Company

Technology

Identity&PAMSecurityEngineer

Switzerland FULL TIME Remote Friendly

Market Sentiment

HIGH DEMAND

Neural analysis suggests this role is
optimal for Mid candidates.

The Brief

“Identity & PAM Security Engineer. Skills: Privileged Access Management, Identity and Access Management, Cloud Security, Automation, Secrets Management. Design, implement, and manage privileged access controls including Privileged Identity Management (PIM), just-in-time (JIT) access, approval workflows, and role assignments. Define and maintain secure administrative access processes for high-risk roles, privileged sessions, and emergency break-glass accounts. Lead access review and certification ”

Industry & Context.

Technology

Problems you'll solve

analytical; problem-solving

Eligibility Requirements

Jobgether uses an AI-powered matching process. By submitting your application, you acknowledge that Jobgether will process your personal data to evaluate your candidacy and share relevant information with the hiring employer. You may exercise your rights (access, rectification, erasure, objection) at any time.

What They're Looking For.

Must Have

4+ years of experience in Identity & Access Management (IAM), Cloud Security, Infrastructure Security, or Security Engineering roles. Hands-on experience with identity platforms such as Microsoft Entra ID and Google Cloud IAM. understanding of identity security principles including least privilege, RBAC, MFA, conditional access, and privileged access management. Experience managing service accounts, machine identities, secrets management, and credential rotation at scale. Proven ability to design or operate PAM or identity governance processes in complex environments. Experience building automation using tools such as PowerShell, Python, APIs, or workflow orchestration platforms. analytical and problem-solving skills with a security-first mindset. Excellent communication, documentation, and stakeholder management skills. Ability to work effectively in distributed, fast-paced, and collaborative engineering environments.

Nice to Have

Experience with SIEM tools, log analysis platforms, or security monitoring systems is a plus. Familiarity with tools such as HashiCorp Vault, Azure Key Vault, or Google Secret Manager is advantageous. Relevant certifications such as SC-300, AZ-500, CISSP, or CCSP are considered a plus.

What You'll Do.

Design, implement, and manage privileged access controls including Privileged Identity Management (PIM), just-in-time (JIT) access, approval workflows, and role assignments.

Define and maintain secure administrative access processes for high-risk roles, privileged sessions, and emergency break-glass accounts.

Lead access review and certification processes, ensuring remediation actions are completed and access remains aligned with least-privilege principles.

Manage the lifecycle of service accounts, machine identities, secrets, API keys, and credentials, including rotation, monitoring, and decommissioning.

Configure and maintain conditional access policies, MFA enforcement, and identity risk-based security controls.

Design and implement automation for identity workflows, including approvals, access provisioning, reporting, and remediation processes.

Collaborate with Security, Infrastructure, and Engineering teams to enhance identity security across cloud and enterprise environments.

Support security audits, compliance requirements, incident response, and identity-related investigations.

Contribute to the evolution of identity governance, PAM strategies, and security operations best practices.

Improve identity security tooling, documentation, and operational processes to increase scalability and resilience.

How You'll Work.

Team & Collaboration

Collaborate with Security, Infrastructure, and Engineering teams. Ability to work effectively in distributed, fast-paced, and collaborative engineering environments. Collaborative and globally distributed team culture.

Communication Scope

communication; documentation

Full Job Description

## Accountabilities Design, implement, and manage privileged access controls including Privileged Identity Management (PIM), just-in-time (JIT) access, approval workflows, and role assignments. Define and maintain secure administrative access processes for high-risk roles, privileged sessions, and emergency break-glass accounts. Lead access review and certification processes, ensuring remediation actions are completed and access remains aligned with least-privilege principles. Manage the lifecycle of service accounts, machine identities, secrets, API keys, and credentials, including rotation, monitoring, and decommissioning. Configure and maintain conditional access policies, MFA enforcement, and identity risk-based security controls. Design and implement automation for identity workflows, including approvals, access provisioning, reporting, and remediation processes. Collaborate with Security, Infrastructure, and Engineering teams to enhance identity security across cloud and enterprise environments. Support security audits, compliance requirements, incident response, and identity-related investigations. Contribute to the evolution of identity governance, PAM strategies, and security operations best practices. Improve identity security tooling, documentation, and operational processes to increase scalability and resilience. Requirements 4+ years of experience in Identity & Access Management (IAM), Cloud Security, Infrastructure Security, or Security Engineering roles. Hands-on experience with identity platforms such as Microsoft Entra ID and Google Cloud IAM. Strong understanding of identity security principles including least privilege, RBAC, MFA, conditional access, and privileged access management. Experience managing service accounts, machine identities, secrets management, and credential rotation at scale. Proven ability to design or operate PAM or identity governance processes in complex environments. Experience building automation using tools such as PowerSh

Free ATS check

Applying for this Identity & PAM Security Engineer role?

Most applicants get filtered before a human reads their resume. See if yours makes the cut.

Should you apply? AI reads your resume vs this job — match score, gaps to address, ATS keywords.

SKILL SIGNAL 20 detected · ranked by frequency

Privileged Identity Management ×3

just-in-time access ×3

least-privilege principles ×3

service accounts ×3

machine identities ×3

secrets management ×3

credential rotation ×3

conditional access policies ×3

MFA enforcement ×3

identity risk-based security controls ×3

RBAC ×3

PAM ×3

Privileged Access Management, Identity and Access Management, Cloud Security, Automation, Secrets Management ×2

Microsoft Entra ID

Google Cloud IAM

PowerShell

Python

APIs

Identity & Access Management (IAM), Cloud Security, Infrastructure Security, Security Engineering, identity security principles, PAM strategies, security operations best practices, modern cloud identity, enterprise security architectures.

HashiCorp Vault, Azure Key Vault, Google Secret Manager, SIEM tools

BEHAVIOURAL

analytical, problem-solving, security-first mindset, stakeholder management, autonomy, ownership

Role Details

Seniority Mid

Experience 4–5 yrs

Level Mid

Work Mode Remote

Type FULL TIME

Category software

AI-Extracted Insights

Certifications

SC-300AZ-500CISSPCCSP

How to Apply on Lever

Lever uses a streamlined one-page form — apply in under 5 minutes.
LinkedIn import works well; review parsed data before submitting.
The cover letter field is optional but visible to reviewers — use it to differentiate.
Referral codes from employees can significantly boost visibility of your application.

ANONYMOUS · UNFILTERED

What do employees actually say about this company?

Real rants from real employees. Read before you apply.

Read Company Rants →