IAM Engineer

Job role/Purpose

The role of IAM Engineer in IT Security Operations is managing day to day operations of IT Security (IS) Identity Access Management (IAM) with analyse processes, documentation, and workflows through interviews with staff performing security and human resource related duties, develop gap analysis and identify and prioritize process improvements based on current risk of components adding professional insight.

Key Responsibilities

• Design, lead and conduct regular technical cyber security countermeasures analysis to support information security requirements and reporting.
• Deploy, configure, and maintain IAM solutions (OneIdentity Or SailPoint) for our customers but not limited to IAM platforms, SSO and MFA.
• Preform regular reviews and updates to ensure the ongoing efficiency and security of deployed solutions.
• Oversee the administration of Identity and Access Management (IDAM) solutions, encompassing the incorporation of new services within multi-cloud environments.
• Experience in working ITIL environment and responding to requests in a timely manner.
• Have implemented Identity in one of - IDAM / IAM solutions (/OneIdenity / Ping / Okta / ForgeRock/SailPoint)
• Microsystems / Oracle IAM / NetIQ / Tivoli etc). Ideally, knows a bit about SCIM, but not essential.
• Identify opportunities for efficiency gains and improvements in managed services delivery.
• Collaborate with the team to design, enforce & implement enhancements and updates to stay ahead of evolving security threats and technology advancements based on IT security framework aligned with group & Operating Entities’ regulator standard & guideline. Leading, participating and completing various IT Security project implementations and issues when needed.
• Perform periodic User Access Review (UAR).
• Keep up to date about industry best practices and emerging trends in IAM, ensuring the organization remains at the forefront of security standards.
• Any other duties when deemed necessary. Completing projects on various issues when needed.

Key Requirements

• Understanding of Identity and Access Management principles and practices
• 1-3 years’ experience using one of the following IAM platforms -OneIdenity OR SailPoint.
• Demonstrated experience with Identity/IDAM/IAM tools such as OneId Job servers (or any of the Ping tools) is preferred.
• Practical experience with OAUTH and SAML
• Knowledge of federation standards, including SAML 2.0, OAuth 2.0, OpenID Connect. Experience in AD scripting and PowerShell commands is an added advantage.
• Previous .NET programmers would be highly regarded.
• Effective communication and excellent problem-solving skills.
• Experience in handing AD tools like Active Directory, LDAP, Azure AD and Computers (ADUC), AD Sites and Services (ADSS), AD Domain Services (ADDS), Domain Name System, Group Policy Object (GPO).
• Possess a Degree in IT field, certification in Information Technology Infrastructure Library (ITIL), Certified Ethical Hacker (CEH), Certified Information Systems Security Professional (CISSP) would be an added advantage.

What we offer

Allianz Group is one of the world's most trusted insurance and asset management companies. Caring for our employees, their ambitions, dreams, and challenges makes us a unique employer. Together we can build an environment where everyone feels empowered and has the confidence to explore, grow, and shape a better future for our customers and the world around us.

We at Allianz believe in a diverse and inclusive workforce and are proud to be an equal-opportunity employer. We encourage you to bring your whole self to work, no matter where you are from, what you look like, who you love, or what you believe in.

We, therefore, welcome applications regardless of ethnicity or cultural background, age, gender, nationality, religion, disability, or sexual orientation.

Join us. Let's care for tomorrow.