Willingness to support deployments during weekends and after-office hours when required
Will only consider Singapore Citizens due to CAT1 Clearance.
Summary:
We are looking for an experienced IAM Engineer to support a large-scale project within the Cybersecurity Platform Operations team. This role will focus on deploying and operationalising enhancements across platforms including SailPoint IdentityIQ, CyberArk, Conjur, Secrets Hub, Ping Identity, and Identity Store, supporting over 150 applications.
The position involves hands-on delivery across IAM systems, covering production rollout, validation testing, issue resolution, and incident management.
Key Responsibilities
- Execute deployment activities across IAM platforms, including production rollout, validation testing, issue remediation, and incident handling.
- Support onboarding and integration of applications across SailPoint IdentityIQ, CyberArk, Conjur, Secrets Hub, Ping Identity, and Identity Store.
- Implement and manage SailPoint IdentityIQ, including Lifecycle Management (LCM) and Joiner-Mover-Leaver (JML) workflows.
- Maintain and troubleshoot identity workflows, roles, certification campaigns, and policies within SailPoint IdentityIQ.
- Configure and enable CyberArk connectors for password rotation and session management across applications.
- Support rollout activities for CyberArk Secure Web Sessions and Workforce Password Manager.
- Implement Just-in-Time (JIT) access provisioning and Endpoint Privileged Management (EPM) for administrative access control.
- Perform technical design, implementation, and customization for CyberArk and Conjur solutions.
- Configure and maintain Ping Identity hybrid SSO environments to improve resiliency.
- Implement and manage SSO integrations using SAML, OAuth, OIDC, and SCIM protocols.
- Deploy connectors for centralised API authentication using PingID and onboard applications to PingOne for SSO configuration.
- Document post-deployment validation results, develop and update Standard Operating Procedures (SOPs), and conduct knowledge transfer to the CPO team.
- Review existing SOPs and recommend process improvements to enhance operational efficiency.
- Identify and implement automation opportunities to reduce manual effort and improve support processes.
- Provide technical guidance to the CPO team in resolving incidents and system issues.
Requirements
- Singapore Citizen
- Degree in Computer Science, Information Technology, or a related field.
- Minimum 3 years of hands-on experience in deploying and managing IAM platforms, including: SailPoint IdentityIQ, CyberArk, Conjur, Secrets Hub, Ping Identity
- Strong troubleshooting experience across IAM systems and processes.
- Hands-on experience onboarding applications into SailPoint IdentityIQ.
- Experience working with SSO and federated authentication protocols (SAML, OAuth, OIDC, SCIM).
- Willingness to support deployments during weekends and after-office hours when required.
- Strong analytical mindset with the ability to solve complex technical issues.
- Collaborative team player with good communication skills.
Good to Have
- Certifications in CyberArk (PAM, Conjur, Credential Provider), SailPoint, or Ping Identity.
