CrawlJobs Logo
DataCareers Logo DataCareers · IT - Administration

Senior IAM Engineer

United Kingdom 70000.00 - 80000.00 GBP / Year · Job Posted March 19, 2026
Apply Position
Job Link Share

Job Description

Senior, hands-on technical role responsible for owning and improving identity services across a complex global environment. The organisation is modernising its infrastructure, security and workplace platforms, and identity is a critical component of that transformation. You will take responsibility for shaping IAM standards, strengthening identity security, and improving how access is managed across hybrid, cloud and SaaS platforms. The environment is Microsoft-centric, with a strong focus on modern identity practices, automation, and scalable access governance.

Job Responsibility

  • Act as the technical authority for identity and access management
  • Design and implement IAM solutions across hybrid and cloud environments
  • Improve identity lifecycle processes (Joiner / Mover / Leaver) with automation as the default
  • Define and enforce RBAC and least-privilege access models
  • Own Conditional Access policies, MFA strategy and identity security posture
  • Diagnose complex identity and authentication issues across enterprise system
  • Lead access reviews, audit responses and remediation activities
  • Produce clear technical standards, architecture documentation and best practice guidance
  • Support and mentor engineers within the wider infrastructure team

Requirements

  • Strong hands-on experience with enterprise IAM platforms (Entra ID / Azure AD / Active Directory or similar)
  • Deep understanding of authentication vs authorisation concepts
  • Experience with SSO, federation, identity tokens and authentication flows
  • Expertise in MFA, Conditional Access and identity threat mitigation
  • Experience implementing identity governance, access controls and privilege management
  • Ability to design scalable IAM architecture within large, complex environments
  • Experience supporting audits and improving identity security posture
DataCareers - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Senior IAM Engineer

8 matching positions

Senior IAM Engineer

Location
Location
Canada , Toronto
Salary
Salary:
133500.00 USD / Year
realign-llc.com Logo
Realign
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7 years of experience on microservice implementation using JavaJ2EE, Spring framework, Gradle, NodeJS, Restful APIs, Cloud SQL, and Kafka
  • 5 years of experience in integration and ForgeRock and have deep understanding of authentication and its protocols (OIDC, SAML, OAuth) and PKI
  • 5 years of experience in automating deployment processes and working with CICD tools (Jenkins, Google Cloud Deployment, etc.)
  • Extensive experience in Identity and Access Management (IAM), with hands-on expertise in ForgeRock Identity Platform (AM, IDM, DS, IG)
  • Strong understanding of authentication and authorization protocols such as OAuth2, OpenID Connect, SAML, LDAP
  • Proven ability to design and implement IAM solutions for enterprise and cloud environments (AWS, Azure, GCP)
  • Experience with identity federation, SSO, MFA, and adaptive authentication strategies
  • Proficiency in DevOps tools (Terraform, CICD pipelines) for IAM deployment and automation
  • Solid knowledge of cybersecurity principles, risk management, and compliance frameworks
  • Strong leadership and stakeholder management skills, with experience guiding technical teams and collaborating across departments
  • Fulltime
Read More
Arrow Right

Senior IAM Engineer - Platform Security

Citi Secure is seeking a skilled Senior IAM Engineer to join our team, focusing ...
Location
Location
United States , Jacksonville
Salary
Salary:
113840.00 - 170760.00 USD / Year
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6+ years' experience in IAM roles as it relates to the experience requirements below
  • 4+ years of hands-on Java/J2EE programming experience
  • 2+ years' experience scripting in Unix/Linux environments
  • Strong proficiency with Java IDEs (Eclipse), API testing tools (SOAP UI, Postman), LDAP clients, source control utilities (e.g., Git), and build/packaging tools (Ansible, Jenkins, Maven)
  • Extensive application security experience, with deep knowledge of SSO, Federation protocols (SAML, OpenID Connect, OAuth2), and Multi-factor Authentication (MFA)
  • Proven experience in architecting, designing, and implementing large-scale IAM solutions
  • Ability to customize, configure, and develop IAM solution integrations and independently manage project deliverables
  • Strong knowledge of application architecture, System Integration Testing (SIT), Functional Testing, and Regression Testing
  • Bachelor's Degree in Computer Science, IT, or a related field, or equivalent work experience
Job Responsibility
Job Responsibility
  • Design, implement, and maintain secure, scalable applications and infrastructure with a primary focus on Identity and Access Management (IAM) solutions
  • Manage franchise-critical security application infrastructure, including project delivery, integration, and operational subject matter expertise
  • Collaborate with cross-functional teams to gather requirements and ensure IAM solutions are strategically aligned with business needs
  • Develop robust scripts and/or Java/J2EE code to facilitate system monitoring, enhance process automation, and deliver project requirements
  • Create and diligently maintain comprehensive documentation for all IAM systems, processes, and problem resolutions within Knowledge Base tools
  • Provide expert technical application support for the security infrastructure, proactively troubleshooting and expediently resolving IAM-related issues to ensure minimal disruption
  • Conduct regular, thorough security audits, penetration testing, and SDLC validation to systematically identify and mitigate potential vulnerabilities before production deployment
  • Ensure strict adherence to internal controls and compliance standards defined by Citi
  • Proactively identify and implement automation opportunities for repetitive processes using tools like Ansible
  • Actively contribute to the strategic development, ongoing refinement, and roadmap planning for the firm's IAM initiatives
What we offer
What we offer
  • medical
  • dental & vision coverage
  • 401(k)
  • life, accident, and disability insurance
  • wellness programs
  • paid time off packages, including planned time off (vacation), unplanned time off (sick leave), and paid holidays
  • Fulltime
Read More
Arrow Right

IAM Senior Engineer - Active Directory/Entra ID

HPE Global IT is seeking a highly skilled Senior Active Directory (AD), Entra ID...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or related field (or equivalent experience)
  • 10+ years of IT or cybersecurity experience
  • 7+ years focused on AD, Entra ID, and Azure identity engineering in enterprise-scale environments
  • Deep hands-on experience managing multi-forest AD environments (schema, replication, delegation, GPOs, DNS, DHCP)
  • Strong expertise with Entra ID and hybrid identity integration (Entra Connect / Cloud Sync, federation, SSO)
  • Hands-on experience with Azure governance, RBAC, PIM, and access policy enforcement
  • Experience implementing conditional access, passwordless, and phishing-resistant MFA in Entra and Azure
  • Proficiency in PowerShell scripting, Graph API, and Azure automation for identity management and reporting
  • Solid understanding of authentication protocols (Kerberos, NTLM, LDAP, SAML, OIDC, OAuth2)
  • Familiarity with Zero Trust, tiered admin models, and directory hardening practices
Job Responsibility
Job Responsibility
  • Engineer, deploy, and optimize Active Directory, Entra ID, and Azure identity services across enterprise-scale hybrid environments
  • Design and manage multi-forest AD architectures, including schema extensions, replication, delegation, and hardening
  • Implement and maintain cross-domain and cross-tenant synchronization between AD and Entra ID using Entra Connect or Cloud Sync
  • Engineer secure authentication and federation flows leveraging Kerberos, NTLM, SAML, OIDC, and OAuth2
  • Implement and enhance conditional access, MFA, passwordless, and FIDO2 authentication methods in Entra and Azure environments
  • Support Zero Trust Directory Security through tiered administration, least privilege, and delegated access controls
  • Partner with cloud and infrastructure teams to ensure secure integration of Azure resources with enterprise identity services
  • Maintain and secure domain controllers, DNS, DHCP, and Group Policy Objects (GPOs) across global environments
  • Manage Azure AD tenants, subscriptions, and resource access controls (RBAC, PIM, Entra roles)
  • Integrate on-prem AD with Azure workloads, Microsoft 365, Intune, and other SaaS applications
What we offer
What we offer
  • Health & Wellbeing benefits
  • Personal & Professional Development programs
  • Unconditional Inclusion environment
  • Comprehensive suite of benefits supporting physical, financial and emotional wellbeing
  • Fulltime
Read More
Arrow Right

Senior IAM Automation Engineer

We’re seeking a Senior IAM Automation Engineer to transform how Apex manages wor...
Location
Location
United States , Austin
Salary
Salary:
108800.00 - 136000.00 USD / Year
apexclearing.com Logo
Apex Clearing
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7-10+ years in DevOps, SRE, or software engineering roles with significant IAM/identity automation focus
  • Demonstrated experience building automation solutions for enterprise IAM platforms using APIs, scripting, and infrastructure-as-code
  • Track record of implementing workflow automation or orchestration platforms in production environments
  • Understanding of both technical IAM implementations and business processes (joiner/mover/leaver, access requests, compliance)
  • Experience working in hybrid on-premises and cloud environments
  • Software development proficiency - 5+ years writing production code (Python, PowerShell, Go, or similar) with strong API and SDK integration experience
  • IAM architecture skills - Deep understanding of SSO protocols (SAML, OIDC), provisioning standards (SCIM), directory services (Active Directory, Entra ID), and enterprise IAM platforms (Okta strongly preferred)
  • Infrastructure-as-Code mastery - Hands-on experience with Terraform, Ansible, or similar tools, plus CI/CD pipelines for automated deployments
  • DevOps/SRE practices - Experience building observable, reliable systems with appropriate monitoring, logging, and incident response capabilities
  • Workflow automation platforms - Demonstrated ability to implement and govern low-code/code-first automation tools (Tines, Workato, n8n, or similar)
Job Responsibility
Job Responsibility
  • Lead Tines platform implementation and governance - Define technical standards, architect RBAC models, and build workflows that automate employee lifecycle management, access requests, and certification campaigns
  • Build infrastructure-as-code for identity systems - Develop and maintain Terraform, PowerShell, and Python automation across hybrid infrastructure (on-prem AD/Adaxes, Entra ID, Okta, AWS IAM, GCP/GCI) to enable repeatable, version-controlled deployments with proper change management
  • Design API-driven automation and integrations - Architect scalable solutions that orchestrate identity workflows across HRIS (Workday), ticketing (ServiceNow), collaboration platforms (Slack, Teams, M365), and enterprise applications, leveraging APIs and SDKs to eliminate manual processes
  • Implement observability and self-healing capabilities - Build monitoring, alerting, and automated remediation for identity systems to reduce operational toil, improve reliability, and enable proactive issue detection across authentication flows and provisioning processes
  • Enable rapid application onboarding - Create automation frameworks and integration patterns that allow the business to onboard new SaaS applications with minimal manual intervention while maintaining security and compliance standards
  • Pioneer non-human identity (NHI) governance - Partner with SecOps to develop policies, controls, and automation for managing AI agents, LLM API keys, service accounts, bot identities, and machine-to-machine authentication as AI adoption accelerates across the organization
  • Mentor and develop junior team members - Share your hard-won experience and technical expertise to elevate the team’s capabilities. Conduct code reviews, pair programming sessions, and knowledge transfer that builds automation skills, IAM expertise, and engineering judgment across the team
  • Drive technical innovation in the identity space - Evaluate emerging tools and practices, establish CI/CD pipelines for IAM deployments, and leverage AI-powered development tools (LLMs, code generation, AI assistants) responsibly to accelerate automation delivery and stay ahead of business needs
What we offer
What we offer
  • Healthcare benefits (medical, dental and vision, EAP)
  • competitive PTO
  • 401k match
  • parental leave
  • HSA contribution match
  • paid subscription to the Calm app
  • generous external learning and tuition reimbursement benefits
  • Fulltime
Read More
Arrow Right

Senior Security Engineer - IAM

As a Senior Security Engineer, you will be responsible for the design and develo...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
uber.com Logo
Uber
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7+ Years of experience in development, Design and consulting for developing, designing SailPoint IIQ or similar IGA solutions, and Authentication platforms at large organizations
  • Experience with developing complex software systems scaling to millions of users with production quality deployment, monitoring, and reliability
  • Experience with large-scale distributed storage and database systems (SQL e.g. MySQL)
  • Ability to decompose complex business problems and help lead multiple teams in solving them
  • Understand Role-Based Access Control, Policy-Based Access Control, Attribute based access control, Governance, Access Certification in SailPoint
  • Experience in Web and Middleware technologies such as Nginx, Tomcat, Weblogic
  • Skill set in traffic management, Service and Session Load balancing skills primarily on HAProxy, NLB and F5 are added benefits
  • Leveraged tools like Cursor, GitHub Copilots to improve developer productivity
Job Responsibility
Job Responsibility
  • Design and development of Identity and Access Governance systems and microservices responsible for authentication, authorization, and single sign-on app integrations
  • Build new Features, APIs, Rules, Workflows, Analytics, Tasks and Reports for the Information Security org
  • Providing and assisting in defining Identity Security controls, best practices, compliance controls for Uber’s internal workforce and services
  • Identification and adoption of security trends, software engineering best practices defined by Uber engineering
  • Design and Build extensible access governance features, centralized and adaptive access management system, and Risk Models for the organization
  • Provide technical leadership in designing, implementing, testing, and rolling out the Identity platform (e.g. SailPoint IIQ, Cloud Identity, LDAP, MFA, SSO, etc.) at Uber
  • Practice Software engineering best practices while writing or reviewing code
  • Develop high quality engineering design documents for new integrations and initiatives
  • Engineer, Configure, Implement and maintain Identity and Access Management solutions and services
  • Resolve bugs through strong programming, critical problem solving, database query skills
Read More
Arrow Right

Senior M365 & Iam Engineer / Developer

We are looking for a skilled and forward-thinking M365 & IAM Engineer / Develope...
Location
Location
Sweden , Gothenburg
Salary
Salary:
Not provided
amaris.com Logo
Amaris Consulting
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Microsoft 365 ecosystem (Teams, SharePoint, Power Platform, Purview)
  • Identity management with Entra ID and Active Directory (MFA, Conditional Access, policies)
  • Scripting and automation (PowerShell, Python or similar)
  • Azure services, particularly Azure Functions and Logic Apps
  • API integrations (Graph API, PnP)
  • Modern development practices (Infrastructure as Code, GitOps, CI/CD, GitHub Actions)
  • Understanding of event-driven systems and scalable architecture
  • 7–10 years of experience (Senior level)
  • English (fluent) and Swedish (fluent) - both mandatory
Job Responsibility
Job Responsibility
  • Design, configure, and continuously improve Microsoft 365, Entra ID, and Active Directory environments
  • Build integrations between enterprise systems (e.g., HR and IT platforms) using event-driven architectures
  • Automate processes and workflows using tools such as PowerShell, Graph API, Azure Functions, and Logic Apps
  • Develop solutions within the Microsoft ecosystem (Teams, SharePoint, Power Platform) to enhance collaboration
  • Manage and optimize hybrid identity environments across on-prem and cloud platforms
  • Implement modern engineering practices such as Infrastructure as Code, GitOps, and CI/CD pipelines
  • Contribute to continuous delivery and platform improvements using DevOps principles and GitHub workflows
What we offer
What we offer
  • An international community bringing together 110+ different nationalities
  • An environment where trust has a central place: 70% of our key leaders started their careers at the first level of responsibilities
  • A robust training system with our internal Academy and 250+ available modules
  • A vibrant workplace that frequently gathers for internal events (afterworks, team buildings, etc.)
  • Fulltime
Read More
Arrow Right

Senior Staff Engineer - Backend IAM

The Identity organization is the gateway to Uber’s ecosystem, managing the found...
Location
Location
United States , Sunnyvale
Salary
Salary:
267000.00 - 297000.00 USD / Year
uber.com Logo
Uber
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • BS or equivalent in Computer Science, or related field
  • 10-years full-time Software Engineering work experience
  • Designing and building large scale distributed systems, including launching and migrating a large backend platform to 100's of millions of users
  • Customer facing Platforms/SaaS serving 100's of millions of customers
Job Responsibility
Job Responsibility
  • Architectural Vision: Anticipate and solve large-scale challenges 1–2 years ahead, ensuring our systems remain modular and future-proof
  • Engineering Excellence: Drive the adoption of organizational standards—including GenAI integration—while raising the bar for code quality through hands-on development and reviews
  • Strategic Innovation: Identify and lead high-impact technical bets, balancing bold experimentation with the discipline to 'fail fast'
  • Efficiency at Scale: Design enduring artifacts that reduce system complexity, accelerate developer velocity, and optimize reliability
  • Collaborative Leadership: Build deep partnerships across Product, Design, and Operations, while fostering an inclusive environment where diverse perspectives drive innovation
What we offer
What we offer
  • Eligible to participate in Uber's bonus program
  • May be offered an equity award & other types of comp
  • All full-time employees are eligible to participate in a 401(k) plan
  • Eligible for various benefits
  • Fulltime
Read More
Arrow Right

IAM Secrets Management Senior Engineer

This role has been designed as ‘Hybrid’ with an expectation that you will work o...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or related field (or equivalent experience)
  • 10+ years of experience in IT or cybersecurity, with 6+ years focused on secrets management, PAM
  • Hands-on experience with HashiCorp Vault Enterprise, including configuration, replication, DR, policies, and secrets engines
  • Experience integrating Vault with PAM tools (CyberArk, BeyondTrust) and DevOps toolchains (Jenkins, GitHub, GitLab, Azure DevOps, Kubernetes)
  • Strong scripting and automation skills (Python, PowerShell, Bash, Terraform, REST APIs)
  • Experience with cloud identity and secrets services (AWS Secrets Manager, Azure Key Vault, GCP Secret Manager)
  • Working knowledge of authentication standards (OIDC, JWT, LDAP, Kerberos, SAML, OAuth2)
  • Experience implementing Zero Trust and Just-in-Time access models
  • Understanding of security compliance frameworks (SOX, FedRAMP, ISO 27001, NIST 800-53)
  • Preferred certifications: HashiCorp Certified Vault Associate, CyberArk Defender/Sentry, CISSP, or equivalent
Job Responsibility
Job Responsibility
  • Deploy, configure, and manage HashiCorp Vault Enterprise clusters, including replication, DR, namespaces, secrets engines, and authentication methods
  • Implement dynamic and static secrets, short-lived credentials, and automated rotation for accounts, APIs, and services
  • Integrate secrets management with PAM platforms (e.g., CyberArk, BeyondTrust) and CI/CD pipelines (Jenkins, GitHub, GitLab, Azure DevOps)
  • Build and maintain Vault policies, AppRoles, OIDC/JWT integrations, and RBAC models
  • Automate secrets onboarding and lifecycle management using APIs, Terraform, and scripting languages (Python, PowerShell, Bash)
  • Ensure secure integration of Vault with cloud workloads (AWS, Azure, GCP) and container platforms (Kubernetes, Docker)
  • Support migration from legacy key stores or password vaults to centralized secrets management platforms
  • Maintain secure configurations, audit logging, and event forwarding to SIEM/SOAR systems
  • Ensure Vault operational health, monitoring, and performance tuning
  • Perform upgrades, patching, and disaster recovery operations for secrets management platforms
What we offer
What we offer
  • Health & Wellbeing
  • Personal & Professional Development
  • Unconditional Inclusion
  • Fulltime
Read More
Arrow Right