IAM Engineer

Key Responsibilities & Deliverables

• Your primary focus will be the build, deployment, and configuration of the core IAM platform.
• Platform Implementation: Complete baseline environment configuration for Ping Directory and Conductor One across Dev and Prod tiers using Terraform for configuration management.
• Workforce Automation: Integrate HRIS (Workday) with the IGA platform to automate Joiner-Mover-Leaver (JML) processes.
• Technical Connectivity: Build and validate production-ready connectors for the core ecosystem, such as: Okta, AWS, Google, Slack, and custom connectors.
• Define Access Reviews, provisioning flows, approval workflow etc.
• Operational Readiness: Define and execute technical test plans, draft formal procedural documentation for audits, and create system runbooks for the operations team.

• Identity Expertise: Expert-level knowledge of at least one major Cloud Identity Provider (AWS IAM, Azure) and core protocols including SAML, OAuth 2.0, OIDC, SCIM, and LDAP.
• Modern Principles: Deep understanding of Zero Trust principles and access models such as RBAC, ABAC, and PBAC.
• Ability to develop code in either Python or Go.

Technical Skills (Must-Have)

• IGA/PAM: Experience with Conductor One, SailPoint, Saviynt or similar platforms.
• Directory Services: Hands-on experience with Ping Directory or similar LDAP solutions.
• Cloud Infrastructure: Understanding of AWS cloud infrastructure and security concepts. Comfortable with Kubernetes and Infrastructure-as-Code (IaC) such as Terraform and Helm and CI/CD platforms such as ArgoCD.
• Experience with scripting and development of tooling in Python or Go.