Security Engineer, Identity And Access Management (Iam)

TL;DR

Security Engineer, Identity and Access Management (IAM): Leading the integration, support, and governance of the identity ecosystem with an accent on building scalable RBAC models and maintaining a rigorous access review cycle. Focus on ensuring that every identity has exactly the permissions it needs and nothing more.

Location: Belgrade, Serbia; Berlin, Germany; Limassol, Cyprus; Madrid, Spain; Munich, Germany; Paphos, Cyprus; Prague, Czech Republic; Warsaw, Poland; Yerevan, Armenia. Enjoy the freedom to work from home or from the office.

Company

hirify.global is a software development company focused on helping developers work faster by automating routine checks and fixes.

What you will do

• Lead the technical integration of new applications and services into our centralized IAM platform.
• Provide expert support for complex authentication/authorization issues and serve as a technical escalation point.
• Maintain and optimize IAM infrastructure, including SSO (SAML, OAuth 2.0, OIDC), MFA, and PAM solutions.
• Execute and oversee periodic access re-certifications, ensuring compliance across periodic audit cycles (SOC 2).
• Conduct detailed permission reviews for individuals and system integrations to enforce the Principle of Least Privilege (PoLP).
• Design, document, and implement Role-Based Access Control (RBAC) and Attribute-Based Access Control (ABAC) frameworks across a wide range of systems.

Requirements

• 3+ years of professional experience focused on Identity and Access Management (IAM) engineering or architecture.
• Proven experience administering enterprise IAM solutions and integrating them with diverse systems (e.g., Okta, Auth0, Ping Identity, Microsoft Entra ID).
• Scripting and automation skills using a scripting language such as Python, Go, Bash, or PowerShell.
• Familiarity with cloud IAM solutions (e.g., AWS IAM, GCP IAM).
• Solid understanding of networking, security protocols, and SSO technologies and standards, including SAML, OAuth 2.0, and OIDC.

Nice to have

• Experience in the software development industry, particularly with managing access to source code repositories (Git/GitHub/GitLab) and CI/CD tools (TeamCity, GitLab CI).
• Hands-on experience with Privileged Access Management (PAM) concepts and tools.
• Knowledge of Zero Trust Architecture (ZTA) principles and how to apply them to developer workflows.
• Security certifications (e.g., CISSP, CISA, relevant vendor certifications).
• Familiarity with compliance frameworks relevant to software vendors (SOC 2).

Culture & Benefits

• Flexible work location. Enjoy the freedom to work from home or from the office.
• Remote work. Spend up to 30 days per year working remotely from abroad.
• Extra time off. More days to relax, recharge, and do the things you love.
• Medical insurance allowance. Enjoy peace of mind for you and your family.
• Learning and development opportunities. Access to conferences, courses, and language classes.
• Relocation support. We help make your move as smooth and stress-free as possible.