Identity and Access Management and Privileged Access Management Engineer at InvoiceCloud

📋 Description

• Lead Identity Architecture and Access Control design across hybrid clouds.
• Implement SSO and MFA with conditional access and device posture checks.
• Advance PAM controls: vaulting, JIT, least privilege, and session monitoring.
• Deliver audit-ready reports; improve MFA coverage and reduce risk.
• Develop JML automation for timely provisioning/deprovisioning.
• Partner with Security/Compliance/HR to define access standards and evidence.

🎯 Requirements

• Bachelor's degree in IT Security, CS, or related field (or equivalent).
• 5+ years IAM/PAM or identity-focused security roles.
• Experience with Azure AD/Entra ID and Okta.
• Knowledge of SAML, OIDC/OAuth2, SCIM.
• Privileged access controls: vaulting, JIT, least privilege.
• Scripting/APIs: PowerShell, Python, Graph APIs.
• Entitlement reviews and Joiner/Mover/Leaver processes.
• Zero-trust architecture and identity governance best practices.

🎁 Benefits

• Award-winning, purpose-driven workplace.
• Commitment to equal opportunity and non-discrimination.
• Disability and religious accommodation on request.
• Privacy protections for job applicants and data.