- Company Name
- FQM Zambia
- Job Title
- Engineer, Identity & Access Management
- Job Description
-
**Job Title:** Engineer, Identity & Access Management
**Role Summary**
A critical technical role in designing, maintaining, and optimizing Identity Governance and Access Management (IAM) solutions to ensure secure access control, compliance, and operational efficiency across enterprise systems. Acts as a technical SME for IAM frameworks.
**Expectations**
- Implement and manage IAM platforms (Saviynt EIC, SailPoint, Okta), Privileged Access Management (PAM), and identity governance tools.
- Optimize IAM capabilities for enterprise applications, including SSO, MFA, and identity lifecycle automation.
- Address technical IAM challenges and align solutions with security policies, regulatory standards, and business needs.
**Key Responsibilities**
- Configure and maintain IAM platforms (Saviynt EIC preferred) to enforce secure access policies.
- Conduct security assessments of IAM systems, identifying gaps and proposing improvements.
- Design integrations for SSO, MFA, JIT/JEA access, SAML, OAuth, and OpenID Connect protocols.
- Develop and maintain scripted solutions (PowerShell) for identity workflows and automation.
- Support Privileged Access Management (CyberArk) and identity lifecycle governance.
- Resolve complex IAM technical issues and improve system performance.
- Document IAM processes, configurations, and audit remediation actions.
- Collaborate with IT, security, and application teams to ensure alignment with organizational objectives.
**Required Skills**
- Strong hands-on experience with Saviynt EIC, SailPoint, Okta, or Microsoft EntraID.
- Technical expertise in CyberArk, API integrations, SAML, OAuth, and OpenID Connect.
- Scripting/automation skills (PowerShell).
- Familiarity with IAM identity lifecycle management and regulatory compliance (e.g., IAM best practices, data protection standards).
- Experience with identity lifecycle automation tools and cross-system integration.
- Problem-solving abilities for IAM architectures and troubleshooting.
**Required Education & Certifications**
- Bachelor’s degree in Information Security, Computer Science, or Engineering.
- Preferred certifications: Saviynt Certified Advanced IGA Professional, SailPoint Certified IdentityIQ Engineer/Identity Security Architect, ISC2 CC, or CompTIA Security+.
- 5+ years of enterprise IAM/IGA experience (Saviynt preferred).
- Understanding of OT/ICS identity use cases and hybrid cloud environments.