Das ist der Job
Implement SSO, MFA, RBAC, credential rotation, and identity federation.
Darum lohnt es sich
Troubleshoot identity issues and provide operational support to internal and client teams. Collaborate with Security, Infrastructure, and Application teams to ensure robust identity architecture. What We Offer Opportunity to work with a global team on innovative projects.
Job Overview As an IAM/PAM Consultant - Identity Governance at EhsanLab, you will design, deploy, and manage identity security solutions supporting enterprise environments. This role focuses heavily on Identity Governance & Administration (IGA) while contributing to access lifecycle automation and privileged access security.
You will work with IGA tools, PAM platforms, directory services, cloud identity, and integrations that support large-scale user environments. Key Responsibilities Implement and maintain IGA solutions (SailPoint, Saviynt, One Identity, Omada). Develop and optimize identity lifecycle workflows, access certifications, and governance policies.
Deploy, support, and maintain PAM platforms (CyberArk, BeyondTrust, Delinea, etc.). Integrate IAM/PAM tools with HR systems, directories, and enterprise applications. Conduct access reviews, role mining, and segregation-of-duties (SoD) analysis. Document configurations, policies, and operational procedures.
Required Qualifications 6+ years of hands‑on experience in IAM/IGA/PAM engineering. Practical experience with SailPoint, Saviynt, or similar IGA platforms. Strong understanding of IAM fundamentals: SSO, MFA, RBAC, provisioning, directory services. Experience deploying or managing PAM tools (CyberArk, BeyondTrust, etc.).
Knowledge of Active Directory, Azure AD, LDAP, SCIM, APIs, and automation scripting (Python/PowerShell). Good understanding of security compliance frameworks (ISO 27001, NIST, Zero Trust principles). Excellent problem‑solving skills and ability to work independently. Bonus Qualifications Experience in cloud IAM (AWS IAM, Azure IAM, GCP IAM).
Certifications such as CISSP, CISM, Security+, or vendor‑specific IAM/PAM certs. Background in Identity architecture or access risk management. Flexible remote work arrangements. Continuous professional development and learning opportunities. #J-18808-Ljbffr