IAM Engineer

• Manage and configure how users authenticate into Google Cloud, including SSO and identity federation.
• Implement and enforce least-privilege access policies across cloud resources.
• Build automated provisioning workflows to assign permissions based on role or job title.
• Conduct regular audits of user permissions and remove outdated or unnecessary access.
• Collaborate with the Cloud Program Manager and Security teams to maintain a secure and compliant cloud environment.
• Document access policies, IAM structures, and governance processes.
• Identify and remediate any access gaps or security vulnerabilities.

• Strong understanding of identity and access management (IAM) concepts.
• Proficiency with Google Cloud IAM or similar cloud platforms.
• Experience with SSO, authentication flows, and identity federation.
• Familiarity with tools like Okta, Azure Active Directory, or Google Workspace.
• Excellent problem-solving skills for designing scalable, secure access models.
• High attention to detail and a strong security-first mindset.
• Effective communication skills for working with both technical and non-technical teams., * Experience managing user identities, roles, and access policies in a professional environment.
• Hands-on experience with Google Cloud IAM or equivalent cloud IAM systems.
• Understanding of RBAC (Role-Based Access Control) and automated access provisioning.
• Ability to analyze complex access structures and streamline them securely.
• Strong attention to detail with a proactive approach to security.
• Ability to work cross-functionally with engineering, IT, and leadership teams.
• Preferred: Experience with Okta, Azure AD, Google Workspace, or similar directory/IAM tools.

Capgemini provides compensation range information in accordance with applicable national, state, provincial, and local pay transparency laws. The base compensation range listed for this position reflects the minimum and maximum target compensation Capgemini, in good faith, believes it may pay for the role at the time of this posting. This range may be subject to change as permitted by law.

The actual compensation offered to any candidate may fall outside of the posted range and will be determined based on multiple factors legally permitted in the applicable jurisdiction.

These may include, but are not limited to: Geographic location, Education and qualifications, Certifications and licenses, Relevant experience and skills, Seniority and performance, Market and business consideration, Internal pay equity.

It is not typical for candidates to be hired at or near the top of the posted compensation range.

In addition to base salary, this role may be eligible for additional compensation such as variable incentives, bonuses, or commissions, depending on the position and applicable laws.

Capgemini offers a comprehensive, non-negotiable benefits package to all regular, full-time employees. In the U.S. and Canada, available benefits are determined by local policy and eligibility and may include:

• Paid time off based on employee grade (A-F), defined by policy: Vacation: 12-25 days, depending on grade, Company paid holidays, Personal Days, Sick Leave

• Medical, dental, and vision coverage (or provincial healthcare coordination in Canada)

• Retirement savings plans (e.g., 401(k) in the U.S., RRSP in Canada)

• Life and disability insurance

• Employee assistance programs

• Other benefits as provided by local policy and eligibility

Important Notice: Compensation (including bonuses, commissions, or other forms of incentive pay) is not considered earned, vested, or payable until it becomes due under the terms of applicable plans or agreements and is subject to Capgemini's discretion, consistent with applicable laws. The Company reserves the right to amend or withdraw compensation programs at any time, within the limits of applicable legislation.

Capgemini ist einer der weltweit führenden Anbieter von Management- und IT-Beratung, Technologie-Services und Digitaler Transformation. Als ein Wegbereiter für Innovation unterstützt das Unternehmen seine Kunden bei deren komplexen Herausforderungen rund um Cloud, Digital und Plattformen.