IAM Engineer

At Eneco, we're building the infrastructure for a climate-neutral future - not just talking about it. Our One Planet strategy is one of Europe's boldest commitments to electrification, eliminating fossil fuels, and scaling solutions like green hydrogen and geothermal energy.

Smart digital architecture is inseparable from that mission. Identity and access management is a critical part of that foundation - ensuring the right people have the right access at the right time, securely and at scale.

This isn't just a job - it's a chance to apply real engineering expertise to systems that directly support the energy transition.

Access decisions happen thousands of times a day at Eneco. A data scientist needs access to a dataset. An engineer logs in from a remote solar site. A contractor joins for three months and needs to be offboarded cleanly. When it works well, no one notices. When it doesn't, it becomes a compliance issue, a security risk - or both.

As IAM & Identity Governance Engineer, you design and operate the systems that make access reliable, auditable, and automated across a complex IT and OT landscape. You work closely with engineering, HR, and business stakeholders as part of the Workplace & Identity Governance team, with a clear mandate to improve - not just maintain.

• Designing and operating Identity Governance & Administration (IGA) solutions, primarily using SailPoint
• Integrating applications and systems (cloud and on-prem) through APIs, connectors, and workflows
• Owning joiner, mover, and leaver processes end-to-end, driving automation and reducing manual risk
• Implementing and improving RBAC models, role mining, and lifecycle policies
• Running access reviews and recertification campaigns and strengthening segregation of duties controls
• Supporting compliance with ISO 27001, J-SOX, and NIS2 by embedding controls into the system design
• Improving IAM processes, usability, and scalability across the organization
• Supporting incident response and resolving identity-related issues

You're an engineer who finds clarity in structure and satisfaction in systems that work - even when no one is watching. And you think in access models, not just access requests. Automation comes naturally to you, and you design processes that scale instead of relying on manual workarounds.

• Bachelor's degree in IT, Cybersecurity, or a related field (or equivalent experience)
• 3-7+ years of experience in IAM / IGA engineering in enterprise environments
• Hands-on experience with SailPoint (other IGA platforms are a plus)
• Strong knowledge of identity lifecycle management, access governance, and RBAC/ABAC models
• Experience with directory services (Entra ID, Active Directory, LDAP)
• Experience integrating systems via APIs, connectors, or custom workflows
• Scripting skills (PowerShell, Python, or Java) for automation and integration
• Familiarity with cloud environments (Azure or AWS)
• Understanding of compliance frameworks such as ISO 27001, J-SOX, or NIS2

You'll join Eneco's Digital & Tech domain, working within the Workplace & Identity Governance capability.

The work you do behind the scenes has real-world consequences - from enabling access to critical data to ensuring secure operations across renewable energy assets.

You'll be based at our Rotterdam HQ with flexible hybrid working and the autonomy to shape how you deliver your impact.

Would you like to learn more about this vacancy? For more information about the role or the application process, please contact our recruiter Donja Huidar via donja.huidar@eneco.com.

Message for agencies

We fill our vacancies through our own recruitment efforts. Acquisition based on this vacancy is therefore not appreciated.

• Own the logic that decides who gets access to what - and make sure it scales
• Work on enterprise-scale identity governance across IT and OT landscapes
• Build automated, auditable systems that reduce risk and enable the business

• Bachelor's degree in IT, Cybersecurity, or a related field (or equivalent experience)
• 3-7+ years of experience in IAM / IGA engineering in enterprise environments
• Hands-on experience with SailPoint (other IGA platforms are a plus)
• Strong knowledge of identity lifecycle management, access governance, and RBAC/ABAC models
• Experience with directory services (Entra ID, Active Directory, LDAP)
• Experience integrating systems via APIs, connectors, or custom workflows
• Scripting skills (PowerShell, Python, or Java) for automation and integration
• Familiarity with cloud environments (Azure or AWS)
• Understanding of compliance frameworks such as ISO 27001, J-SOX, or NIS2

You'll join Eneco's Digital & Tech domain, working within the Workplace & Identity Governance capability.

The work you do behind the scenes has real-world consequences - from enabling access to critical data to ensuring secure operations across renewable energy assets.

At Eneco, we're building the infrastructure for a climate-neutral future - not just talking about it. Our One Planet strategy is one of Europe's boldest commitments to electrification, eliminating fossil fuels, and scaling solutions like green hydrogen and geothermal energy. Smart digital architecture is inseparable from that mission. Identity and access management is a critical part of that foundation - ensuring the right people have the right access at the right time, securely and at scale. This isn't just a job - it's a chance to apply real engineering expertise to systems that directly support the energy transition. Access decisions happen thousands of times a day at Eneco. A data scientist needs access to a dataset. An engineer logs in from a remote solar site. A contractor joins for three months and needs to be offboarded cleanly. When it works well, no one notices. When it doesn't, it becomes a compliance issue, a security risk - or both.