Access Management Engineer

Overview:

SOFTSWISS continues to expand the team and is looking for an Identity and Access Management Team Lead. We need a true, experienced, and accomplished professional who shares our culture and values.

Access Management Team:

The Access Management team, consisting of three experts, plays a key role at the intersection of IT operations and security. Their primary responsibilities include processing access requests and continuously improving the organization’s access management practices. This involves developing and maintaining access procedures, integrating new systems into a centralized framework, and implementing automation to strengthen our overall Identity and Access Management (IAM) strategy.

Team’s current focus: Redesigning and rebuilding access management processes to make them automated, manageable, transparent, and user-friendly. Implementing and optimizing role-based access control (RBAC).

Purpose of the Role:

We're looking for an engineer to lead our IAM practice and shape the future of how we manage access, making it secure, automated, and seamless for everyone. You will be the go-to expert for all things IAM, with the autonomy to design, build, and optimize processes that are critical to our security and business operations

Key responsibilities:

• Design and implement IAM solutions: integrate cloud and on-premises applications with IAM systems
• Automate access management processes: design and configure RBAC\ABAC, SCIM and other automation mechanisms
• Handle complex ACP tasks and incident management: resolve high-level technical issues related to IAM, PAM, and SSO
• System Architecture and Integration: design integrations using SCIM, SAML, OAuth, and APIs
• Streamline CI/CD processes: help automate deployment and infrastructure maintenance
• Support policy development: provide technical input into the creation of ACP policies and standards
• Documentation creation: Ensure high quality technical documentation is maintained

Requirements:

• 3+ years of experience as a cybersecurity engineer or IT professional (DevOps, DevSecOps, SE etc.) with a focus on security roles
• In-depth knowledge of IAM/IDM solutions (keycloak, okta, etc), PAM solutions, and related interfaces (SCIM, SAML, REST API, JWT, MFA, OpenID, OAuth, LDAP, etc.)
• Demonstrated automation skills with at least one of the following scripting languages: PowerShell, Bash, Python, or Go
• Proficient in administering both Linux and Windows operating systems

Nice to have:

• Experience with the design and implementation of role-based access control (RBAC) models and performing access rights audits

Learn more about our hiring process here – what to expect, how to prepare, and what makes SOFTSWISS different.

Benefits:

• Full-time remote work opportunities and flexible working hours
• Comprehensive Mental Health Programme
• Private insurance
• Sports program compensation
• Free online English lessons
• An additional 1 Day off per calendar year
• Generous referral program
• Training, internal workshops, and participation in international professional conferences and corporate events