IAM/IGA Engineer (One Identity Manager)

We are looking for a talented and enthusiastic Identity & Access DevOps Engineer to join our team at INGHubs Spain.

Join our IAM team and help build secure, scalable Identity & Access Management solutions for ING. You'll collaborate with tech and security teams, run security assessments, shape IAM policies, and manage the full lifecycle of IAM applications. We're looking for fleible, curious professionals eager to grow in a dynamic cybersecurity environment.

Your key responsibilities:

Run and maintain application environments (DEV/ACC/PROD): monitor health, triage incidents (e.g., HTTP errors), and coordinate fi

• es with product/vendor taskforces.

Optimize performance of UAP and customizations (including SQL query tuning) and drive measurable end-user e

• perience improvements.

• Administer IAM content: create/maintain business & system roles, approval policies, and notification templates; keep request catalog clean and auditable.

Implement and steward controls: operate attestation cycles, manage SoD rules, and partner on remediation plans to meet audit/SO e

• pectations.

Build & ship changes safely: package and deploy OneIdentity Manager e

• tensions, plan upgrades (incl. LTS/STS support windows), and manage rollbacks where needed.

• Report & improve data quality: support BI/IAM reporting (Power BI dashboards, dedicated views) and collaborate with data stakeholders on quality and coverage., * perience operating and configuring One Identity Manager application (IGA Tool) - covering business roles, system roles, approval workflows, attestation, Joiner-Mover-Leaver (JML) processes, and Segregation of Duties (SoD) Strong DevOps skill set across Windows/Linu

Do you have experience in Windows?, * , IIS/.NET UAP components, MS SQL Server (T SQL), scripting (PowerShell), CI/CD, and observability (e.g., ELKaaS, Grafana) E

• perience with incident & change management (e.g., ServiceNow) and structured troubleshooting of portal/service issues.
• Solid IAM foundations: RBAC, ARBAC, access lifecycle, attestation cycles, and SoD conflict handling.
• Familiarity with Directories and API integration patterns for access provisioning and evidencing controls.
• Communicative (written and spoken) English is mandatory., * perience routing/handling approvals via Microsoft Teams or similar collaboration integrations for OneIdentity Manager.
• Hands on work with Always On SQL clusters, backup/restore automation, and continuity runbooks.
• Using preferred connectors/APIs (e.g., OneIdentity Manager SNDO) for secure request ingestion and operational telemetry. Practical e
• posure to SoD simulations and coordination with business representatives under time pressure.

ING is launching the new member of ING Hubs in Spain, an integral part of ING in charge of designing and delivering important technological and operational solutions to make banking frictionless for our customers. ING Hubs play a key role in our 'Growing the difference' strategy to become the best European bank. This will be our sith global hub, joining a network of over 13,000 professionals in the Philippines, Poland, Romania, Slovakia, Türkiye and Spain. What makes us different? We have a tech-first mindset: We're not just a bank-we're a tech company that happens to do banking. Our new hub will be a center of ecellence for scalable, fast, and secure technology. We have global impact: You'll be working on solutions that serve more than 34 million of customers in over 38 countries. We are agile: ING was the first bank to adopt agile at scale. We continue to evolve with a collaborative, cross-functional way of working. Sustainability at the heart of what we do: We have a role to play in defining new ways of doing business that align economic growth with positive environmental and social impact. At ING, we believe in diversity, inclusion, and belonging. We're proud of our international teams and are committed to creating an environment where everyone can thrive. We value authenticity, collaboration, and continuous learning. We're looking for curious minds, bold builders, and passionate problem-solvers. If you're looking for a place to find new ways to drive efficiency and provide superior customer value, where your ideas matter, and where you can grow with purpose-we're looking forward to meeting you. Your place of work Eplore the area Questions? Just ask ING Recruitment team Bij ING willen we het beste uit mensen halen. Daarom hebben we een inclusieve cultuur waarin iedereen de kans krijgt om te groeien en een verschil te maken voor onze klanten en de samenleving. Diversiteit, gelijkheid en inclusie staan bij ons altijd voorop. We behan iedereen eerlijk, ongeacht leeftijd, geslacht, genderidentiteit, culturele achtergrond, ervaring, geloof, ras, etniciteit, beperking, gezinssituatie, seksuele geaardheid, sociale afkomst of wat dan ook. Heb je hulp nodig of kunnen we iets voor je doen tijdens je sollicitatie of gesprek? Neem dan contact op met de recruiter die bij de vacature vermeld staat. We werken graag samen met jou om het proces eerlijk en toegankelijk te maken. Lees hier meer over hoe wij staan voor diversiteit, inclusie en erbij horen.   You must create an Indeed account before continuing to the company website to apply