Key skills
AzureVaultIAMAzure ADEntra IDOAuthSAML
About this role
Role: IAM Engineer
Location: Remote
Can do Only W2, No C2C
Job Description:
- We are seeking a Team Lead IAM Engineer with strong experience in Microsoft Entra ID (Azure AD) and CyberArk Privileged Access Management.
Responsibilities:
- Identity & Access Management (Microsoft Entra ID / Azure AD)Experience implementing Microsoft Entra ID solutions.
- Design and enforce Conditional Access, MFA, password less authentication, and device-based access.
- Integrate internal and third-party applications using SAML, OAuth 2.0, OIDC.
- Implement identity lifecycle (JML), RBAC, access reviews, and entitlement management.
- Maintain role-based access control (RBAC) aligned with least privilege principles.
- Support IAM integrations with CyberArk PAM, DLP, and security platforms where applicable.
- Troubleshoot complex sign in, token, MFA, PRT, and policy enforcement issues with minimal user disruption.
- Privileged Access Management (CyberArk PAM).
- Hands on deployment and administration of CyberArk components: Vault, PSM, CPM, Secrets Management.
- Onboard privileged accounts across servers, databases, network, cloud, and service identities.
- Enforce least privilege, credential rotation, session recording, and approval workflows.
- Integrate CyberArk with Microsoft Entra ID for identity driven privileged access.
- Monitor privileged access activity and investigate suspicious or non-compliant usage.
- Support PAM audits, regulatory reviews, and emergency access scenarios (break glass)
Governance, Compliance & Risk. - Implement IAM and PAM controls aligned with financial services regulatory expectations and Internal risk & audit frameworks.
- Support audits and compliance reviews (e.g., access evidence, privileged access reports).
Best Regards:
Lucy Rose
Phone:
Email: