Identity Access Management Systems Engineer

Job Description

Werelooking for an experiencedIdentity Access Management (IAM) Systems Engineerto join our IAM team in Pune India as theLeadEngineersupporting the regional Identity function. You willbe responsible forexpanding the capabilities of our customer and enterprise identity experience while also helping drive adoption of security best practices throughout SAS.

This position supports the Identity & Access Management Program along with processes and technologies related to thoseservices andplays a key role in building engineering depth by partnering with and upskilling our Identity Analyst community.

Primary Responsibilities

• Represent the IAM Program with subject matterexpertisein federation services/single sign-on multi-factor authentication user access automation and identity governance.
• Configure and manage Active Directory Microsoft Entra ID (Azure) Okta and other directory services and cloud identity systems. Provide operational support for these platforms.
• Implement and support SSO federations for both internal and external customer environments.
• Partners with identity architectsand other engineers to integrate applications within reference architecture by providing technical requirements implementation services and operational support.
• Deliver excellent customer service using a customer first and continuous improvement mindset.
• Ensures all applicablesecuritypolicies andprocessesare followed to support the organizations secure software development goals.
• Worka schedule that overlaps with EMEA business hours as needed tofacilitateknowledge transfer operational continuity and collaboration across US and EMEA based stakeholders.
• Develop document and deliver enablement (training runbooks and coaching) to upskill Identity Analysts to better support engineering needs in the region (e.g. onboarding access automation SSO/MFA integrations and platform hygiene).
• Leverage AI-assisted tooling (e.g. copilots code assistants and AI-enabled automation) to accelerate identity platform enhancements improve operational efficiency and supplement team capabilities whilemaintainingstrong security and governance practices.

Requirements

(Explain the technical areas/skills required for hiring)

Essential

• Yourecurious passionate authentic and accountable. These are our values and influence everything we do.
• 5 years ofIdentity & Access Management or Securityexperience
• 3 years of direct experience with administering federation and SSO technology and participation in designing and executing SSO implementation processes.
• Deep expertise offederated identity systems directory services role-based access control multi-factor authentication and SSO (including modern authentication and authorization standards and protocols such as SAML OIDC SCIM and LDAP).
• IndependentadministrationofAzure cloud platform managing applications using app registration and admin consent defining conditional access policies and applying security configuration settings.
• Independent experience with IAM disciplines including conditional access managed workflows and task auditability (monitoring andalerting forchanges to accounts and resources).
• Ability to work with regular overlaps into EMEA business hours to support cross-region collaboration and knowledge transfer.
• Demonstrated ability to develop others through mentoring training and documentation; experience enablinganalystor operations teams to support engineering outcomes.
• Familiarity with AI tools used for engineering productivity and automation (e.g. copilots prompt-driven workflow automation or AI-enabled scripting) and the judgment to apply them securely in an enterprise environment.

Additional

• Ability to prioritize and deliver multiple initiatives simultaneously.
• Strong customer service mindset with a focus on business outcomes.
• Proven ability to lead technical discussions and stakeholder meetings.
• Strong analytical & problem-solving skills.

Preferences

• Experience with setup and administration of identity and access management on multiple major cloud providers like AWSAzureand GCP.
• Experience with scripting (PowerShell or others) and simple programming to automate repetitive tasks and processes.
• Familiarity with Privilege Access Management systems for secrets management.
• Experience building internal tools or automations using scripting and/or AI-assisted development (e.g. GitHub Copilot Microsoft Copilot ChatGPT-style assistants) to improve identity operations and user experience.
• Experience with technical documentcreation.

Mandatory Technical Skills

Administration of Federation and SSO technology

Total Years of Relevant Experience

5 years ofIdentity & Access Management or Securityexperience

Education Preference

Bachelors / masters degree in computer science Engineering or a related quantitative field

Equivalentcombination of related education training and experience may be considered in place of the above qualifications.