An enterprise organisation is seeking an IAM Engineer to join its cyber security and identity team. This role will play a key part in designing, integrating and maintaining Identity and Access Management solutions that underpin secure access. You will work across engineering, operations and stakeholder engagement, translating business requirements into scalable, automated and compliant IAM solutions.

Responsibilities

• Design, configure and implement IAM solutions with a focus on SailPoint IIQ and Entra ID
• Engineer automated Joiner, Mover and Leaver (JML) processes, Single Sign On (SSO) and User Access Reviews (UAR)
• Produce low‑level designs and contribute to solution documentation aligned to security standards
• Conduct peer reviews, quality assurance and acceptance testing to reduce operational risk
• Translate business and security requirements into technical specifications and solutions
• Support application onboarding for identity governance and privileged access management
• Participate in incident response, change management and occasional after‑hours support
• Collaborate with cyber security, infrastructure and application teams across the organisation

Requirements

• 3–4+ years of experience in Identity and Access Management engineering
• Hands‑on experience with SailPoint IIQ or IdentityNow, Entra ID and Microsoft Active Directory
• Strong understanding of IAM concepts including lifecycle management, access governance and RBAC
• Proven experience onboarding applications to IAM platforms
• Working knowledge of OAuth, SAML, SCIM, JWT and authentication/authorisation frameworks
• Experience across Windows and Linux environments and enterprise databases
• Exposure to CI/CD tooling such as GitHub or Azure DevOps and issue tracking tools like Jira
• Strong communication skills with the ability to work independently on defined workstreams

Desirables

• Experience with CyberArk or other privileged access management solutions
• Familiarity with enterprise platforms such as SAP or PeopleSoft
• Experience using monitoring and logging tools such as Splunk or AppDynamics
• Exposure to full SDLC environments and automation‑driven delivery models
• Ability to explain security controls and architecture to non‑technical stakeholders