Key Facts

Remote From:

Full time

Mid-level (2-5 years)

Spanish, English

Hard Skills

Key Management Identity And Access Management Privileged Access Management Active Directory Authentication Servers Identity And Access Management Access Control List Directory Service Role-Based Access Control (RBAC) Password Management +9 more

Other Skills

•
Governance
•
Teamwork
•
Analytical Thinking
•
Detail Oriented
•
Verbal Communication Skills
•
Report Writing

Roles & Responsibilities

Bachelor's degree in computer science, telecommunications, cybersecurity, or related field
Minimum 3 years of experience in IAM, access governance, or identity-related security roles
Hands-on experience reviewing user permissions and access models across multiple applications
Experience with directory services/identity platforms (e.g., Active Directory, Azure AD) and analyzing authentication and access logs

Requirements:

Review and strengthen IAM across the organization with emphasis on access governance, permission reviews, and privileged access management
Assess application-specific permissions models for on-premises and cloud apps, ensuring least privilege and proper MFA enforcement
Analyze access logs from IAM tools (e.g., ManageEngine ADAudit, Cloudflare Zero Trust) to identify anomalies and support investigations
Document IAM findings, implement improvements, and manage changes via Jira; create reports on access reviews, MFA coverage, and PAM/secrets management

Paramo Technologies

Information Technology & Services

About Paramo Technologies

We are an international team of talented and creative tech professionals. We use the best tools and technology to develop innovative digital entertainment and e-commerce products. We build full-stack, high-quality software solutions into leading brands that our customers love. Our globally distributed team of colleagues work remotely from around the world. Are you a talented tech professional looking to advance your career as part of a friendly and dynamic team? At Paramo we offer everyone the chance to be the best version of themselves. We are hiring. Join us!

Company type: SME

Industry: Information Technology & Services

Founded: 2018

Company size: 201 - 500

Website LinkedIn See all jobs →

Job description

To apply for this position, you must reside in the Americas, preferably South and Central America. Applications from other locations will be disqualified from this selection process.

We are

a cutting-edge e-commerce company developing products for our own technological platform. Our creative, smart, and dedicated teams pool their knowledge and experience to find the best solutions to meet project needs, while maintaining sustainable and long-lasting results. How? By making sure that our teams thrive and develop professionally. Strong advocates of hiring top talent and letting them do what they do best, we strive to create a workplace that allows for an open, collaborative, and respectful culture.

What you will be doing

You will be responsible for reviewing, improving, and securing identity and access management across the organization, ensuring that user permissions, authentication mechanisms, and privileged access are properly designed, implemented, and monitored. You will complement the User Lifecycle Management function by focusing on access governance, permission reviews, access logs analysis, and the continuous improvement of IAM, PAM, and secrets management practices.

Key Responsibilities:

Complement the User Lifecycle Management function by focusing on access governance rather than day-to-day user provisioning.
Review application-by-application (both on-premise and cloud) the permissions model, including:
- Available permissions
- Permissions assigned to roles or attributes
- Detection of insecure, excessive, or unnecessary access rights
Validate that applications correctly enforce authentication controls, including the use of corporate MFA where applicable.
Review and analyze access logs from identity and access-related tools such as:
- ManageEngine ADAudit
- Cloudflare Zero Trust
- Other authentication and access control systems
Identify malicious, suspicious, or insecure access patterns and support investigations when required.
Improve and maintain the organization’s password management solution.
Analyze the organization’s privileged access needs and evaluate PAM solutions available in the market.
Support the selection, design, and implementation of new PAM tools when required.
Leverage HashiCorp Vault for secrets management when reviewing or securing applications that can benefit from it.
Promote and support access control models based on attributes (ABAC) rather than static roles.
Identify risks related to access accumulation, privilege creep, and temporary access needs.
Ensure access controls follow the principle of least privilege and are aligned with business needs.
Collaborate with application owners, infrastructure teams, and other security roles to remediate access-related issues.
Ensure IAM-related findings, reviews, and actions are properly documented and tracked through tickets (Jira).
Document new procedures or update existing ones related to IAM, access reviews, PAM, and secrets management.
Ensure documentation is accurate, comprehensive, and delivered on time.
Create reports related to access reviews, MFA coverage, privileged access, and IAM risks.
Engage in ongoing training and professional development to stay current with IAM, PAM, and identity security best practices.
Share knowledge and expertise to foster a culture of secure access and identity governance.
Adhere to different policies set out by the organization.
Keep your work organized and traceable through tickets (Jira).

Knowledge and skills you need to have

Bachelor's Degree in computer science, telecommunications, cybersecurity, or other related academic fields.
At least 3 years of work experience in IAM, access governance, or identity-related security roles.
Hands-on experience reviewing user permissions and access models across multiple applications.
Experience working with directory services and identity platforms (e.g. Active Directory, Azure AD).
Experience analyzing authentication and access logs.
Understanding of MFA, conditional access, and identity-based security controls.
Familiarity with password management and privileged access management concepts.
Experience working with or integrating secrets management solutions.
Strong analytical mindset with attention to detail.
Ability to work independently and as part of the Information Security Team under minimal supervision.
Eager to learn and continuously improve identity security practices.
Strong documentation and reporting skills.

Technical skills:

Solid foundations in authentication flows, authorization models, and cybersecurity.
Ability to understand how access decisions are enforced in different systems and applications.
Strong written and verbal communication skills in English and Spanish (B2/C1).

Bonus points for the following

Additional requirements, not essential but " nice to have".

· Any cybersecurity certification.

· Familiarity with IAM governance and access review processes.

· Experience with Privileged Access Management (PAM) solutions.

· Familiarity with secrets management tools such as HashiCorp Vault or ManageEngine Password Manager.

· Understanding of Attribute-Based Access Control (ABAC) models.

· Familiarity with security standards and frameworks such as ISO 27001, NIST, or similar.

Why choose us?

We provide the opportunity to be the best version of yourself, develop professionally, and create strong working relationships, whether working remotely or on-site. While offering a competitive salary, we also invest in our people's professional development and want to see you grow and love what you do. We are dedicated to listening to our team's needs and are constantly working on creating an environment in which you can feel at home.

We offer a range of benefits to support your personal and professional development: