Senior IAM Engineer

Role:

Overview

CyberArk Cloud PAM, Azure AD, and Okta

The IAM Senior Engineer will ensure secure, compliant, and efficient access across the organization while maintaining consistency, adherence to standards, and seamless integration with enterprise applications and infrastructure.

Key Responsibilities

CIAM (Customer Identity & Access Management)

• Design and implement CIAM platforms leveraging solutions such as

  Azure AD B2C

  and

  Okta

  .
• Configure and support

  MFA, SSO, Conditional Access, RBAC, and risk-based authentication

  for large-scale customer environments.
• Develop automation and scripting for

  user lifecycle management, directory synchronization, and identity verification workflows

  .
• Implement fraud prevention controls and identity verification algorithms.
• Integrate CIAM platforms with enterprise and SaaS applications via

  APIs, OAuth, OpenID Connect, and SAML

  .

PAM (Privileged Access Management – CyberArk)

• Engineer, configure, and manage

  CyberArk Cloud PAM

  solutions, ensuring secure management of privileged accounts across servers, databases, and applications.
• Automate onboarding of privileged accounts and endpoints.
• Monitor and analyze privileged session activity to ensure compliance with security policies.
• Implement

  certificate management, secrets management, and password rotation policies

  .
• Collaborate with infrastructure and application teams to integrate CyberArk into enterprise environments.

Integration, Security & Compliance

• Develop and maintain

  automation scripts

  (Java, PowerShell, Python) to improve CIAM and PAM processes.
• Ensure IAM solutions comply with

  SOX, PCI, GDPR, and other regulatory frameworks

  .
• Support audit, logging, and monitoring policies across CIAM and PAM platforms.
• Participate in

  change management, incident response, and 24/7 global support rotations

  .

Collaboration & Leadership

• Partner with IAM architects, DevOps, and cloud teams to support

  CI/CD pipelines

  for IAM deployments.
• Provide mentorship to junior engineers and act as a subject-matter expert for IAM initiatives.
• Participate in Agile ceremonies, managing deliverables and aligning with IAM strategy and roadmap.

Qualifications & Skills

• Experience:

  6–8 years in IAM with expertise in both

  CIAM

  (Azure AD, Okta) and

  PAM

  (CyberArk Cloud PAM).

• Authentication & Access:

  Strong knowledge of MFA, SSO, RBAC, Conditional Access, OAuth, OpenID, SAML, and REST APIs.

• Privileged Access:

  Proven hands-on experience with CyberArk PAM for securing privileged accounts, secrets management, and certificate lifecycle management.

• Scripting & Automation:

  Strong coding skills in

  Java, PowerShell, Python

  ; experience with

  Ansible or Chef

  for automation.

• Cloud & Integrations:

  Familiarity with cloud platforms (Azure, AWS, GCP) and SaaS integrations.

• Security & Compliance:

  Experience implementing audit, compliance, fraud prevention, and identity verification solutions.

• Methodology:

  Strong background in Agile and DevOps practices.