Company
Technology
Identity&PAMSecurityEngineer
Neural analysis suggests this role is
optimal for Senior candidates.
“Identity & PAM Security Engineer. Skills: Cloud Security, Privileged Access Management, Identity Governance. Design privileged access controls. Implement privileged access controls”
Industry & Context.
Analytical; Problem-solving; Security-first mindset
What They're Looking For.
Must Have
4+ years IAM experience, 4+ years Cloud Security experience, 4+ years Infrastructure Security experience, 4+ years Security Engineering experience, Hands-on identity platforms experience, Understand identity security principles, Manage service accounts experience, Manage machine identities experience, Manage secrets management experience, Manage credential rotation experience, Design PAM processes experience, Operate PAM processes experience, Design identity governance processes experience, Operate identity governance processes experience, Build automation experience
Nice to Have
Experience with SIEM tools a plus, Experience with log analysis platforms a plus, Experience with security monitoring systems a plus, Familiarity with HashiCorp Vault advantageous, Familiarity with Azure Key Vault advantageous, Familiarity with Google Secret Manager advantageous, SC-300 certification a plus, AZ-500 certification a plus, CISSP certification a plus, CCSP certification a plus
What You'll Do.
Design privileged access controls
Implement privileged access controls
Manage privileged access controls
Define secure administrative access processes
Maintain secure administrative access processes
Lead access review processes
Lead certification processes
Ensure remediation actions completed
Manage service accounts lifecycle
Manage machine identities lifecycle
Manage secrets lifecycle
Manage API keys lifecycle
Manage credentials lifecycle
Configure conditional access policies
Configure MFA enforcement
Configure identity risk-based security controls
Design automation for identity workflows
Implement automation for identity workflows
Collaborate with Security teams
Collaborate with Infrastructure teams
Collaborate with Engineering teams
Support security audits
Support compliance requirements
Support incident response
Support identity-related investigations
Contribute to identity governance evolution
Contribute to PAM strategies evolution
Contribute to security operations best practices evolution
Improve identity security tooling
Improve documentation
Improve operational processes
How You'll Work.
Team & Collaboration
Security teams; Infrastructure teams; Engineering teams; Globally distributed team
Communication Scope
Documentation; Stakeholder management
Full Job Description
## Accountabilities Design, implement, and manage privileged access controls including Privileged Identity Management (PIM), just-in-time (JIT) access, approval workflows, and role assignments. Define and maintain secure administrative access processes for high-risk roles, privileged sessions, and emergency break-glass accounts. Lead access review and certification processes, ensuring remediation actions are completed and access remains aligned with least-privilege principles. Manage the lifecycle of service accounts, machine identities, secrets, API keys, and credentials, including rotation, monitoring, and decommissioning. Configure and maintain conditional access policies, MFA enforcement, and identity risk-based security controls. Design and implement automation for identity workflows, including approvals, access provisioning, reporting, and remediation processes. Collaborate with Security, Infrastructure, and Engineering teams to enhance identity security across cloud and enterprise environments. Support security audits, compliance requirements, incident response, and identity-related investigations. Contribute to the evolution of identity governance, PAM strategies, and security operations best practices. Improve identity security tooling, documentation, and operational processes to increase scalability and resilience. Requirements 4+ years of experience in Identity & Access Management (IAM), Cloud Security, Infrastructure Security, or Security Engineering roles. Hands-on experience with identity platforms such as Microsoft Entra ID and Google Cloud IAM. Strong understanding of identity security principles including least privilege, RBAC, MFA, conditional access, and privileged access management. Experience managing service accounts, machine identities, secrets management, and credential rotation at scale. Proven ability to design or operate PAM or identity governance processes in complex environments. Experience building automation using tools such as PowerSh
Applying for this Identity & PAM Security Engineer role?
Most applicants get filtered before a human reads their resume. See if yours makes the cut.
How to Apply on Lever
- Lever uses a streamlined one-page form — apply in under 5 minutes.
- LinkedIn import works well; review parsed data before submitting.
- The cover letter field is optional but visible to reviewers — use it to differentiate.
- Referral codes from employees can significantly boost visibility of your application.
ANONYMOUS · UNFILTERED
What do employees actually say about this company?
Real rants from real employees. Read before you apply.