IAM / Zero Trust Cybersecurity Engineer

Key Responsibilities

• Design and deploy least‑privilege access models, role‑based access control (RBAC), and privileged access management (PAM) solutions.
• Configure and manage Entra ID / Azure AD, conditional access policies, and integrations with identity providers (SAML, OIDC, OAuth).
• Implement multi‑factor authentication (MFA) and Zero Trust controls across cloud, network, endpoint, and application layers.
• Conduct IAM discovery, gap analysis, and validation activities, producing detailed documentation and compliance reports.
• Collaborate with the cybersecurity engineering team to integrate identity controls into CI/CD pipelines and incident response processes.

Requirements

• 5+ years of experience in identity and access management, preferably with Azure AD/Entra ID.
• Strong knowledge of Zero Trust principles, RBAC, PAM, MFA, and identity federation standards (SAML, OIDC, OAuth).
• Hands‑on experience scripting automation (PowerShell, Python) for provisioning and policy enforcement.
• Demonstrated ability to design, document, and validate security controls in complex, multi‑cloud environments.
• Relevant certifications (e.g., Azure Security Engineer, CISSP, CCSP) are a plus.