Job purpose:

The role has primary responsibility across two critical domains: Security Systems Engineering and Identity and Access Management (IAM).

The position is responsible for planning, implementing, managing, monitoring, and continuously improving security measures designed to protect company personnel and organizational assets. This includes expertise in troubleshooting security, network, and system issues, as well as supporting the response to potential system or data compromises should such incidents occur.

The role ensures that organizational risk is effectively managed through the implementation of appropriate security controls. It provides technical expertise in security architecture and engineering, supports incident response activities, defines and enhances IAM processes, and acts as a technical lead in relevant IT projects.

Key Responsibilities:

Security Architecture and Engineering

• Contribute to defining and maintaining the organization’s security architecture aligned with business objectives, including IAM strategies and standards
• Design, implement, and optimize security controls across existing systems and platforms (SIEM/XDR, AV, PAM, Zero Trust, RBAC, API Security, SSO/Federation, MFA, EDR, firewalls)
• Assess risks, vulnerabilities, and the current security posture, proposing and implementing improvement measures
• Monitor the effectiveness of security controls and recommend optimizations based on the evolving threat landscape
• Provide technical leadership in IT projects and collaborate with internal teams to ensure alignment with security requirements

Identity & Access Management (IAM)

• Design and implement IAM solutions, including application integration with the Identity Provider (IdP), provisioning automation, and access control configuration
• Manage and optimize Active Directory / Azure AD / Entra ID, including Conditional Access policies, PIM/PAM, and SSO
• Contribute to the development of IAM processes and standards across the organization
• Provide advanced technical support for IAM platforms and resolve complex identity and authentication management issues

Security Operations

• Analyze, develop, and implement new security tools and controls to enhance infrastructure protection
• Oversee infrastructure changes to prevent degradation of the security posture
• Collaborate with vendors and internal teams in testing and implementing security solutions
• Provide L2/L3 support for critical security infrastructure.

Skills & Relevant Work Experience

• Bachelor’s degree or an equivalent combination of education and experience
• 5+ years of experience in the Information Technology field
• At least 1 year of proven experience as Information Security Engineer, or Identity and Access Management Engineer/Specialist
• Hands-on experience with security systems such as SIEM, SOAR, EDR, firewalls, IDAM (Azure AD, PAM, PIM), intrusion detection systems, antivirus software, authentication systems, log management, content filtering, etc
• Strong understanding of cybersecurity architecture, defense-in-depth strategies, and secure system design, with practical experience implementing and managing Zero Trust architectures
• Knowledge of implementing Identity and Access Management (IAM) and Single Sign-On (SSO) technologies
• Experience building and maintaining security systems supporting multiple platforms and applications
• Experience with problem management techniques and process improvement methodologies
• Experience with network security, networking technologies, and system, security, and network monitoring tools
• Strong understanding of the latest security principles, techniques, and protocols
• Familiarity with web technologies (web applications, web services, service-oriented architectures) and related network/web protocols
• Strong problem-solving skills and the ability to work effectively under pressure
• Understanding of security best practices and the ability to implement them at the business level while balancing operational and production requirements
• Previous exposure to Linux and/or Windows operating systems, scripting languages, and/or communication networks
• Knowledge of programming/scripting languages such as PowerShell, Python, etc.
• Strong professional ethics and attention to detail
• Ability to clearly communicate security-related issues to both colleagues and management
• Industry certifications such as CISSP, GISP, GSEC, CEH, CIAM, or CAMS are considered an advantage.

For this position, the company reserves the right to request professional references and/or letters of recommendation.