GSPANN - iAM Engineer - Identity Governance & Administration

Description :

- As a key member of the Access Management team, you will be primarily responsible for the governance and engineering of identity lifecycle processes and privileged access management. This includes working closely with Information Security, Integrated Information Technology, Business teams, Application Owners, Group Internal Audit, and Group Internal Control.

You will act as a global subject matter expert for Identity Governance & Administration (IGA) solutions and CyberArk Privileged Access Management (PAM) tools, ensuring secure and compliant access to critical systems and data.

Experience : 10 + Years

Job location : Gurugram/Hyderabad

Skills : IAM, CyberArk, IGA, SAML/OAuth/SCIM/LDAP/REST APIs, SOX/GDPR/NIST/ISO 27001, SailPoint, PowerShell/BeanShell/Python.

Responsibilities :

Strategy :

- Architect, implement, and manage enterprise-wide IGA solutions SailPoint and PAM platforms (e.g., CyberArk).

- Develop and drive the identity governance strategy, aligning it with security, compliance, and business objectives.

- Design and maintain scalable identity lifecycle management processes, including provisioning, deprovisioning, access certifications, and entitlement reviews.

- Define and implement role-based access control (RBAC), attribute-based access control (ABAC), and least privilege principles.

- Ensure identity and privileged access solutions are integrated into cloud (Azure, AWS) and on-premises environments.

Stakeholder Management :

- Act as the global subject matter expert for IGA and PAM, advising stakeholders across security, IT, audit, and business teams.

- Collaborate with internal and external auditors to ensure access governance and privileged access controls meet regulatory and compliance standards (e.g., SOX, GDPR).

- Translate security, risk, and compliance requirements into effective technical designs and operational practices.

- Provide mentorship to junior engineers and support teams on identity governance best practices.

- Lead incident response and troubleshooting efforts related to identity governance and privileged

access systems.

Required skills :

- We're seeking a results-oriented IAM professional with deep experience in both identity governance and privileged access management. You thrive in complex, fast-paced environments and can translate security and compliance needs into technical solutions that support the business.

Your skills and qualifications include :

- Bachelor's degree in Computer Science, Information Security, or a related field (or equivalent experience).

- 5+ years of hands-on experience with Identity Governance & Administration (IGA) SailPoint and Privileged Access Management solutions (e.g., CyberArk).

- Deep understanding of identity lifecycle management, RBAC, ABAC, and separation of duties (SoD).

- Solid knowledge of IAM protocols (SAML, OAuth, SCIM, LDAP, REST APIs) and integration with cloud identity platforms (Azure AD, AWS, IAM).

- Experience in automating identity processes through scripting (e.g., PowerShell, BeanShell, Python) is a plus.

- Strong familiarity with regulatory frameworks and standards (SOX, GDPR, NIST, ISO 27001).

- SailPoint certification is essential.

- Additional certifications such as CISSP, CISM, CISA, or CyberArk Defender/Guardian are highly desirable.

- Excellent interpersonal, communication, and project management skills, with the ability to influence and engage stakeholders at all levels.