Principal Cybersecurity Engineer (Identity & Access Management)

TL;DR

Principal Cybersecurity Engineer (Identity & Access Management): Serving as the enterprise authority for identity security governance and architecture with an accent on defining the long-term IAM strategy and establishing enterprise-wide standards. Focus on ensuring identity risks are managed consistently across the organization and providing strategic leadership and architectural oversight.

Location: Hybrid Brno, Czechia

Company

hirify.global is the trusted provider of software that enables customers to develop, deploy and manage responsible, AI-powered applications and experiences with agility and ease.

What you will do

• Own the enterprise IAM governance and architecture strategy.
• Define multi-year IAM roadmap aligned to Zero Trust and business priorities.
• Establish enterprise identity reference architectures and guardrails.
• Define authentication, authorization, and privilege models across platforms.
• Define enterprise IAM policies, standards, and control frameworks.
• Evaluate IAM, IGA, and PAM technologies from a strategic perspective.

Requirements

• Bachelor’s degree in information technology, Information Security/Assurance, Computer Science, Engineering, or related field or equivalent combination of education and experience.
• 6-8 years of experience in cybersecurity, identity security, or security engineering.
• Deep expertise in IAM governance, architecture, and risk management.
• Proven experience leading enterprise-scale IAM initiatives.
• Strong understanding of zero trust identity architectures, RBAC / ABAC and role governance, privileged access governance and admin models, and Identity lifecycle / access assurance.
• Excellent executive communication and stakeholder management skills.

Nice to have

• Experience operating as a principal, lead architect, or enterprise security architect.
• Identity platform experience across multiple vendors (Entra ID, Okta, SailPoint, CyberArk, etc.).
• Experience in regulated or complex enterprise environments.
• Certifications such as CISSP, CCSP, SABSA, or identity-focused credentials.

Culture & Benefits

• Generous remuneration package and Employee Stock Purchase Plan Enrollment.
• 30 days paid annual vacation, an extra day off for your birthday, and 2 additional days off for volunteering.
• Premium healthcare and dental care coverage and additional pension insurance.
• Well-equipped gym on-site with CrossFit equipment and a climbing wall and co-funded Multisport card.
• Daycare Center for your little ones onsite.
• Flexible working hours.
• Free underground parking with a designated space for bikes, motorbikes and electric scooters.