IAMIGA Engineer

Role Overview

The IAM/IGA Engineer is responsible for designing implementing supporting and maintaining identity security solutions that ensure secure access to enterprise resources. This role focuses on identity lifecycle management privileged access management and governance processes across hybrid environments. Level 3 Engineering and Support escalations will also be handled by this position.

Key Responsibilities

• Identity Lifecycle Management
  • Implement and manage provisioning de-provisioning and access certification processes.
  • Support joiner/mover/leaver workflows and self-service access requests.
• Authentication & Authorization
  • Configure and maintain Entra ID (Azure AD) for hybrid identity scenarios.
  • Manage on-prem Active Directory and integrate with cloud identity solutions.
  • Develop and enforce Conditional Access Policies and MFA strategies.
• Identity Governance
  • Deploy and manage Saviynt IGA for access governance risk analytics and compliance.
  • Standardize identity governance across applications and business processes.
• Privileged Access Management
  • Implement and maintain CyberArk for vaulting password rotation and privileged session management.
  • Ensure compliance with least privilege principles and break-glass account policies.
• Automation & Integration
  • Develop PowerShell scripts for user provisioning group management and automation tasks.
  • Integrate IAM workflows with ServiceNow for access requests and approvals.
• Security & Compliance
  • Conduct regular access reviews and entitlement certifications.
  • Ensure adherence to IAM standards and regulatory requirements.
• Support & Engineering
  • Assist in resolving escalated support tickets that get routed to the IAM/IGA support queues.
  • Engineer and support identity object hygiene and cleanup efforts across AD/AAD.
• Special Projects
  • Support special projects that need IAM/IGA engineering resources.
  • Review and update design and support documentation.

Required Skills & Experience

• Strong knowledge of Entra ID (Azure AD) and hybrid identity management.
• Hands-on experience with on-prem Active Directory administration.
• Expertise in Saviynt IGA platform for identity governance.
• Proficiency in CyberArk for privileged access management.
• Familiarity with ServiceNow for IAM workflow integration.
• Advanced scripting skills in XML JSON APIs and PowerShell for automation.
• Understanding of RBAC ABAC and least privilege principles.
• Experience with compliance frameworks and audit processes.
• Proficiency at creating/reviewing/updating documentation and support articles.

Preferred Qualifications

• Certifications: Microsoft Certified - Identity and Access Administrator CyberArk Defender Saviynt Certified Professional.
• 5 years of IAM/IGA experience in large-scale enterprise environments with complex identity ecosyste