Company
Technology
Identity&PAMSecurityEngineer
Neural analysis suggests this role is
optimal for Senior candidates.
“Identity & PAM Security Engineer. Design privileged access controls. Implement privileged access controls”
Industry & Context.
Problem-solving skills; Analytical skills
What They're Looking For.
Must Have
4+ years IAM experience, 4+ years Cloud Security experience, 4+ years Infrastructure Security experience, 4+ years Security Engineering experience, Hands-on Microsoft Entra ID experience, Hands-on Google Cloud IAM experience, Understanding identity security principles, Understanding least privilege, Understanding RBAC, Understanding MFA, Understanding conditional access, Understanding privileged access management, Experience managing service accounts, Experience managing machine identities, Experience managing secrets management, Experience managing credential rotation, Proven ability design PAM processes, Proven ability operate PAM processes, Proven ability design identity governance processes, Proven ability operate identity governance processes, Experience building automation, Analytical skills, Problem-solving skills, Security-first mindset
Nice to Have
Experience with SIEM tools a plus, Experience with log analysis platforms a plus, Experience with security monitoring systems a plus, Familiarity with HashiCorp Vault advantageous, Familiarity with Azure Key Vault advantageous, Familiarity with Google Secret Manager advantageous, SC-300 certification a plus, AZ-500 certification a plus, CISSP certification a plus, CCSP certification a plus
What You'll Do.
Design privileged access controls
Implement privileged access controls
Manage privileged access controls
Define secure administrative access
Maintain secure administrative access
Lead access review processes
Lead access certification processes
Ensure remediation actions completed
Manage service account lifecycle
Manage machine identity lifecycle
Manage secrets lifecycle
Manage API key lifecycle
Manage credential lifecycle
Configure conditional access policies
Configure MFA enforcement
Configure identity risk controls
Design automation for identity workflows
Implement automation for identity workflows
Collaborate with Security teams
Collaborate with Infrastructure teams
Collaborate with Engineering teams
Support security audits
Support compliance requirements
Support incident response
Support identity investigations
Contribute to identity governance evolution
Contribute to PAM strategies evolution
Contribute to security operations evolution
Improve identity security tooling
Improve identity security documentation
Improve operational processes
How You'll Work.
Team & Collaboration
Security teams; Infrastructure teams; Engineering teams; Globally distributed team
Communication Scope
Stakeholder management
Full Job Description
## Accountabilities Design, implement, and manage privileged access controls including Privileged Identity Management (PIM), just-in-time (JIT) access, approval workflows, and role assignments. Define and maintain secure administrative access processes for high-risk roles, privileged sessions, and emergency break-glass accounts. Lead access review and certification processes, ensuring remediation actions are completed and access remains aligned with least-privilege principles. Manage the lifecycle of service accounts, machine identities, secrets, API keys, and credentials, including rotation, monitoring, and decommissioning. Configure and maintain conditional access policies, MFA enforcement, and identity risk-based security controls. Design and implement automation for identity workflows, including approvals, access provisioning, reporting, and remediation processes. Collaborate with Security, Infrastructure, and Engineering teams to enhance identity security across cloud and enterprise environments. Support security audits, compliance requirements, incident response, and identity-related investigations. Contribute to the evolution of identity governance, PAM strategies, and security operations best practices. Improve identity security tooling, documentation, and operational processes to increase scalability and resilience. Requirements 4+ years of experience in Identity & Access Management (IAM), Cloud Security, Infrastructure Security, or Security Engineering roles. Hands-on experience with identity platforms such as Microsoft Entra ID and Google Cloud IAM. Strong understanding of identity security principles including least privilege, RBAC, MFA, conditional access, and privileged access management. Experience managing service accounts, machine identities, secrets management, and credential rotation at scale. Proven ability to design or operate PAM or identity governance processes in complex environments. Experience building automation using tools such as PowerSh
Applying for this Identity & PAM Security Engineer role?
Most applicants get filtered before a human reads their resume. See if yours makes the cut.
How to Apply on Lever
- Lever uses a streamlined one-page form — apply in under 5 minutes.
- LinkedIn import works well; review parsed data before submitting.
- The cover letter field is optional but visible to reviewers — use it to differentiate.
- Referral codes from employees can significantly boost visibility of your application.
ANONYMOUS · UNFILTERED
What do employees actually say about this company?
Real rants from real employees. Read before you apply.