavior, and application integration details to resolve complex access problems
Develop repeatable integration patterns for widely used business applications such as Microsoft 365, Salesforce, Slack, Zoom, Atlassian, GitHub, NetSuite, and similar platforms
Build and maintain automated joiner, mover, and leaver processes tied to authoritative source systems to improve provisioning accuracy and deprovisioning speed
Establish role-based access models, least-privilege controls, and access review practices that align with audit and compliance expectations
Partner directly with clients to assess identity maturity, recommend improvements, and deliver IAM solutions that support business and security objectives

What we offer

medical
vision
dental
life and disability insurance
401(k) plan

Fulltime

Software Engineer, Identity & Access

You'll own the identity layer that powers every Lovable app — from auth flows an...

Location

Sweden , Stockholm

Salary:

Not provided

Lovable

Expiration Date

Until further notice

Requirements

Deep expertise in identity and access management: OAuth 2.0, OIDC, SAML, JWT, session management, and token lifecycle
Experience building or operating auth systems at scale — ideally in a multi-tenant SaaS or PaaS context
Strong security mindset: you treat credential leakage, privilege escalation, token theft, and tenant isolation as first-class concerns
Experience with RBAC/ABAC models and row-level security in Postgres
Familiarity with identity providers and auth services (Auth0, Supabase Auth, Clerk, Firebase Auth, Keycloak, etc.)
Comfortable with TypeScript across backend services and API layers
You've migrated auth systems or transitioned between identity providers in production without breaking user sessions
Operational instincts: you think in uptime, latency percentiles, and blast radius — auth outages take down everything downstream
You’re based in Stockholm or ready to relocate - this is an on-site, 5-days-a-week role

Job Responsibility

Design and build the Apps Platform's identity and access management system, covering both platform-level auth (Lovable users) and app-level auth (end users of Lovable-generated apps)
Implement authentication flows: OAuth 2.0/OIDC, magic links, social login providers, MFA, and session management
Build a robust authorization model: RBAC, row-level security, API key management, and fine-grained permissions
Own multi-tenancy isolation — ensuring that user apps, data, and credentials are securely separated
Manage secrets infrastructure: secure storage, rotation, and access control for database credentials, API keys, and service tokens
Migrate identity services from the current bundled setup to a fully owned, composable identity layer without breaking user sessions
Operate auth as a production service: monitoring, alerting, incident response, and capacity planning for a system on the critical path of every request
Collaborate with the AI and product teams to ensure that generated apps get secure-by-default auth without requiring user expertise

Fulltime

Senior Software Engineer – Identity & Access Management (IAM)

Location

United States

Salary:

Not provided

Red Hibbert Group

Expiration Date

Until further notice

Requirements

Bachelor's degree in Computer Science, IT, or related field
7+ years of experience in Identity & Access Management or IT Security
Strong expertise in Azure Active Directory (Microsoft Entra ID)
Experience with Conditional Access, MFA, PIM, and Identity Protection
Experience with SSO protocols: SAML, OAuth 2.0, OpenID Connect
Familiarity with PowerShell scripting
Experience working in enterprise IT environments
Strong communication and collaboration skills

Job Responsibility

Lead enterprise-level Azure Active Directory (Microsoft Entra ID) operations
Design and manage Conditional Access policies, MFA, and passwordless authentication
Manage identity lifecycle (user, group, role provisioning and governance)
Implement Privileged Identity Management (PIM) and access governance
Support and troubleshoot SSO integrations (SAML, OAuth2, OpenID Connect)
Monitor identity security signals, risky sign-ins, and audit logs
Perform root cause analysis for IAM-related incidents
Collaborate with security, DevOps, and application teams
Mentor junior engineers and define operational best practices
Maintain documentation, SOPs, SLAs, and KPIs

Fulltime

Senior DevOps Engineer (Identity & Access Management)

We are seeking a Senior DevOps Engineer to join our team and drive automation, r...

Location

Poland

Salary:

Not provided

N-iX

Expiration Date

Until further notice

Requirements

Bachelor’s degree in Computer Science, Electrical Engineering, Information Systems, Informatics, or equivalent
5+ years of development experience focused on identity and access management systems
Proven experience in User Lifecycle Management (ULM), including onboarding, role changes, and offboarding of users across multiple systems (Active Directory, cloud platforms, internal applications)
Extensive hands-on experience with Active Directory, including: Domain controller maintenance, Group Policy Object (GPO) configuration and management, AD deployment and replication, Role-Based Access Control (RBAC) for users and groups
Strong understanding of DNS and basic networking concepts
Proficiency in PowerShell for automation and scripting within identity environments
Experience with additional programming languages and automation tools such as C#, .NET, Ansible, Python, Java, Go, Node.js, Terraform, Docker, etc.
Proven track record of developing scalable, maintainable, and secure software solutions with a focus on automating identity workflows
Understanding of infrastructure at scale, including load balancing, cloud environments, and certificate management

Job Responsibility

Design, develop, automate, and operate services and systems that manage the full lifecycle of user accounts across all infrastructure environments (User Lifecycle Management – Joiner, Mover, Leaver processes)
Implement identity and access management features such as JIT (Just-In-Time), JML (Joiner-Mover-Leaver), PIM (Privileged Identity Management), PAM (Privileged Access Management), and RBAC (Role-Based Access Control) in a robust and scalable manner
Partner cross-functionally with security, compliance, and engineering teams to build tooling that ensures all access activities are logged and properly audited
Constantly evaluate current trends in identity and access management and adopt new tools and features in a timely manner
Mentor junior engineers and help them grow their technical skills
Participate in an on-call rotation schedule

What we offer

Flexible working format - remote, office-based or flexible
A competitive salary and good compensation package
Personalized career growth
Professional development tools (mentorship program, tech talks and trainings, centers of excellence, and more)
Active tech communities with regular knowledge sharing
Education reimbursement
Memorable anniversary presents
Corporate events and team buildings
Other location-specific benefits

Senior Identity Access Management Engineer

Roku is seeking a senior-level Identity Engineer to enhance its Zero-Trust archi...

Location

United States , Boston

Salary:

158000.00 - 279000.00 USD / Year

Roku

Expiration Date

Until further notice

Requirements

8+ years of hands-on experience with identity and access management and automating cloud technologies, particularly within the Microsoft ecosystem.
Strong analytical skills and attention to detail, with the ability to troubleshoot complex infrastructure and identity-related issues.
Excellent communication skills, with the ability to clearly explain technical concepts to both technical and non-technical stakeholders.
Deep experience with Microsoft Entra ID, including Conditional Access, Identity Governance, and Privileged Identity Management.
Familiarity with Microsoft 365 services: Exchange Online, Defender, Purview, Sentinel, Intune, and related platforms.
Automation and scripting skills using PowerShell, Azure CLI, and Microsoft Graph API
working knowledge of Azure services such as Function Apps and Logic Apps.
Experience in onboarding and managing enterprise applications in Azure Entra ID.
Advanced knowledge of Azure Single Sign-On (SSO) login methods, including OAuth2, OpenID Connect, and SAML, and their integration with enterprise applications.
Knowledge of privileged access tools (Azure PIM, CyberArk, etc), secrets management (HashiCorp or Azure Key Vault), and workload identity patterns SPIFEE & SPIRE.

Job Responsibility

Lead enterprise-wide IAM standardization, including identity lifecycle, access governance, and policy enforcement across global regions.
Drive automation across IAM to streamline administration and deliver a smoother user experience.
Support enterprise applications onboarding into Azure Entra ID, including SSO, Conditional Access, and role-based access control (RBAC).
Enhance privileged access management and implement scalable monitoring, alerting, and auditability solutions to support a secure, geographically distributed workforce.
Collaborate with IT, Networking, and Security teams to troubleshoot identity-related issues and support global infrastructure initiatives.
Advance Zero Trust Identity Fabric principles like continuous verification, least-privilege access, and identity-aware policy enforcement across users, devices, workloads, and non-human identities.
Build identity automation with a DevOps mindset, writing scripts, developing pipelines, and engineering tooling from scratch rather than just configuring them.

What we offer

Health insurance
equity awards
life insurance
disability benefits
parental leave
wellness benefits
paid time off
global access to mental health and financial wellness support and resources
healthcare (medical, dental, and vision)
life

Fulltime

Senior Identity Access Management Engineer

Roku is seeking a senior-level Identity Engineer to enhance its Zero-Trust archi...

Location

United States , New York

Salary:

158000.00 - 279000.00 USD / Year

Roku

Expiration Date

Until further notice

Requirements

8+ years of hands-on experience with identity and access management and automating cloud technologies, particularly within the Microsoft ecosystem
Strong analytical skills and attention to detail, with the ability to troubleshoot complex infrastructure and identity-related issues
Excellent communication skills, with the ability to clearly explain technical concepts to both technical and non-technical stakeholders
Deep experience with Microsoft Entra ID, including Conditional Access, Identity Governance, and Privileged Identity Management
Familiarity with Microsoft 365 services: Exchange Online, Defender, Purview, Sentinel, Intune, and related platforms
Automation and scripting skills using PowerShell, Azure CLI, and Microsoft Graph API
working knowledge of Azure services such as Function Apps and Logic Apps
Experience in onboarding and managing enterprise applications in Azure Entra ID
Advanced knowledge of Azure Single Sign-On (SSO) login methods, including OAuth2, OpenID Connect, and SAML, and their integration with enterprise applications
Knowledge of privileged access tools (Azure PIM, CyberArk, etc), secrets management (HashiCorp or Azure Key Vault), and workload identity patterns SPIFEE & SPIRE

Job Responsibility

Lead enterprise-wide IAM standardization, including identity lifecycle, access governance, and policy enforcement across global regions
Drive automation across IAM to streamline administration and deliver a smoother user experience
Support enterprise applications onboarding into Azure Entra ID, including SSO, Conditional Access, and role-based access control (RBAC)
Enhance privileged access management and implement scalable monitoring, alerting, and auditability solutions to support a secure, geographically distributed workforce
Collaborate with IT, Networking, and Security teams to troubleshoot identity-related issues and support global infrastructure initiatives
Advance Zero Trust Identity Fabric principles like continuous verification, least-privilege access, and identity-aware policy enforcement across users, devices, workloads, and non-human identities
Build identity automation with a DevOps mindset, writing scripts, developing pipelines, and engineering tooling from scratch rather than just configuring them

What we offer

health insurance
equity awards
life insurance
disability benefits
parental leave
wellness benefits
paid time off
global access to mental health and financial wellness support and resources
healthcare (medical, dental, and vision)
commuter

Fulltime

Engineer, Identity and Access Management

As an Identity Engineer, you will be responsible for the design, implementation,...

Location

United States

Salary:

66379.50 USD / Year

Stride, Inc.

Expiration Date

Until further notice

Requirements

Five (5+) years of experience in identity & access management, user administration, or security compliance
Documented experience and a solid understanding of identity lifecycle management, credential management, role-based access, and identity governance
Demonstrable experience with identity management & administration tools and practices
Prior in-depth expertise with Active Directory, Entra ID, and SailPoint Identity Security Cloud required
Hands-on experience with Privileged Identity Management systems required
In-depth understanding of leading-edge identity governance - enabling technologies & practices
Strong demonstrated ability to gain consensus and support across diverse functions and departments
Excellent communication and presentation skills (verbal and written)
Experienced guiding stakeholders with risk-based decision-making
Ability to identify, document, and communicate information security issues to business and information owners

Job Responsibility

Design, implement, and maintain Stride’s Identity Governance, Management, Privileged Access Management technologies and Access technologies
Enforce company policies and procedures related to IAM, IGA, and PAM
Update and maintain policies, standards, and procedures as needed
Work with other IT team members to ensure seamless integrations into the overall IT infrastructure
Develop architecture diagrams, process workflows, and technical documentation for identity governance frameworks
Design and implement API integrations to enhance automation and system interoperability
Work with DevOps and engineering teams to integrate IAM capabilities into cloud and hybrid environments
Troubleshoot IAM & IGA issues and develop creative solutions to solve problems
Implement IGA & IAM controls & support IT IAM Controls testing (SOX and non-SOX)
Create detailed technical documentation and architecture diagrams to support IAM and PAM initiatives

What we offer

Health benefits
Retirement contributions
Paid time off
Eligible employees may receive a bonus

Fulltime

Select Country

Identity & Privileged Access Engineer

Job Description

Job Responsibility

Requirements

Looking for more opportunities?