Security Engineer II - Identity and Access Security

 Posted 3 days ago
     
5-10 years experience
Apply Now

Please mention DailyRemote when applying

AI Summary

Design, implement, and support enterprise IAM, PAM, and IGA solutions to ensure secure and compliant access. Manage identity lifecycles, privileged access controls, and machine identity security while developing automation scripts.

What success looks like in this role:

We are looking for an experienced Senior IAM Engineer to join our Identity & Access Security team. In this role, you will design, implement, and support enterprise Identity and Access Management (IAM), Privileged Access Management (PAM), Identity Governance (IGA), and Machine Identity Security solutions. You will work closely with security, infrastructure, and application teams to ensure secure and compliant access across the organization.

Key Responsibilities

  • Design, implement, and support IAM, IGA, and PAM solutions using platforms such as Microsoft Entra ID, Microsoft Identity Manager (MIM), and Delinea PAM.
  • Manage identity lifecycle processes including onboarding, offboarding, access provisioning, role changes, and access reviews.
  • Administer privileged access controls and support Zero Trust security initiatives.
  • Support machine identity security, certificate lifecycle management, PKI integrations, and service account governance.
  • Develop automation solutions using PowerShell, Python, or similar scripting technologies.
  • Troubleshoot complex identity, authentication, and access-related issues while ensuring compliance with security standards and best practices.

You will be successful in this role if you have:

Must-Have Skills & Experience

  • 8+ years of hands-on experience in Identity & Access Management (IAM) engineering and administration.
  • Strong experience with IAM, Identity Governance (IGA), and Privileged Access Management (PAM) solutions.
  • Hands-on experience with Microsoft Entra ID and Microsoft Identity Manager (MIM), or similar platforms such as SailPoint, Saviynt, or OneIdentity.
  • Experience with identity lifecycle management, access provisioning, deprovisioning, role changes, and access reviews.
  • Knowledge of Privileged Identity Management (PIM), RBAC, least-privilege principles, and Zero Trust architecture.
  • Strong understanding of PKI, certificate lifecycle management, and machine identity security.
  • Experience with service account governance, application identities, and secrets management.
  • Scripting and automation skills using PowerShell, Python, or similar technologies.
  • Strong troubleshooting, analytical, and communication skills.

Nice-to-Have Skills

  • Experience with PAM solutions such as CyberArk, BeyondTrust, or Delinea.
  • Experience with enterprise PKI and certificate management platforms such as Venafi, Keyfactor, or DigiCert Trust Lifecycle Manager.
  • Familiarity with machine identity governance, workload identities, and advanced secrets management solutions.
  • Understanding of AI Security, AI governance frameworks, non-human identities, and AI agent access controls.
  • Experience integrating IAM/PAM solutions with SIEM or SOC platforms.
  • Knowledge of programming languages such as Python, Java, or C#.
  • Relevant certifications such as Microsoft SC-300, CISSP, Security+, Certified Identity Management Professional (CIMP), or PAM/PKI-related certifications.

What we offer

  • Full-remote working conditions
  • Monthly gross 44,200 HUF cafeteria, regardless of weekly working hours
  • Home office allowance
  • Private Health Insurance (Generali Premium Package) for all Unisys associates after 6 months
  • And last but not least: a supportive, collaborative team with plenty of learning and development opportunities

Unisys is proud to be an equal opportunity employer that considers all qualified applicants without regard to age, caste, citizenship, color, disability, family medical history, family status, ethnicity, gender, gender expression, gender identity, genetic information, marital status, national origin, parental status, pregnancy, race, religion, sex, sexual orientation, transgender status, veteran status or any other category protected by law.

This commitment includes our efforts to provide for all those who seek to express interest in employment the opportunity to participate without barriers. If you are a US job seeker unable to review the job opportunities herein, or cannot otherwise complete your expression of interest, without additional assistance and would like to discuss a request for reasonable accommodation, please contact our Global Recruiting organization at GlobalRecruiting@unisys.com or alternatively Toll Free: 888-560-1782 (Prompt 4).  US job seekers can find more information about Unisys’  EEO commitment here.

Similar Jobs

See all Remote Software Development jobs →

Personalize your Remote Job Search in 3 Easy Steps!

Discover remote opportunities in Security Engineer

Answer easy questions

Answer easy questions

200,000+ jobs across 15+ categories

Get your best job matches

Get your best job matches

Only hand-screened, legit jobs

Find a remote job faster

Find a remote job faster

No ads, scams, or junk

I was the first applicant for a remote marketing position that got listed on the company website the same day I applied. Had an interview within 48 hours!

Sarah J. — Sarah J. · Marketing Manager ★★★★★ Verified