Sr. Technology Engineer - IAM & Security Platforms

We are seeking an experienced Senior Technology Engineer specializing in enterprise security tools and Identity & Access Management (IAM) platforms. The role focuses on designing, implementing, and maintaining critical security technologies across large-scale enterprise infrastructure environments.

The ideal candidate will play a key role in onboarding, integrating, and sustaining security products within the IT landscape, ensuring secure identity lifecycle management, privileged access control, and authentication systems in a complex banking technology environment.

This position requires strong hands-on technical expertise in IAM tools, security engineering practices, scripting, and enterprise integration across distributed systems.

Requirements

Key Responsibilities

Security Tools Engineering & Implementation

• Design, develop, deploy, and maintain enterprise security tools and platforms
• Ensure secure and scalable implementation of IAM and security infrastructure solutions
• Follow Site Reliability Engineering (SRE) principles for platform maintenance and stability

Identity & Access Management (Primary Focus)

• Implement Identity Governance & Administration (IGA) solutions using SailPoint IdentityIQ or Identity Security Cloud
• Design and manage Joiner, Mover, Leaver (JML) workflows
• Develop access request frameworks, provisioning, de-provisioning, and certification processes
• Build and customize SailPoint workflows, forms, rules, and plugins
• Develop connectors (REST/SOAP, AD, JDBC) for enterprise integrations
• Perform SailPoint IIQ upgrades and enhancements
• Work with Java/J2EE, BeanShell scripting, rules (Build Map, Manager Correlation), and Velocity email templates

Single Sign-On (SSO) & Authentication

• Hands-on experience with PingFederate and/or PingAccess
• Implement and support SAML 2.0, OAuth 2.0, OpenID Connect (OIDC), Federated Identity
• Troubleshoot authentication flows and SSO integration issues
• Ensure secure and seamless identity federation across enterprise systems

Secondary Security Toolset (Good to Have)

• CyberArk (Privileged Access Management – PAM)
• HashiCorp Vault (Secrets Management)
• CipherTrust Manager / CT-VL (Encryption & Tokenization Services)
• Imperva (Database Access Monitoring)
• AppViewX (Certificate Management)

Platform Engineering & Delivery

• Work in Agile environments for continuous product engineering lifecycle
• Collaborate with infrastructure, architecture, and security teams
• Design secure enterprise-grade security solutions
• Support integration of security tools across IT infrastructure landscape
• Provide risk assessment and mitigation recommendations to technical and business stakeholders
• Ensure adherence to security standards, baselines, and compliance requirements

Stakeholder & Delivery Management

• Collaborate with cross-functional teams across IT, infrastructure, architecture, and security
• Participate in design forums and technical governance discussions
• Communicate risks, issues, and mitigation strategies to stakeholders
• Ensure timely delivery of security engineering initiatives

Incident & Operations Support

• Support cyber security operations during incidents as per incident response procedures
• Ensure secure and reliable operation of identity and security platforms
• Participate in troubleshooting and production issue resolution

Required Skills & Qualifications

Technical Skills (Must Have)

• Strong experience in SailPoint IdentityIQ or Identity Security Cloud
• Strong understanding of Identity Governance & Administration (IGA) concepts
• Hands-on experience in PingFederate / PingAccess
• Strong knowledge of SAML, OAuth2, OpenID Connect
• Experience with Java/J2EE development and scripting
• Experience with REST/SOAP APIs, AD, JDBC integrations
• Strong scripting skills (Python, PowerShell, Bash)
• Strong understanding of enterprise security architecture

Experience Requirements

• 8+ years of experience in technology/security engineering roles
• Minimum 4+ years hands-on experience in SailPoint
• Minimum 2+ years experience in SSO / Ping Identity tools
• Experience in large enterprise or banking environments preferred

Preferred / Nice to Have

• CyberArk Privileged Access Management
• HashiCorp Vault
• CipherTrust / encryption & tokenization tools
• Imperva database security
• AppViewX certificate management
• Experience in automation and security enhancement initiatives
• Experience in cybersecurity operations and incident response

Education & Certifications

• Bachelor’s or Master’s degree in Computer Science or related field
• Preferred certifications: CISSP, CISM, CISA
• SailPoint Certified Engineer (preferred)
• Ping Identity certifications (preferred)

Key Competencies

• Strong security mindset and attention to detail
• Strong problem-solving and analytical skills
• Ability to work in complex enterprise environments
• Strong communication and stakeholder management
• Ownership mindset with accountability for delivery
• Ability to work in cross-functional global teams
• Innovative and automation-driven approach

Work Environment

• Enterprise-scale technology and security platform environment
• Agile + DevSecOps aligned delivery model
• High-impact role within security transformation programs