IAM Engineer

Role : IAM Engineer

Location : Charlotte, NC or Dallas, TX (Hybrid)

Role Summary

We are seeking an experienced IAM Engineer to design, implement, and manage Identity & Access Management (IAM) solutions for enterprise environments. This role involves working onsite at the client location to modernize IAM processes, integrate applications, enforce security controls, and ensure compliance with organizational and regulatory standards. The IAM Engineer will play a key role in enabling secure identity lifecycle management, access governance, and automation.

Key Responsibilities

• IAM Solution Design & Implementation

• Deploy and configure IAM platforms (e.g., SailPoint, CyberArk, Azure AD/Entra, Okta).

• Integrate applications with IAM systems for authentication, authorization, and provisioning.

• Implement policies for role-based access control (RBAC), least privilege, and Segregation of Duties (SoD).

• Identity Lifecycle Management

• Automate onboarding, offboarding, and access certification processes.

• Manage non-human accounts, local accounts, and service accounts with proper ownership and governance.

• Access Governance & Compliance

• Conduct periodic access reviews and certification campaigns.

• Ensure compliance with internal security policies and regulatory frameworks (SOX, ISO 27001).

• Prepare audit-ready evidence for IAM controls and remediation tracking.

• Security & Risk Management

• Implement MFA, password policies, and privileged access management.

• Monitor and remediate IAM-related risks and exceptions.

• Automation & Integration

• Develop scripts and workflows for IAM automation (using PowerShell, Python, or platform-specific tools).

• Integrate IAM with HR systems, ticketing tools, and downstream applications.

• Client Collaboration

• Work closely with client stakeholders, application owners, and auditors to align IAM solutions with business needs.

• Provide documentation (design diagrams, SOPs, runbooks) and knowledge transfer.

Required Qualifications

• 5 8 years of experience in IAM engineering or related security roles.

• Hands-on experience with IAM platforms (SailPoint, CyberArk, Okta, Azure AD/Entra).

• Strong understanding of identity lifecycle, access governance, and entitlement management.

• Knowledge of authentication protocols (SAML, OAuth, OpenID Connect, LDAP).

• Experience with automation scripting (PowerShell, Python) and API integrations.

• Familiarity with audit and compliance requirements for IAM controls.

Preferred Skills

• Exposure to cloud IAM (Azure AD, AWS IAM, Google Cloud Platform IAM).

• Experience with Privileged Access Management (PAM) tools.

• Knowledge of directory services (Active Directory, LDAP).

• Understanding of Zero Trust principles and modern IAM architectures.

• Familiarity with IAM data analytics and evidence validation processes.

Core Competencies

• Security-first mindset: Applies IAM best practices and compliance standards.

• Problem-solving: Ability to troubleshoot complex identity and access issues.

• Collaboration: Works effectively with client teams and cross-functional stakeholders.
• Ownership: Drives end-to-end IAM solution delivery and continuous improvement