IAM Engineer at Bayer Sp. z o.o. #vacancy #remote

IAM Engineer

The Identity and Access Management (IAM) Engineer in the Identity Platforms Engineering team will play a critical role in defining security IAM strategy, setting direction, project consulting, policy and standards creation, and providing secure IAM solutions to protect Bayer’s applications, infrastructure, and intellectual property across the global IT environment. The scope of this position covers identity lifecycle management while incorporating security into all decisions and daily job responsibilities.

 

Key Tasks & Responsibilities:

• Design and implement IAM solutions leveraging SailPoint IdentityNow and Microsoft Entra ID to secure systems and data.

• Collaborate with various teams to define requirements, design solutions, and integrate IAM systems with existing applications.

• Manage user identities, roles, and access permissions across multiple platforms.

• Develop and enforce IAM policies and procedures to meet security and compliance standards.

• Perform access reviews, audits, and risk assessments to maintain security integrity.

• Monitor IAM systems for security issues and respond to incidents proactively.

• Automate IAM processes to enhance efficiency using scripting and automation tools.

• Provide expert guidance on IAM issues and lead IAM initiatives.

• Keep abreast of new IAM technologies and security trends to continually refine our practices.

• Work closely with security teams during incident responses to mitigate threats.

• Ensure IAM solutions are aligned with overall IT architecture through cooperation with enterprise architecture teams.

• Maintain effective communication across teams regarding project status, timelines, and changes.

 

Qualifications & Competencies (education, skills, experience):

• Bachelor’s degree in Computer Science, Information Systems, or a related field.

• 5 years of experience in IT with a focus on identity lifecycle, access management, system integration, and entitlements management.

• 5 years of experience in two or more of the following areas:

  • Identity Lifecycle
  • Access Governance
  • Authentication
  • Cloud Identity Management
  • Customer IAM
  • Privileged Access Management

• 3 years of experience with cloud automation tools like AWS CloudFormation or HashiCorp Terraform.

• Proficiency in IAM integration patterns and standards (e.g., SAML, OAuth, OpenID Connect).

• Strong problem-solving abilities with a knack for complex systems.

• Excellent communication skills and ability to convey technical details to a non-technical audience.

• Preferred certifications: CISSP, CISM, CIAM.

• Familiarity with IAM governance frameworks (NIST, ISO 27001, GDPR) is beneficial.

 

Preferred:

• Experience with one or more IAM platforms (e.g., SailPoint, Savyint, Okta, CyberArk, HashiCorp).

• Solid background in Web Access Management architecture and implementation.

• Certifications: Microsoft SC-, AZ-, SailPoint IdentityNow Engineer.

• Understanding of DevOps practices and tools for IAM operations.

• Skilled in scripting languages like Python and PowerShell for automation.

• Experience with containerization and orchestration tools (Amazon ECS, EKS, Docker, Kubernetes).

• Independent worker and collaborative team player in a dynamic setting.

• Strong leadership and mentoring skills with the ability to manage multiple projects and priorities effectively. 

 

What do We offer:

• A flexible, remote-hybrid work model

• Great workplace in a new modern office in Warsaw

• Career development, 360° Feedback & Mentoring programme

• Wide access to professional development tools, trainings, & conferences

• Company Bonus & Reward Structure

• VIP Medical Care Package (including Dental & Mental health)

• Holiday allowance (“Wczasy pod gruszą”)

• Life & Travel Insurance

• Pension plan

• Co-financed sport card – FitProfit

• Meals Subsidy in Office

• Additional days off

• Budget for Home Office Setup & Maintenance

• Access to Company Game Room equipped with table tennis, soccer table, Sony PlayStation 5 and Xbox Series X consoles setup with premium game passes, and massage chairs

• Tailored-made support in relocation to Warsaw when needed

•  Please send your CV in English

Python powershell Certified Information Security Manager (CISM) Certified Information Systems Security Professional (CISSP) amazon-ecs openid-connect DevOps Docker amazon-cloudformation amazon-eks Kubernetes saml oauth okta hashicorp GDPR

Leave a Reply