CrawlJobs Logo

Specialist IS Security Engineer – Identity Management

amgen.com Logo

Amgen

Location Icon

Location:
Portugal , Lisbon

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

Not provided
Save Job
Save Icon
Apply Position

Job Description:

Join our team at AMGEN Capability Center Portugal, the #1 company in Best Workplaces™ (201–500 employees' category) in Portugal in 2024 by the Great Place to Work Institute. With over 500 talented individuals from more than 40 nationalities, our Lisbon center thrives at the intersection of innovation, excellence, and inspiration. This is your opportunity to explore the future of healthcare through technology and digital innovation, supporting our mission To Serve. At AMGEN, Technology isn’t just a support function—it’s a catalyst for discovery, transformation, and real-world impact. Here, your ideas fuel innovation that improves and saves lives of patients in dire need of our medicines.

Job Responsibility:

  • Design, implement, administer, and maintain security controls for Amgen’s identity and access management ecosystem, including provisioning, authentication, and authorization systems
  • Engineer and support secure identity provisioning solutions aligned with IAM and RBAC frameworks across on-premises and cloud environments
  • Serve as a security engineering lead for IdM and access-related initiatives, ensuring solutions meet security architecture standards, governance requirements, and regulatory expectations
  • Conduct security reviews, threat modeling, and risk assessments for identity-related systems and integrations
  • Partner with project and application teams to embed security best practices into system designs, configurations, and deployments
  • Monitor security, operational, and performance metrics for managed systems
  • develop KPIs to track security posture, availability, and growth trends
  • Support incident response activities related to identity, access, and authentication issues, including investigation, containment, remediation, and documentation
  • Develop and maintain security documentation, including system security designs, operational procedures, incident response playbooks, and access control policies
  • Evaluate emerging security tools, technologies, and industry trends to continuously improve identity and access security capabilities
  • Ensure compliance with internal security standards, industry frameworks, and regulatory requirements (e.g., NIST, ISO 27001, GDPR, HIPAA)

Requirements:

  • Master’s degree and 4 years of Information Systems or Information Security experience
  • Bachelor’s degree and 6 years of Information Systems or Information Security experience
  • Associate’s degree and 8 years of Information Systems or Information Security experience
  • Strong experience with identity and access management (IAM) and identity security solutions
  • Hands-on experience integrating SailPoint with enterprise applications (on-prem and cloud)
  • Solid understanding of identity governance concepts, including RBAC, access certifications, least privilege, and user lifecycle management
  • Proficiency with identity platforms such as SailPoint, Okta, Azure AD / Entra ID
  • Knowledge of authentication and provisioning protocols (SCIM, SAML, OAuth, OpenID Connect)
  • Experience working with APIs and secure integration patterns
  • Strong understanding of directory services (LDAP, Active Directory)
  • Familiarity with security frameworks and compliance requirements (NIST, ISO 27001, GDPR, HIPAA)
  • Ability to perform security risk assessments, vulnerability analysis, and remediation planning
  • Strong analytical, problem-solving, and troubleshooting skills

Nice to have:

  • Scripting and automation skills (PowerShell, Python)
  • Experience in broader Information Security domains (e.g., security engineering, IAM security, cloud security)
  • Experience working in Agile delivery environments
  • Exposure to security monitoring, logging, and alerting concepts
  • Cloud certifications (Microsoft Azure, AWS, or GCP)
  • Identity, Access Management, or Information Security certifications
  • SailPoint certification
What we offer:
  • Work That Matters – Build tech that accelerates scientific breakthroughs and helps patients worldwide
  • Modern Tech Stack – Cloud-first, automation-focused, AI-powered
  • Global Scale, Agile Mindset – Collaborate across continents while working in nimble, high-impact teams
  • Continuous Learning – Access to certifications, trainings, mentorship, and career mobility
  • AMGEN Total Rewards Plan – Comprehensive benefits in healthcare, finance, and well-being
  • Flexibility – Hybrid work model with time split between our Lisbon office and remote work

Additional Information:

Job Posted:
January 15, 2026

Employment Type:
Fulltime
Work Type:
Hybrid work
Icon
Amgen - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Specialist IS Security Engineer – Identity Management

Head of cyber threat exposure and attack surface management

Lead the enterprise-wide Continuous Threat Exposure Management (CTEM) strategy, ...
Location
Location
United Kingdom , Knutsford
Salary
Salary:
Not provided
barclays.co.uk Logo
Barclays
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience in cybersecurity with direct exposure to vulnerability management, red teaming, or threat exposure reduction
  • Proven track record leading programs integrating CSPM, SSPM, ASM, BAS, or exposure correlation technologies
  • Strong understanding of attack paths, adversary emulation, and continuous validation concepts
Job Responsibility
Job Responsibility
  • Own and drive the global CTEM strategy, establishing a continuous, threat-driven exposure management lifecycle aligned with NIST, MITRE, and CISA Secure-by-Design principles
  • Lead and develop a high-performing CTEM team, fostering collaboration, technical excellence, and an outcome-driven culture
  • Integrate and oversee key exposure management technologies, including Cloud Security Posture Management (CSPM), SaaS Security Posture Management (SSPM), Attack Surface Management (ASM), Breach & Attack Simulation (BAS), and other exposure correlation platforms
  • Correlate assets, identity, vulnerability, and configuration to identify high-impact, exploitable attack paths and inform prioritized remediation strategies
  • Collaborate with Application Security, Vulnerability Management, Red Team, and Security Operations to synchronize discovery, validation, and remediation of exposures across the enterprise
  • Align CTEM outputs with real-world adversary behaviors, leveraging Red Team and Threat Intelligence input to validate attack paths and focus on exploitable conditions
  • Drive automation and AI-enabled analytics to continuously map, assess, and measure reductions in the organization’s attack surface
  • Translate technical findings into business risk language, enabling senior leadership and risk committees to make data-driven investment decisions
  • Define and lead CTEM governance and operating models, ensuring exposure assessments, validation, and remediation tracking are embedded in operational processes
  • Establish clear KRIs and maturity metrics that demonstrate continuous improvement in visibility, validation, and response effectiveness
What we offer
What we offer
  • Competitive holiday allowance
  • Life assurance
  • Private medical care
  • Pension contribution
  • Fulltime
Read More
Arrow Right

Identity Engineer - Privileged Access

We’re hiring an Identity Engineer – Privileged Access to play a hands-on, subjec...
Location
Location
Australia , Richmond
Salary
Salary:
Not provided
auspost.com.au Logo
Australia Post
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Hands-on Identity Engineering specialist with deep expertise in Privileged Access Management
  • Strong track record of delivering and supporting critical business services within medium to large enterprise environments
  • Extensive experience across CyberArk and supporting technologies, with CyberArk Privileged Cloud highly desirable
  • Recognised as a subject matter expert with demonstrated thought leadership
  • Successfully managed and governed PAM environments in line with security best practice
  • Strong technical depth across directory services and identity platforms, including LDAP, Active Directory and Entra
  • Comfortable operating in complex, multicloud environments, with AWS experience highly regarded
  • Proficient in scripting languages such as PowerShell, Python and Perl
  • Experienced working with modern engineering and delivery tooling including GitLab, CI/CD pipelines, Jira and enterprise testing platforms
  • Trusted partner who builds high value relationships across engineering, architecture, security and enablement teams
Job Responsibility
Job Responsibility
  • Play a hands-on, subject matter expert role in strengthening the security foundations of Australia Post
  • Accountable for designing, enhancing and supporting our Privileged Access Management (PAM) platform
  • Ensure the PAM platform operates reliably, securely and at scale to enable critical business services
  • Balance delivery and operations
  • Bring strong technical depth, a customer-first mindset and a focus on quality, stability and continuous improvement
  • Own and uplift our CyberArk Privileged Cloud PAM platform end-to-end
  • Responsible for the operation, enhancement and support of the privileged access management platform: CyberArk Privileged Cloud and the services that it supports including service management
  • Fulfill the 24×7 support obligation by participating equally in the on-call roster and duties
  • Demonstrate technical thought leadership in delivery and service optimisation keeping a continuous improvement mindset
  • Provide expert technical consulting to both mature the function in BAU and deliver robust work products for projects that align to design standards, patterns and identity strategy
What we offer
What we offer
  • Career Development opportunities
  • Work-Life Balance with flexible working arrangements
  • Employee Wellbeing resources and support
  • Inclusive and barrier-free recruitment process and workplace
  • Fulltime
Read More
Arrow Right

Cybersecurity & Access Management – Senior Specialist

Lead the design, implementation, and continuous strengthening of cybersecurity p...
Location
Location
Salary
Salary:
Not provided
hiremoters.ai Logo
HiRemoters
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in cybersecurity, information security, access governance, or IT security architecture roles
  • 8 years experience in cybersecurity, information security, access governance, or IT security architecture roles
  • Strong expertise in cybersecurity frameworks and standards (ISO 27001, NIST, CIS Controls, or equivalent)
  • Hands-on experience with identity and access management systems (Azure Active Directory, role-based access control models)
  • Experience securing cloud environments (Microsoft Azure security tools, security center, identity protection)
  • Knowledge of data protection technologies including encryption, secure data storage, and access monitoring
  • Experience with security monitoring tools, vulnerability management, and risk assessment methodologies
  • Understanding of secure architecture principles for CRM, ERP, and data platforms
  • Familiarity with API security, authentication protocols, and integration security controls
Job Responsibility
Job Responsibility
  • Design, implement, and manage cybersecurity framework across cloud platforms, enterprise systems, and data environments
  • Establish and maintain access governance policies, identity management standards, and role-based access controls across CRM, ERP, and data platforms
  • Continuously monitor and improve the security posture of digital ecosystem, including infrastructure, integrations, and user access patterns
  • Support secure onboarding of new systems, platforms, and integrations by embedding security principles into implementation processes
  • Lead cybersecurity risk assessments and vulnerability mitigation initiatives
  • Define and enforce cybersecurity governance standards across AGF’s digital ecosystem
  • Establish access governance frameworks, including identity lifecycle management and least-privilege principles
  • Contribute to enterprise governance decisions related to data protection, system access, and secure architecture
  • Support policy development related to information security, data protection, and secure systems usage
  • Serve as the technical lead for data protection compliance, including PDP-aligned security practices and access controls
What we offer
What we offer
  • Flexible and Remote Working
  • Career Growth
  • Performance Recognition
  • Health and Fitness Benefits
  • Extra Paid Annual Leave
  • Special Birthday Perk
  • Fulltime
Read More
Arrow Right

Solutions Engineer, Security Specialist

The Technical Success team is responsible for ensuring the safe and effective de...
Location
Location
Japan , Tokyo
Salary
Salary:
Not provided
openai.com Logo
OpenAI
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years in a customer-facing security role such as security pre-sales/solutions engineering, security consulting, security architecture, or GRC-adjacent customer advisory in B2B SaaS or cloud environments
  • Can credibly engage and influence CISOs, security architects, privacy teams, and procurement/risk stakeholders in real-time discussions
  • Have working knowledge of common frameworks and requirements (e.g., SOC 2, ISO 27001, GDPR
  • DORA
  • bonus for regulated regimes like FedRAMP/HIPAA/PCI/DORA depending on segment)
  • Understand modern cloud/security fundamentals: IAM, network/security architecture, encryption/key management concepts, logging/monitoring, vulnerability management, incident response, and secure SDLC
  • Are strong in structured writing and can produce crisp, consistent answers under time pressure (questionnaires, RFIs, executive summaries)
  • Can operate in ambiguity, own problems end-to-end, and create repeatable processes that scale beyond yourself
Job Responsibility
Job Responsibility
  • Lead customer security engagements end-to-end: discovery, security deep dives, live calls, follow-ups, and action tracking—especially for regulated customers
  • Own security questionnaires/RFIs for priority customers: coordinate inputs, ensure accuracy, drive turnaround time, and manage escalations
  • Translate security posture into customer-relevant narratives: data flows, tenant boundaries, identity and access controls, encryption, logging/monitoring, incident response, privacy controls, and risk mitigations
  • Guide customers to standardized resources (e.g., trust collateral) and explain what is standard vs. what requires escalation or exceptions
  • Partner closely with GRC and Security teams to escalate non-standard requirements, clarify control intent, and ensure customer-facing responses remain aligned with approved posture
  • Create scalable enablement: playbooks, FAQs, response libraries, and training that reduce repeated work for Solutions Engineers and Sales
  • Represent the voice of regulated customers internally by identifying themes and recurring blockers
  • propose improvements to packaging, documentation, and product readiness
  • Fulltime
Read More
Arrow Right

IT Security Engineer

Security Consulting, Cloud and Application Security; Security Engineering and Pl...
Location
Location
Liechtenstein , Bendern
Salary
Salary:
Not provided
lgt.com Logo
LGT Gruppe Holding AG
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Degree in computer science / IT or a comparable qualification with several years of experience in IT security engineering, security operations or network engineering
  • Solid knowledge in at least two of the following areas: network security, endpoint security, cloud security (Azure / M365), identity & access management, or SIEM / SOAR / incident handling
  • Advantageous: experience with Microsoft Defender, Sentinel, Purview, endpoint protection / DLP and PAM solutions, breach & attack simulation, as well as scripting and automation skills (e.g. PowerShell, Python, Golang)
  • Familiarity with common security frameworks (e.g. ISO 2700x, NIST) and the 1st / 2nd line of defense model
  • Analytical, structured and solution-oriented way of working
  • High reliability and strong sense of responsibility, especially in on-call and incident situations
  • Very good communication and teamwork skills when interacting with IT, development, business, and risk & governance functions
  • Willingness to participate in 24/7 on-call duty and a high level of proficiency in English
  • German is an advantage
Job Responsibility
Job Responsibility
  • Security consulting for project and product teams, including translation of requirements into practical architecture, design and implementation recommendations
  • Security-by-design reviews and go‑live support, including creation and review of IT security concepts and documentation for critical systems and cloud services
  • Security standards and governance, including IT policies, management reporting, KPIs and risk advisory services for stakeholders
  • Design, operation and further development of security platforms, as well as design, implementation and maintenance of security controls (firewalls, secure web access, VPN, endpoint, DLP, PAM, cloud security)
  • Participation in PoCs and rollouts of new security products and services, and use of automation and specialist tools to continuously improve controls
  • Development of workflows and scripts to scale recurring security processes, as well as maintenance of high-quality technical and process documentation
What we offer
What we offer
  • Various flexible work models
  • Sabbatical
  • At least 25 days annual leave, depending on age
  • Special paid leave options
  • Maternity and paternity leave, options for additional parental leave
  • Subsidies for the day care centre "Villa Wirbelwind"
  • Additional childcare contribution for paid external care of children up to 12 years old
  • Employee health and wellbeing program
  • Exercise and sports program
  • Weekly fruit day, healthy meal options
  • Fulltime
Read More
Arrow Right

IT Security Engineer

LGT is the largest Private Banking and Asset Management group in the world to be...
Location
Location
Liechtenstein , Bendern
Salary
Salary:
Not provided
lgt.com Logo
LGT Gruppe Holding AG
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Degree in computer science / IT or a comparable qualification with several years of experience in IT security engineering, security operations or network engineering
  • Solid knowledge in at least two of the following areas: network security, endpoint security, cloud security (Azure / M365), identity & access management, or SIEM / SOAR / incident handling
  • Advantageous: experience with Microsoft Defender, Sentinel, Purview, endpoint protection / DLP and PAM solutions, breach & attack simulation, as well as scripting and automation skills (e.g. PowerShell, Python, Golang)
  • Familiarity with common security frameworks (e.g. ISO 2700x, NIST) and the 1st / 2nd line of defense model
  • Analytical, structured and solution-oriented way of working
  • High reliability and strong sense of responsibility, especially in on-call and incident situations
  • Very good communication and teamwork skills when interacting with IT, development, business, and risk & governance functions
  • Willingness to participate in 24/7 on-call duty and a high level of proficiency in English
  • German is an advantage
Job Responsibility
Job Responsibility
  • Security consulting for project and product teams, including translation of requirements into practical architecture, design and implementation recommendations
  • Security-by-design reviews and go‑live support, including creation and review of IT security concepts and documentation for critical systems and cloud services
  • Security standards and governance, including IT policies, management reporting, KPIs and risk advisory services for stakeholders
  • Design, operation and further development of security platforms, as well as design, implementation and maintenance of security controls (firewalls, secure web access, VPN, endpoint, DLP, PAM, cloud security)
  • Participation in PoCs and rollouts of new security products and services, and use of automation and specialist tools to continuously improve controls
  • Development of workflows and scripts to scale recurring security processes, as well as maintenance of high-quality technical and process documentation
What we offer
What we offer
  • Various flexible work models
  • Sabbatical
  • At least 25 days annual leave, depending on age
  • Special paid leave options
  • Maternity and paternity leave, options for additional parental leave
  • Subsidies for the day care centre Villa Wirbelwind
  • Additional childcare contribution for paid external care of children up to 12 years old
  • Employee health and wellbeing program
  • Exercise and sports program
  • Weekly fruit day, healthy meal options
  • Fulltime
Read More
Arrow Right

Technical Operations Manager

We are seeking a Technical Operations Manager to own and mature security-focused...
Location
Location
Canada , Toronto
Salary
Salary:
110000.00 - 130000.00 CAD / Year
sokin.com Logo
Sokin
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7+ years’ experience in Security Operations, Technical Operations, or Systems Engineering roles
  • Demonstrated experience operating security controls at global scale
  • Experience supporting distributed, multi-region organisations
  • Strong hands-on experience in blue-team security operations
  • Deep knowledge of Microsoft security tooling - Defender, Purview, Azure Entra ID, Manage Engine Endpoint Central (or any MDM solution)
  • Strong experience with Windows and macOS endpoint security and patching
  • Solid understanding of Zero Trust security principles
  • Strong scripting and automation skills especially in Powershell
Job Responsibility
Job Responsibility
  • Lead and continuously improve global TechOps security operations across endpoints, identity, collaboration, and access layers
  • Operate as a blue-team practitioner, supporting: Threat detection, investigation, and response
  • Security alert triage and incident handling
  • Root-cause analysis and remediation
  • Ensure effective incident lifecycle management, including containment, recovery, and post-incident reviews
  • Own and operate global security tooling, including: Microsoft Defender (Endpoint, Identity, Office 365, Cloud Apps)
  • Network Security
  • Security monitoring and alerting capabilities
  • Define and enforce global security operating standards for TechOps
  • Support privileged access and least-privilege access models globally
What we offer
What we offer
  • Inclusive work environment
  • Agile, flexible working culture
  • Fulltime
Read More
Arrow Right

Project Manager, Google Cloud Professional Services

As a Project Manager at Premier Cloud, you will lead the successful delivery of ...
Location
Location
United States; Canada
Salary
Salary:
Not provided
premiercloud.com Logo
Premier Cloud
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of project management experience with at least 2 years focused on cloud technology projects
  • Demonstrated success managing complex projects on-time and on budget with teams of 5–10+ members
  • Proven ability to manage multiple concurrent projects with varying complexity and stakeholder needs
  • Experience with Agile/Scrum methodologies and iterative delivery approaches
  • Strong track record of building client relationships and achieving 85%+ satisfaction scores
  • Google Cloud Associate Cloud Engineer certification is preferred (or Professional Cloud Architect/Developer/DevOps Engineer)
  • If not currently certified: commitment to achieve Associate Cloud Engineer within 3 months and Professional Cloud Architect within 12 months of hire
  • Hands-on familiarity with core GCP services: Compute Engine, GKE, Cloud Run, BigQuery, Cloud Storage, Cloud SQL, Pub/Sub, and Cloud Functions
  • Understanding of cloud migration methodologies (lift-and-shift, re-platform, re-architect) and infrastructure modernization patterns
  • Solid understanding of cloud architecture concepts including networking, security, identity management, and infrastructure-as-code
Job Responsibility
Job Responsibility
  • Lead End-to-End Google Cloud Implementations
  • Manage 3–6+ concurrent Google Cloud projects at different stages spanning migrations, infrastructure modernization, data analytics platforms, and AI/ML implementations
  • Own project planning, scope management, resource allocation, budget tracking, and timeline execution
  • Coordinate cross-functional teams including cloud architects, DevOps engineers, data engineers, security specialists, and client stakeholders
  • Drive projects using Agile methodologies with 2-week sprints, daily standups, and iterative delivery milestones
  • Serve as Trusted Client Advisor
  • Act as primary point of contact for client executives, IT leadership, and project stakeholders
  • Guide clients through complex cloud transformation decisions, balancing technical possibilities with business constraints
  • Provide weekly status updates, executive summaries, and transparent risk/mitigation reporting
  • Build relationships that extend beyond project completion, achieving 75%+ reference willingness and identifying expansion opportunities
What we offer
What we offer
  • Competitive Compensation: A package that reflects your experience and impact
  • Growth & Development: Continuous training, certifications, and opportunities to work on cutting-edge Google Cloud projects
  • Collaboration with Google: Work directly with Google teams on transformative client initiatives
  • Comprehensive Benefits: Including health coverage, paid time off, and relocation assistance (if applicable)
  • Fulltime
Read More
Arrow Right