Job Description SummaryOur client in the Financial Sector is seeking a Zero Trust Security Engineer to join its Global Security department. This role plays a key part in the company's internal digital transformation, driving the adoption of a Zero Trust security architecture. The ideal candidate will have extensive experience in Identity and Access Management (IAM), with a proven track record in designing and implementing IAM solutions at scale across diverse products and platforms.
This role involves contributing directly to IAM designs, implementation, automation, and orchestration to create a scalable, zero-trust ecosystem. The successful candidate will ensure that security frameworks align with industry best practices and compliance requirements.
Key Responsibilities
As a senior member of the IAM team, you will lead and contribute to the development, implementation, and management of Zero Trust IAM services, tools, processes, and technologies, including but not limited to:
Identity Architecture & Security
Design, develop, maintain, and enhance IAM toolsets to support Zero Trust security model adoption.
Utilize expertise in Identity Providers and Multi-Factor Authentication (MFA) technologies.
Implement self-service IAM platforms to automate request, approval, provisioning, and verification processes.
Ensure integration of IAM solutions with protocols such as SCIM, SAML, OAuth, and OpenID Connect.
Access Control & Policy Management
Develop robust identity architectures ensuring the right access for the right individuals at the right time.
Implement Role-Based Access Control (RBAC), Attribute-Based Access Control (ABAC), and Policy-Based Access Control (PBAC).
Define and manage Conditional Access policies, Risk-based policies, and Segregation of Duties (SoD) policies.
Collaboration & Infrastructure Development
Work closely with IAM engineers and architects to address identity and access challenges.
Partner with IT Infrastructure, Cloud Technologies, and Enterprise Services teams to build and support Zero Trust architecture.
Develop core architectures supporting identity assignments for applications, services, and processes.
Automation & Compliance
Automate IAM processes using Ansible playbooks and Terraform.
Ensure compliance with security standards and minimize security risks through IAM policy evolution.
Required Experience & Skills
Technical Experience
Experience engineering and operating IAM solutions in high-availability (HA) environments across multiple data centers. (3+ years)
Experience implementing Zero Trust security at scale across hybrid environments. (2+ years)
Knowledge of virtual directory or internal Identity Provider (IDP) infrastructure and design. (2+ years)
Experience with Red Hat Directory Server (RHDS), Active Directory, Azure AD, Single Sign-On (SSO), Multi-Factor Authentication, and Identity Federation. (3+ years)
Sector & Domain Skills
Proficiency in writing Ansible playbooks and Terraform scripts to configure Directory Servers.
Experience working with GitHub and Bitbucket for code repository management.
Strong understanding of modern IAM authentication/authorization standards (Microsoft Azure AD, SSO, OAuth, OpenID, SAML, OpenLDAP). (2+ years)
Expertise in Role-Based and Attribute-Based Access Control and associated technologies.
Work Environment
Hybrid work model - candidates should expect to work several days per week on-site.
Opportunity to work in a dynamic and evolving Zero Trust security environment.
