Role : IAM Senior Engineer (CIAM & PAM – CyberArk)
Overview
The IAM Senior Engineer will be responsible for the design, build, deployment, and support of Customer Identity & Access Management (CIAM) and Privileged Access Management (PAM) solutions within a global enterprise environment. This role plays a key part in securing customer identities, privileged accounts, and critical infrastructure by leveraging industry-leading platforms such as CyberArk Cloud PAM, Azure AD, and Okta .
The IAM Senior Engineer will ensure secure, compliant, and efficient access across the organization while maintaining consistency, adherence to standards, and seamless integration with enterprise applications and infrastructure.
Key Responsibilities
CIAM (Customer Identity & Access Management)
- Design and implement CIAM platforms leveraging solutions such as Azure AD B2C and Okta .
- Configure and support MFA, SSO, Conditional Access, RBAC, and risk-based authentication for large-scale customer environments.
- Develop automation and scripting for user lifecycle management, directory synchronization, and identity verification workflows .
- Implement fraud prevention controls and identity verification algorithms.
- Integrate CIAM platforms with enterprise and SaaS applications via APIs, OAuth, OpenID Connect, and SAML .
PAM (Privileged Access Management – CyberArk)
Engineer, configure, and manage CyberArk Cloud PAM solutions, ensuring secure management of privileged accounts across servers, databases, and applications.Automate onboarding of privileged accounts and endpoints.Monitor and analyze privileged session activity to ensure compliance with security policies.Implement certificate management, secrets management, and password rotation policies .Collaborate with infrastructure and application teams to integrate CyberArk into enterprise environments.Integration, Security & Compliance
Develop and maintain automation scripts (Java, PowerShell, Python) to improve CIAM and PAM processes.Ensure IAM solutions comply with SOX, PCI, GDPR, and other regulatory frameworks .Support audit, logging, and monitoring policies across CIAM and PAM platforms.Participate in change management, incident response, and 24 / 7 global support rotations .Collaboration & Leadership
Partner with IAM architects, DevOps, and cloud teams to support CI / CD pipelines for IAM deployments.Provide mentorship to junior engineers and act as a subject-matter expert for IAM initiatives.Participate in Agile ceremonies, managing deliverables and aligning with IAM strategy and roadmap.Qualifications & Skills
Experience : 6–8 years in IAM with expertise in both CIAM (Azure AD, Okta) and PAM (CyberArk Cloud PAM).Authentication & Access : Strong knowledge of MFA, SSO, RBAC, Conditional Access, OAuth, OpenID, SAML, and REST APIs.Privileged Access : Proven hands-on experience with CyberArk PAM for securing privileged accounts, secrets management, and certificate lifecycle management.Scripting & Automation : Strong coding skills in Java, PowerShell, Python ; experience with Ansible or Chef for automation.Cloud & Integrations : Familiarity with cloud platforms (Azure, AWS, GCP) and SaaS integrations.Security & Compliance : Experience implementing audit, compliance, fraud prevention, and identity verification solutions.Methodology : Strong background in Agile and DevOps practices.