IAM Security Engineer

Summary

Join our team as a skilled IAM Security Engineer to contribute to projects focused on identity and access management automation. You will play a key role in scaling and enhancing our IAM infrastructure by designing and implementing automated solutions, integrating with internal systems, and ensuring secure and efficient user lifecycle management. Your expertise will directly support our mission to enforce access controls, reduce manual workloads, and uphold high standards of security and compliance. This position requires strong Python programming skills and experience with IAM solutions like Evolveum MidPoint. You will design and implement IAM automation, support user lifecycle processes, integrate IAM with internal tools, and build and maintain automation scripts and microservices. The role also involves defining and maintaining access policies, conducting audits, and developing technical documentation.

Requirements

• 3+ years of experience in information security or infrastructure automation, with at least 1 year in IAM-related roles
• Hands-on experience with Evolveum MidPoint or other IAM solutions (e.g., ForgeRock, SailPoint, Okta, One Identity)
• Strong Python programming skills (including API usage, CI/CD automation)
• Understanding of identity lifecycle management, RBAC/ABAC/SoD models
• Familiarity with protocols and standards: LDAP, SAML, OIDC, OAuth2
• Comfortable with Linux environments and basic network/access control concepts
• Experience with Git, CI/CD pipelines, and REST APIs

Responsibilities

• Design and implement IAM automation using Evolveum MidPoint
• Support user lifecycle processes (Joiner-Mover-Leaver)
• Integrate IAM with internal tools (e.g., HR systems, LDAP, Okta, Jira)
• Build and maintain automation scripts and microservices in Python
• Define and maintain access policies, roles, and certifications
• Participate in IAM implementation or migration projects and align them with business workflows
• Conduct IAM audits and monitor for deviations
• Develop and maintain technical documentation and IAM playbooks

Preferred Qualifications

• Experience with Docker/Kubernetes
• Knowledge of Java or Groovy (for deeper MidPoint customization)
• Experience deploying IAM in cloud environments (AWS)
• Familiarity with SIEM or ITSM systems (e.g., Jira, ELK, Wazuh)

Benefits

• Competitive Salary: We believe great work deserves great pay! Your skills and talents will be rewarded with a salary that makes you feel valued and motivated
• Work-Life Harmony: Join a company that genuinely cares about you —because your life outside of work matters just as much as your time on the clock
• Annual Performance Bonus: Your hard work doesn’t go unnoticed! Celebrate your achievements with a well-deserved annual bonus tied to your performance
• Generous Time Off: Need a breather? Our annual leave policy lets you recharge and enjoy life outside of work without a worry
• Employee Referral Program: Love working here? Share the love! Bring your talented friends on board and get rewarded for growing our awesome team
• Comprehensive Health & Pension Benefits: From medical insurance to pension plans, we’ve got your back. Plus, location-specific benefits and perks!
• Workation Wonderland: Live your digital nomad dreams with 30 extra days to work remotely from anywhere in the world (some restrictions apply). Adventure awaits!
• Volunteer Days: Make a difference! Take two additional paid days each year to support causes you care about and give back to the community