IAM Engineer

SmartChoice International Limited
Liverpool, United Kingdom
8 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Senior

Job location

Liverpool, United Kingdom

Tech stack

Artificial Intelligence
Computing Platforms
Authentication Protocols
Cloud Engineering
Multi-Factor Authentication
Identity and Access Management
OAuth
OpenID
Ping (Networking Utility)
Openid Connect
Azure
Security Assertion Markup Language (SAML)
Single Sign-On
User Provisioning Software
Okta
Cyberark
Customer Identity Access Management

Job description

We are seeking an experienced IAM Engineer to support and secure access management for AI-driven development platforms, including Claude Code. This role will be responsible for designing, implementing, and governing identity controls that ensure users and services receive appropriate access throughout their lifecycle while maintaining strong security and compliance standards, * Configure and manage authentication mechanisms such as Single Sign-On (SSO) and Multi-Factor Authentication (MFA) through enterprise identity providers

  • Develop and maintain role-based access models to ensure users have appropriate permissions based on their responsibilities
  • Administer privileged access controls and safeguard administrative functions within AI development environments
  • Perform periodic access certification reviews, identify excessive permissions, and coordinate remediation activities
  • Oversee provisioning, modification, and de-provisioning processes for user and service accounts
  • Manage identity requirements for automated workflows, CI/CD pipelines, and integrations involving AI agents and services
  • Investigate and respond to identity-related security incidents, including unauthorized access attempts and compromised accounts
  • Collaborate with security, platform, and engineering teams to strengthen access governance and align with least-privilege principles

Requirements

  • Minimum 4 years of experience in Identity and Access Management (IAM), Identity Security, or related cybersecurity function
  • Hands-on expertise with enterprise identity platforms such as Okta, Microsoft Entra ID (Azure AD), or Ping Identity
  • Strong understanding of authentication and authorization standards, including SAML 2.0, OAuth 2.0, and OpenID Connect (OIDC)
  • Experience implementing and supporting Privileged Access Management (PAM) solutions such as CyberArk or BeyondTrust
  • Practical knowledge of access governance, entitlement management, and role engineering methodologies
  • Familiarity with automated user provisioning and lifecycle management using SCIM

Preferred Qualifications

  • Exposure to Customer Identity and Access Management (CIAM) or developer-focused identity solutions.
  • Understanding of modern security concepts such as Zero Standing Privilege (ZSP) and Just-in-Time (JIT) access
  • Relevant certifications such as Microsoft SC-300, Okta Certified Professional
  • Experience supporting access controls within cloud-native or AI-enabled environments is a plus.

Apply for this position