Identity & Access Management (IAM) Engineer

Position Summary
We are seeking a highly skilled and motivated IAM Engineer to join the cybersecurity team at a leading
alternative investment firm. This role is responsible for designing, implementing, and maintaining
enterprise-wide identity and access management solutions, with a strong focus on Identity Governance
& Administration (IGA), Access Management, and Privileged Identity Management (PIM).
Key Responsibilities
Identity Governance & Administration (IGA)
• Design, implement, and maintain IGA solutions to manage the full identity lifecycle.
• Lead and support SailPoint implementations and integrations.
• Develop and enforce RBAC and ABAC models.
• Automate identity workflows and approvals.
• Conduct periodic access reviews and audits.
Access Management
• Implement and manage SSO, MFA, and federation services.
• Integrate access management solutions with cloud and on-prem applications.
• Define authentication and authorization policies.
• Monitor and respond to access anomalies.
Privileged Identity Management (PIM)
• Deploy and manage PIM solutions for privileged accounts.
• Enforce least-privilege and JIT access models.
• Monitor privileged sessions and audit logs.
• Perform segregation of duties reviews.
Required Qualifications
• 3–5+ years of IAM or cybersecurity experience.
• Hands-on experience with SailPoint (IdentityIQ / IdentityNow).
• Experience with Saviynt, Okta, CyberArk, Azure AD, or similar.
• Strong knowledge of IAM protocols and frameworks.
• PowerShell automation experience; Python preferred.
Preferred Qualifications
• IAM or cloud security certifications.
• Cloud IAM experience (Azure, AWS, GCP).
• DevSecOps and CI/CD integration exposure