Identity and Access Management Engineer

This is a fully remote position, open to applicants in Malaysia.

📋 Description

• Ensure the security, compliance, and auditability of user identities, authentication methods, and access entitlements.

• Supervise and manage access to essential environments, such as product back offices, payment gateways, and enterprise applications.

• Oversee IP address whitelisting for product providers and payment gateways.

• Facilitate secure access by implementing governance, monitoring, and enforcement of security policies using DLP, CASB, PIM, and PAM solutions.

• Administer user accounts, roles, and permissions across various systems.

• Conduct regular reviews and audits of user access to ensure compliance with internal and regulatory standards.

• Integrate IAM systems with HRIS, directory services, and cloud identity providers.

• Work collaboratively with network and application teams to resolve access connectivity issues.

• Perform regular reviews of privileged accounts and implement necessary access remediation measures.

• Assist with IAM integrations for SaaS platforms and troubleshoot authentication and access-related challenges.

⛳️ Requirements

• Bachelor’s degree in Information Security, Computer Science, or a related field (or equivalent practical experience).

• In-depth knowledge of Active Directory, Azure AD, Okta, or similar IAM platforms.

• Experience with PIM/PAM solutions (e.g., CyberArk, BeyondTrust, Azure PIM).

• Familiarity with DLP and CASB technologies (e.g., Proofpoint).

• Understanding of authentication protocols such as SAML, OAuth, OIDC, and MFA.

• Experience in managing IP whitelisting and firewall access controls in cloud and hybrid environments.

• 5 to 7 years of practical experience in Identity and Access Management or related security fields.

• Strong grasp of IAM concepts (authentication, authorization, federation, identity lifecycle).

• Proficient in Microsoft Entra ID (Azure AD), Conditional Access, and identity protection features.

• Knowledge of directory services (e.g., Active Directory, LDAP).

• Familiarity with identity governance and administration (IGA) practices.

• Capability to analyze access risks and implement suitable controls.

• Excellent analytical and troubleshooting abilities.

• Understanding of Zero Trust architecture and security best practices.

• High attention to detail and a strong sense of accountability.

• Exceptional communication and documentation skills.

• Ability to manage sensitive and confidential access information.

• Detail-oriented and process-driven, focusing on operational excellence.

• Collaborative approach, capable of working effectively across technical and business teams.

• High integrity and commitment to maintaining confidentiality and compliance.

• Preferred Skills: Experience integrating IAM with CSP (AWS, Azure, AliCloud) or other tools (e.g., GitHub). Working knowledge of automation and scripting (Python, PowerShell, or Bash) for access management. Scripting or automation experience (PowerShell, workflows) is a plus. Familiarity with compliance frameworks (ISO 27001, PCI DSS, GDPR). Industry certifications such as CISSP, CISM, Microsoft Certified: Identity and Access Administrator, or CyberArk Defender.

🏝️ Benefits

• Comprehensive health insurance

• Wellness initiatives

• Resources for physical and mental well-being

• Employee benefits and advantages

• Flexible working options

• Career advancement and development programs

• Team-oriented and inclusive workplace

• Regular team events and social activities