IAM Engineer

This is a fully remote position, open to applicants in Brazil.

📋 Description

• Create, develop, and implement automated workflows for the full identity lifecycle, encompassing user onboarding, offboarding, and role transitions (joiner-mover-leaver).

• Leverage scripting languages (such as PowerShell and Python) and API integrations to effectively link HR systems, Active Directory, cloud platforms (including Okta and Azure AD), and various target applications.

• Design and maintain automation scripts that address common access requests, thereby minimizing manual intervention and enhancing fulfillment times.

• Evaluate existing manual processes to identify significant automation opportunities and facilitate their execution.

• Collaborate closely with business units, application owners, and IT stakeholders to assess user requirements and develop a comprehensive and detailed RBAC model.

• Create, test, and deploy roles that comply with the "least privilege" principle required for specific job functions.

• Establish procedures for maintaining and regularly recertifying roles to guarantee ongoing relevance, accuracy, and compliance with security standards.

• Examine the current IAM ticket queue and operational data to identify the most frequent and time-consuming manual tasks suitable for automation.

• Design and implement user-friendly self-service features, allowing users to request access to common applications through a service catalog with automated approval workflows.

• Continuously enhance and streamline IAM processes to facilitate access reviews, certifications, and overall access management workflows.

• Investigate and assess possibilities to utilize AI and machine learning (ML) for improved IAM functionalities, including anomaly detection in access patterns, predictive analytics for access reviews, or intelligent automation of complex identity tasks.

• Contribute to the design and implementation of AI/ML models aimed at enhancing security posture and operational efficiency within IAM.

• Stay updated on AI advancements in cybersecurity and identity management.

• Ensure that automated solutions and RBAC models bolster security posture and support compliance with regulatory frameworks (e.g., GDPR, HIPAA, SOX).

• Assist with audit requests by providing automated evidence and reporting related to identity and access management controls.

• Offer expert advice to business and technology stakeholders on IAM best practices, automation potentials, and the advantages of a well-organized access ecosystem.

• Collaborate with other IT teams to integrate IAM solutions into the broader enterprise architecture.

⛳️ Requirements

• Bachelor's degree in Computer Science, Information Technology, or a related field, or equivalent practical experience.

• Demonstrated experience as an IAM Engineer or in a comparable role with a strong emphasis on automation and integration.

• Proficiency in scripting languages like PowerShell, Ansible, and/or Python for automation and API interactions.

• Experience with enterprise-level IAM solutions beyond basic administration (e.g., SailPoint IIQ, Okta Identity Cloud, Azure AD Identity Governance).

• Solid understanding of Active Directory, LDAP, and enterprise identity stores.

• Proven experience with RESTful APIs for integration purposes.

• Strong analytical and problem-solving abilities with a proactive approach to identifying and addressing issues.

• Excellent written and verbal communication skills, capable of conveying complex technical concepts to both technical and non-technical audiences.

• Ability to work independently and collaboratively in a fast-paced, dynamic environment.

• Deep understanding and practical experience with authentication and authorization protocols (e.g., SAML, OAuth, OIDC, SCIM) is a plus.

• Experience in designing and implementing self-service portals and automated approval workflows within an IAM context is a plus.

• Familiarity with cloud security concepts and identity management in public cloud environments (AWS, Azure, GCP) is a plus.

• Experience with DevOps practices and CI/CD pipelines in an IAM context is a plus.

• Exposure to or foundational understanding of AI/ML concepts and their application in security or automation is a plus.

• Experience with data analysis tools or platforms relevant to AI/ML model development is a plus.

🏝️ Benefits

• Offering comprehensive and market-competitive benefits, our offerings are designed to support your personal and professional well-being.