Pay Rate Low: 62 | Pay Rate High: 67

IAM Engineer

Work Type: Remote, Hybrid, or Onsite
Contract 

Overview

The Senior (IAM) Engineer leads the design, implementation, and management of Privileged Access Management (PAM) and Identity & Access Management (IAM) solutions.

This role ensures secure access to systems, supports compliance requirements, and improves operational efficiency across enterprise and cloud environments. The engineer also provides high-level (Tier 3) support for CyberArk and identity systems.

Key Responsibilities

CyberArk / PAM

• Design, implement, and maintain CyberArk components:
  • EPV, PSM, CPM, PVWA
  • Connectors (PSM, PSMP, SIA, SWS)
• Develop and enforce privileged access policies (CMMC, PCI-DSS, HIPAA)
• Monitor and optimize CyberArk configurations
• Integrate CyberArk with:
  • Active Directory, Azure AD, LDAP
• Automate PAM processes (PowerShell, Python)
• Lead incident response for privileged access issues

Identity & Access Management (IAM)

• Manage and improve IAM systems and tools
• Configure and support:
  • Active Directory, Azure AD, LDAP, PKI
  • SSO and 2FA solutions
• Lead IAM projects (cloud migrations, domain consolidation, decommissioning)
• Create processes for:
  • User provisioning & deprovisioning
  • Role-based access
  • Governance and compliance reporting
• Troubleshoot IAM/PAM issues

Leadership & Collaboration

• Work with IT, security, and compliance teams
• Act as a subject matter expert (SME) for IAM and CyberArk
• Mentor team members and provide training
• Support audits and security assessments
• Ensure solutions align with security and compliance standards

Qualifications

Education & Certifications

• Bachelor’s degree (or equivalent experience)
• CyberArk Defender/Sentry certifications (preferred)
• Additional certifications (Microsoft, AWS, Azure, CISSP) are a plus

Experience

• 10+ years in IT (focus on IAM/security)
• 5+ years with CyberArk PAM
• Strong experience with:
  • Active Directory, Azure AD, LDAP, PKI
  • SSO and 2FA systems
• Scripting experience (PowerShell, Python, or similar)
• Familiarity with compliance frameworks (NIST, SOX, GDPR, ITAR)

Skills

• Strong understanding of PAM principles (least privilege, session monitoring)
• Expertise in Active Directory, DNS, Group Policy, certificates
• Experience with AWS and Azure integrations
• Strong problem-solving and communication skills
• Ability to lead projects end-to-end

Work Environment

• Must be a U.S. citizen and work within the U.S.
• Flexible work options (remote, hybrid, onsite)
• On-call and occasional after-hours support required
• Limited domestic travel

INDBH
#LI-AR1