{"id":2359,"date":"2025-06-18T04:22:16","date_gmt":"2025-06-18T04:22:16","guid":{"rendered":"https:\/\/estreetsecurity.com\/services\/?post_type=jobpost&p=2359"},"modified":"2025-06-18T04:22:17","modified_gmt":"2025-06-18T04:22:17","slug":"senior-cybersecurity-engineer-identity-access-management-iam","status":"publish","type":"jobpost","link":"https:\/\/estreetsecurity.com\/services\/jobs\/senior-cybersecurity-engineer-identity-access-management-iam\/","title":{"rendered":"Senior Cybersecurity Engineer – Identity & Access Management (IAM)"},"content":{"rendered":"\n

Senior Cybersecurity Engineer – Identity & Access Management (IAM)<\/h2>\n\n\n\n

Posted:<\/strong> June 18, 2025 Job Type:<\/strong> Permanent Industry:<\/strong> Cybersecurity<\/p>\n\n\n\n

A globally leading technology company at the forefront of the payments and financial services sector<\/strong> is actively seeking a highly skilled and strategic Senior Cybersecurity Engineer<\/strong> to join its pivotal Identity & Access Management (IAM)<\/strong> team. This isn’t just a role; it’s a high-impact opportunity within a dynamic and rapidly evolving cybersecurity organization. You’ll be directly responsible for designing, implementing, and maintaining secure access to vital business portals and services across a vast, complex, and global enterprise. If you’re a seasoned professional passionate about securing digital identities, architecting robust access solutions, and thriving in a challenging, fast-paced environment, this opportunity in Austin, TX, is tailored for you.<\/p>\n\n\n\n

\n\n\n\n

Location & Compensation:<\/h3>\n\n\n\n
    \n
  • Location:<\/strong> Austin, TX (This role offers a flexible hybrid work model<\/strong>, blending onsite collaboration with remote work.)<\/li>\n\n\n\n
  • Salary:<\/strong> USD $175,000 annually<\/li>\n<\/ul>\n\n\n\n
    \n\n\n\n

    About the Role:<\/h3>\n\n\n\n

    As a Senior Cybersecurity Engineer on the IAM team, you will be a critical contributor to the strategic design, robust implementation, and ongoing maintenance of our client’s core IAM solutions. Your expertise will be particularly concentrated on ForgeRock technologies<\/strong>, serving as a key pillar in their access management ecosystem. You’ll operate within a dynamic hybrid work environment, necessitating extensive collaboration with cross-functional teams and stakeholders situated across multiple global time zones. Your overarching objective will be to ensure the seamless deployment and optimal functioning of secure, scalable, and high-performing access management systems that not only meet the current demands but also anticipate and adapt to the evolving needs of a cutting-edge global organization.<\/p>\n\n\n\n

    \n\n\n\n

    Key Responsibilities:<\/h3>\n\n\n\n

    Your responsibilities in this crucial, high-visibility role will include:<\/p>\n\n\n\n

      \n
    • Web Application Single Sign-On (SSO) Integration:<\/strong> You’ll lead the seamless integration of diverse web applications for single sign-on (SSO) capabilities, leveraging the full power of ForgeRock<\/strong> solutions to streamline user experience while maintaining stringent security.<\/li>\n\n\n\n
    • Identity Federation Configuration:<\/strong> You’ll expertly configure and manage identity federation, utilizing industry-standard protocols such as SAML 2.0, OpenID Connect (OIDC), and OAuth<\/strong> to enable secure and efficient cross-domain access.<\/li>\n\n\n\n
    • Authentication & Authorization Policy Development:<\/strong> You’ll be instrumental in developing, implementing, and meticulously managing sophisticated authentication chains and granular authorization policies. This ensures precise control over who can access what, under what conditions, across the entire enterprise.<\/li>\n\n\n\n
    • ForgeRock Core System Management:<\/strong> You’ll be responsible for the end-to-end installation, configuration, and optimization of core ForgeRock AM (Access Management)<\/strong> and Directory Server (DS)<\/strong> components, ensuring their stability, performance, and security.<\/li>\n\n\n\n
    • Session & Directory Synchronization:<\/strong> You will implement robust session management strategies and efficient directory synchronization processes to maintain data consistency, user attributes, and access privileges across various identity stores.<\/li>\n\n\n\n
    • LDAP Policy & Custom Access Control:<\/strong> You’ll set up and enforce advanced LDAP<\/strong> password policies and design intricate access control mechanisms, including leveraging custom scripts, to meet highly specific security and compliance requirements.<\/li>\n\n\n\n
    • Performance Engineering & Monitoring:<\/strong> This role includes building and meticulously maintaining performance testing labs, alongside developing sophisticated monitoring scripts. Your efforts here will ensure the optimal health, responsiveness, and scalability of the IAM infrastructure.<\/li>\n\n\n\n
    • ForgeRock Agent Deployment & Management:<\/strong> You’ll strategically deploy and manage ForgeRock agents<\/strong> across a variety of web and application servers throughout the global enterprise, ensuring consistent policy enforcement.<\/li>\n\n\n\n
    • Global Team Collaboration & Requirements Alignment:<\/strong> You’ll collaborate extensively and effectively with global teams to understand their unique business needs and security requirements, translating these into actionable, secure, and scalable IAM solutions.<\/li>\n\n\n\n
    • IAM Subject Matter Expertise:<\/strong> You’ll serve as a primary subject matter expert (SME)<\/strong> for IAM technologies and best practices, providing critical guidance, insights, and mentorship to internal teams and projects.<\/li>\n\n\n\n
    • Technical Design & Documentation:<\/strong> You are expected to create and maintain comprehensive technical designs, detailed infrastructure configurations, and clear operational runbooks, ensuring accuracy and facilitating effective knowledge transfer.<\/li>\n\n\n\n
    • Multi-Factor Authentication (MFA) Support:<\/strong> You’ll provide expert support for multi-factor authentication (MFA) implementations, actively enhancing the overall security posture by strengthening user identity verification.<\/li>\n<\/ul>\n\n\n\n
      \n\n\n\n

      Basic Qualifications:<\/h3>\n\n\n\n

      Candidates are expected to meet the following foundational requirements:<\/p>\n\n\n\n

        \n
      • Experience & Education:<\/strong> A minimum of 5+ years of directly relevant experience<\/strong> in cybersecurity or information technology, coupled with a Bachelor’s degree. An equivalent combination of education and experience will also be considered.<\/li>\n<\/ul>\n\n\n\n
        \n\n\n\n

        Preferred Qualifications:<\/h3>\n\n\n\n

        Highly qualified candidates will also bring the following valuable experience and attributes:<\/p>\n\n\n\n

          \n
        • Extensive IAM\/Cybersecurity Experience:<\/strong> 6+ years of dedicated experience<\/strong> specifically in Identity & Access Management or broader cybersecurity engineering roles.<\/li>\n\n\n\n
        • ForgeRock & LDAP Mastery:<\/strong> Strong, in-depth knowledge and hands-on expertise with ForgeRock<\/strong> platforms (including Access Management, Directory Services, Identity Gateway), LDAP<\/strong> directories, and various authentication protocols (e.g., Kerberos, OAuth, OpenID Connect).<\/li>\n\n\n\n
        • Web & Application Server Experience:<\/strong> Proven experience configuring and troubleshooting web and application servers such as Apache, IIS, Tomcat, and Node.js<\/strong>, as well as comprehensive familiarity with both Linux and Windows operating environments<\/strong>.<\/li>\n\n\n\n
        • Agile Development Methodologies:<\/strong> Strong familiarity with Agile\/Scrum methodologies<\/strong> and practical experience utilizing collaborative project management tools like Jira<\/strong>.<\/li>\n\n\n\n
        • Security Standards & Compliance:<\/strong> A solid understanding of key security standards and compliance frameworks relevant to financial services, such as PCI-DSS, NIST, and FFIEC<\/strong>.<\/li>\n\n\n\n
        • Cloud IAM & API Security:<\/strong> Direct experience with cloud-based IAM solutions (e.g., Azure AD, AWS IAM) and a strong grasp of API security principles<\/strong>, including API gateways and token-based authentication.<\/li>\n\n\n\n
        • Exceptional Communication & Documentation:<\/strong> Outstanding communication skills, both verbal and written, coupled with a demonstrated ability to create clear, concise, and comprehensive technical documentation for diverse audiences.<\/li>\n<\/ul>\n\n\n\n
          \n\n\n\n

          This is an exceptional opportunity for a senior-level cybersecurity engineer to make a profound impact within a global leader in financial technology. If you possess the required expertise in IAM, particularly with ForgeRock, and are eager to contribute to a secure and innovative payments ecosystem, we strongly encourage you to apply. We look forward to connecting with driven professionals who are ready for their next significant challenge!<\/p>\n","protected":false},"excerpt":{"rendered":"

          Senior Cybersecurity Engineer – Identity & Access Management (IAM) Posted: June 18, 2025 Job Type: Permanent Industry: Cybersecurity A globally leading technology company at the forefront of the payments and financial services sector is actively seeking a highly skilled and strategic Senior Cybersecurity Engineer to join its pivotal Identity & Access Management (IAM) team. This […]<\/p>\n","protected":false},"author":1,"featured_media":0,"menu_order":0,"template":"","jobpost_category":[231],"jobpost_job_type":[348],"jobpost_location":[578],"jobpost_tag":[254,595,604,583,590,592,603,288,602,582,580,584,585,529,331,332,597,599,566,487,593,594,260,598,591,589,581,601,588,600,240,579,587,586,596,507],"class_list":["post-2359","jobpost","type-jobpost","status-publish","hentry","jobpost_category-security","jobpost_job_type-hybrid","jobpost_location-austin-tx","jobpost_tag-agile","jobpost_tag-apache","jobpost_tag-api-security","jobpost_tag-austin-tx","jobpost_tag-authentication","jobpost_tag-authorization","jobpost_tag-cloud-iam","jobpost_tag-cybersecurity","jobpost_tag-ffiec","jobpost_tag-financial-services","jobpost_tag-forgerock","jobpost_tag-forgerock-am","jobpost_tag-forgerock-ds","jobpost_tag-hybrid-work","jobpost_tag-iam","jobpost_tag-identity-and-access-management","jobpost_tag-iis","jobpost_tag-jira","jobpost_tag-ldap","jobpost_tag-linux","jobpost_tag-mfa","jobpost_tag-multi-factor-authentication","jobpost_tag-nist","jobpost_tag-node-js","jobpost_tag-oauth","jobpost_tag-openid","jobpost_tag-payments-industry","jobpost_tag-pci-dss","jobpost_tag-saml-2-0","jobpost_tag-scrum","jobpost_tag-security-engineer","jobpost_tag-senior-cybersecurity-engineer","jobpost_tag-single-sign-on","jobpost_tag-sso","jobpost_tag-tomcat","jobpost_tag-windows"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/estreetsecurity.com\/services\/wp-json\/wp\/v2\/jobpost\/2359","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/estreetsecurity.com\/services\/wp-json\/wp\/v2\/jobpost"}],"about":[{"href":"https:\/\/estreetsecurity.com\/services\/wp-json\/wp\/v2\/types\/jobpost"}],"author":[{"embeddable":true,"href":"https:\/\/estreetsecurity.com\/services\/wp-json\/wp\/v2\/users\/1"}],"wp:attachment":[{"href":"https:\/\/estreetsecurity.com\/services\/wp-json\/wp\/v2\/media?parent=2359"}],"wp:term":[{"taxonomy":"jobpost_category","embeddable":true,"href":"https:\/\/estreetsecurity.com\/services\/wp-json\/wp\/v2\/jobpost_category?post=2359"},{"taxonomy":"jobpost_job_type","embeddable":true,"href":"https:\/\/estreetsecurity.com\/services\/wp-json\/wp\/v2\/jobpost_job_type?post=2359"},{"taxonomy":"jobpost_location","embeddable":true,"href":"https:\/\/estreetsecurity.com\/services\/wp-json\/wp\/v2\/jobpost_location?post=2359"},{"taxonomy":"jobpost_tag","embeddable":true,"href":"https:\/\/estreetsecurity.com\/services\/wp-json\/wp\/v2\/jobpost_tag?post=2359"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}