SeniorDevOpsEngineer–IAM&ZTNA

## Accountabilities Design and implement automated solutions for provisioning, configuration, and lifecycle management of ZTNA environments with an IAM-first approach Develop Infrastructure as Code (Terraform, Ansible, Python, PowerShell) to automate secure identity workflows, policy enforcement, and access controls Integrate ZTNA platforms with identity providers (Azure AD and others) enabling SSO/SAML, SCIM provisioning, and secure authentication flows Define and enforce RBAC, least-privilege access models, and policy-as-code guardrails across ZTNA systems Build, maintain, and optimize CI/CD pipelines for secure deployment of IAM and policy configurations Monitor access patterns, audit user/group activities, and automate compliance reporting and risk detection Lead incident response for IAM-related issues, including root cause analysis and remediation Collaborate with security, IAM, and DevOps teams to align access models across enterprise systems Stay updated on ZTNA and IAM advancements, continuously improving automation frameworks and best practices Mentor team members and drive standardization of IAM and ZTNA engineering practices Requirements: Bachelor’s or Master’s degree in Computer Science, Information Security, or related field 5+ years of experience in DevOps or infrastructure automation roles Strong hands-on experience with Infrastructure as Code (Terraform, Ansible, etc.) and CI/CD pipelines Solid experience with scripting and automation (Python, PowerShell, REST APIs) Strong knowledge of IAM concepts: SSO, SAML, SCIM, RBAC, MFA, federation, and identity platforms (Okta, Azure AD, AWS IAM, etc.) Experience or exposure to ZTNA or cloud security platforms (e.g., Zscaler, Prisma Access, Cloudflare Zero Trust, Netskope) Understanding of networking fundamentals (TCP/IP, DNS, VPNs, proxies) and cloud security architectures Experience automating user provisioning, access policies, and security controls in enterprise environments Strong troubleshooting, analyt