Citrin Cooperman offers a dynamic work environment, fostering professional growth and collaboration. We are seeking a Senior – IAM Engineer, Information Security, to join our Information Security team within the Information Technology department, focusing on implementing and managing core IAM capabilities and ensuring robust identity governance.
Responsibilities:
- Deep expertise in IAM domains: Identity Governance & Administration (IGA), Access Management (AM), and Privileged Access Management (PAM)
- Implementing and managing core IAM capabilities: SSO, MFA, RBAC/ABAC, conditional access, and identity lifecycle management
- Developing user lifecycle processes (joiner/mover/leaver), provisioning, deprovisioning, and access certification workflows
- Design and enforce least privilege access models and segregation of duties controls
- Integrate IAM solutions with cloud (Azure, AWS, GCP) and on-prem environments
- Design and implement IAM lifecycle management system and privileged account management system
- Proficiency in scripting/automation (PowerShell, Python, Bash) for IAM automation and workflow orchestration
- Strong understanding of directory services (Active Directory, Azure AD) and identity stores
- IAM logging, monitoring, and incident response for authentication and access anomalies
Requirements:
- Have a bachelor's degree or equivalent professional experience
- Have a minimum of 7, prefer 10+ years, of experience in IT/security, with 3–5+ years specifically in IAM engineering or identity governance
- Have hands-on experience with enterprise IAM platforms (e.g., Azure AD/Entra, Okta, SailPoint, CyberArk, DUO, Delinea)
- Have industry certifications such as Certified Identity and Access Manager (CIAM), ISC2 Certified Cybersecurity, SailPoint Identity Security Professional, etc
- Possess excellent communication skills with ability to translate IAM risks and controls to business stakeholders