IAM Engineer
SmartChoice International Limited
Liverpool, United Kingdom
8 days ago
Role details
Contract type
Permanent contract Employment type
Full-time (> 32 hours) Working hours
Regular working hours Languages
English Experience level
SeniorJob location
Liverpool, United Kingdom
Tech stack
Artificial Intelligence
Computing Platforms
Authentication Protocols
Cloud Engineering
Multi-Factor Authentication
Identity and Access Management
OAuth
OpenID
Ping (Networking Utility)
Openid Connect
Azure
Security Assertion Markup Language (SAML)
Single Sign-On
User Provisioning Software
Okta
Cyberark
Customer Identity Access Management
Job description
We are seeking an experienced IAM Engineer to support and secure access management for AI-driven development platforms, including Claude Code. This role will be responsible for designing, implementing, and governing identity controls that ensure users and services receive appropriate access throughout their lifecycle while maintaining strong security and compliance standards, * Configure and manage authentication mechanisms such as Single Sign-On (SSO) and Multi-Factor Authentication (MFA) through enterprise identity providers
- Develop and maintain role-based access models to ensure users have appropriate permissions based on their responsibilities
- Administer privileged access controls and safeguard administrative functions within AI development environments
- Perform periodic access certification reviews, identify excessive permissions, and coordinate remediation activities
- Oversee provisioning, modification, and de-provisioning processes for user and service accounts
- Manage identity requirements for automated workflows, CI/CD pipelines, and integrations involving AI agents and services
- Investigate and respond to identity-related security incidents, including unauthorized access attempts and compromised accounts
- Collaborate with security, platform, and engineering teams to strengthen access governance and align with least-privilege principles
Requirements
- Minimum 4 years of experience in Identity and Access Management (IAM), Identity Security, or related cybersecurity function
- Hands-on expertise with enterprise identity platforms such as Okta, Microsoft Entra ID (Azure AD), or Ping Identity
- Strong understanding of authentication and authorization standards, including SAML 2.0, OAuth 2.0, and OpenID Connect (OIDC)
- Experience implementing and supporting Privileged Access Management (PAM) solutions such as CyberArk or BeyondTrust
- Practical knowledge of access governance, entitlement management, and role engineering methodologies
- Familiarity with automated user provisioning and lifecycle management using SCIM
Preferred Qualifications
- Exposure to Customer Identity and Access Management (CIAM) or developer-focused identity solutions.
- Understanding of modern security concepts such as Zero Standing Privilege (ZSP) and Just-in-Time (JIT) access
- Relevant certifications such as Microsoft SC-300, Okta Certified Professional
- Experience supporting access controls within cloud-native or AI-enabled environments is a plus.