Position Summary
We are seeking an experienced
PlainID Engineer
to lead the design, implementation, and support of
authorization and access policy solutions
using
PlainID’s Policy-Based Access Control (PBAC)
platform. The ideal candidate will have deep expertise in
identity governance
,
authorization frameworks
, and
Azure or hybrid cloud architectures
. This role involves working closely with security architects, IAM teams, and application owners to modernize and standardize enterprise access control strategies.
Key Responsibilities
- p]:pt-0 [&>p]:mb-2 [&>p]:my-0">
PlainID Implementation & Configuration
Design, configure, and maintain authorization policies, entitlements, and rule hierarchies within the
PlainID Policy Manager
.
- p]:pt-0 [&>p]:mb-2 [&>p]:my-0"> Develop and maintain PBAC (Policy-Based Access Control) configurations aligned with business and compliance requirements.
- p]:pt-0 [&>p]:mb-2 [&>p]:my-0"> Support the migration of PlainID from on-premises to hybrid/cloud (v4 to v5) environments, ensuring scalability and reliability.
- p]:pt-0 [&>p]:mb-2 [&>p]:my-0">
Integration & Development
Integrate PlainID with key platforms like
Azure AD, SailPoint, Okta, Salesforce, and custom applications
.Develop, deploy, and support REST APIs, SDKs, and connectors for seamless enforcement of authorization and access logic.
- p]:pt-0 [&>p]:mb-2 [&>p]:my-0">
Policy Governance & Management
Implement policy lifecycle processes, including policy modeling, simulation, testing, approval workflows, and change control.Build centralized authorization reports and dashboards for audit, compliance, and analytics.
- p]:pt-0 [&>p]:mb-2 [&>p]:my-0">
Access Management & Security Enhancements
Define fine-grained access controls, roles, and attributes to strengthen
Zero Trust and least privilege
models.Collaborate with IAM and security engineering teams to enforce
Access by Design (AbD)
and
Privacy by Design (PbD)
principles.
- p]:pt-0 [&>p]:mb-2 [&>p]:my-0">
Monitoring & Support
Establish monitoring, alerting, and incident response mechanisms for
PlainID
and integrated IAM components.Troubleshoot and resolve performance, configuration, or integration issues related to authorization systems.
- p]:pt-0 [&>p]:mb-2 [&>p]:my-0">
Documentation & Knowledge Sharing
Maintain detailed documentation including design specifications, configuration guides, and operational procedures.Provide training and mentorship to team members on PlainID use cases and policy management best practices.
Technical Expertise
Skills & Experience Required
- p]:pt-0 [&>p]:mb-2 [&>p]:my-0"> 8+ years of experience in Identity & Access Management (IAM), with at least 3+ years working hands-on with PlainID PBAC platform.
- p]:pt-0 [&>p]:mb-2 [&>p]:my-0"> Strong understanding of authorization frameworks: ABAC, RBAC, PBAC, and Zero Trust architecture.
- p]:pt-0 [&>p]:mb-2 [&>p]:my-0"> Experience in integrating PlainID with enterprise IAM platforms (e.g., SailPoint, Azure AD/Entra, Okta).
- p]:pt-0 [&>p]:mb-2 [&>p]:my-0"> Proficiency in REST APIs, JSON, OAuth2, OpenID Connect, and SAML standards.
- p]:pt-0 [&>p]:mb-2 [&>p]:my-0"> Hands-on experience with scripting and programming in Python, PowerShell, or Java for automation or integration.
- p]:pt-0 [&>p]:mb-2 [&>p]:my-0"> In-depth knowledge of Azure cloud, hybrid cloud architectures, and DevOps practices (CI/CD pipelines).
- p]:pt-0 [&>p]:mb-2 [&>p]:my-0"> Familiarity with OneTrust, Collibra, or other data/privacy governance tools is advantageous.
Functional & Domain Knowledge
- p]:pt-0 [&>p]:mb-2 [&>p]:my-0"> Expertise in policy governance, access risk modeling, and compliance frameworks (GDPR, ISO 27001, SOX).
- p]:pt-0 [&>p]:mb-2 [&>p]:my-0"> Experience in implementing fine-grained access controls, reporting, and recertification automation.
- p]:pt-0 [&>p]:mb-2 [&>p]:my-0"> Understanding of directory services, identity federation, and entitlement management concepts.
Soft Skills
- p]:pt-0 [&>p]:mb-2 [&>p]:my-0"> Strong analytical, troubleshooting, and problem-solving abilities.
- p]:pt-0 [&>p]:mb-2 [&>p]:my-0"> Excellent communication and cross-functional collaboration skills.
- p]:pt-0 [&>p]:mb-2 [&>p]:my-0"> Strong documentation, stakeholder management, and project delivery experience.
Qualifications
- p]:pt-0 [&>p]:mb-2 [&>p]:my-0"> Bachelor’s or Master’s degree in Computer Science, Information Security, or a related field.
- p]:pt-0 [&>p]:mb-2 [&>p]:my-0"> 8+ years of overall experience in IAM/Access Control engineering and solution delivery.
- p]:pt-0 [&>p]:mb-2 [&>p]:my-0">
Certifications Preferred
- p]:pt-0 [&>p]:mb-2 [&>p]:my-0"> PlainID Certified Engineer (if available)
- p]:pt-0 [&>p]:mb-2 [&>p]:my-0"> Microsoft Certified: Azure Solutions Architect / Azure Security Engineer
- p]:pt-0 [&>p]:mb-2 [&>p]:my-0"> Certified Identity & Access Manager (CIAM) or CISSP
Skills: iam,pbac,sailpoint,gdpr compliance,powershell,plain id,python,azure ad
