Identity Management Consultant

Senior Identity and Access Management (IAM) Engineer

We are seeking a highly skilled Senior IAM Engineer Consultant to lead the design, implementation, and management of our client's Identity and Access Management solutions. This role is crucial for ensuring secure access to enterprise systems, enforcing security policies, and driving IAM strategy across the organization.

This is a remote opportunity, however consultant will be required to go to office from time to time for meetings.

Key Responsibilities

• IAM Architecture & Implementation: Design, deploy, and manage IAM solutions including Single Sign-On (SSO), Multi-Factor Authentication (MFA), Privileged Access Management (PAM), Role-Based Access Control (RBAC), using platforms such as SailPoint, Okta, RSA SecurID Suite, CyberArk, and Microsoft 365.
• Identity Governance & Administration: Develop policies for identity lifecycle management and ensure compliance with organizational standards.
• Access Control & Authorization: Implement least privilege access principles along with Just-in-Time access controls.
• Directory Services & Federation: Manage directory services like Active Directory and Azure AD; integrate federation protocols such as SAML and OAuth.
• Cloud Security: Secure cloud platform access across AWS, Azure, Google Cloud by ensuring proper identity federation.
• Compliance & Audits: Ensure compliance with regulations like SOX; conduct risk assessments to maintain security posture.
• Incident Response: Collaborate on detecting and resolving IAM-related incidents.
• Automation & Scripting: Use tools like PowerShell or Python for automating processes.

Required Skills

• 5 years of experience in IAM engineering or related fields
• Strong expertise in SailPoint IIQ/IdentityNow for governance
• Okta for Single Sign-On
• RSA SecurID Suite for authentication
• CyberArk for Privileged Access Management
• Microsoft 365 integration capabilities
• Knowledge of authentication protocols (e.g., Kerberos) and federation standards (e.g., OpenID Connect)
• Experience with cloud environments such as AWS IAM or Azure AD B2C/B2B scenarios
• Familiarity with NIST frameworks; regulatory requirements like GDPR/SOX compliance
• Proficiency in scripting languages such as PowerShell or Python
• Understanding of Zero Trust principles

Preferred Qualifications

Certifications like CISSP/CISM are beneficial.

Experience integrating DevSecOps practices into CI/CD pipelines is also desirable.

This role offers a challenging opportunity to leverage your technical expertise while contributing significantly to our organization's digital transformation journey. If you have a passion for innovative security solutions combined with strong collaboration skills—apply now!