Job Description

:
As an Identity and Security Engineer, you will secure digital identities across a complex, hybrid enterprise environment. You will design, implement, and manage Identity and Access Management (IAM) systems supporting thousands of users, applications, and services. This hands-on role requires deep expertise in identity protocols, cloud IAM, and security automation. You will collaborate with infrastructure, DevOps, application development, and compliance teams to ensure identity is a core pillar of our security architecture.
Key Responsibilities
Identity Architecture & Engineering
Design and implement scalable IAM solutions including SSO, MFA, and RBAC.
Manage identity lifecycle processes: onboarding, offboarding, access reviews, and recertification.
Integrate identity systems with enterprise applications, cloud platforms (Azure AD, AWS IAM, GCP IAM), and third-party services.
Security Operations & Automation
Develop and maintain automation for identity provisioning, de-provisioning, and access governance.
Implement and manage Privileged Access Management (PAM) solutions to secure administrative access.
Support Zero Trust Architecture and enforce least privilege access across systems.
Monitoring, Detection & Incident Response
Monitor identity-related events and anomalies using SIEM and identity analytics tools.
Investigate and respond to identity-related security incidents.
Conduct root cause analysis and implement corrective actions.
Compliance & Governance
Ensure identity systems comply with GDPR, PCI-DSS, ISO 27001, and other standards.
Maintain audit trails, access logs, and documentation for audits.
Participate in risk assessments, policy development, and security awareness initiatives.
Collaboration & Continuous Improvement
Embed identity security into CI/CD pipelines and cloud-native applications.
Provide technical guidance and mentorship to junior engineers.
Stay current with emerging identity technologies, threats, and best practices.
Required Qualifications
5+ years in identity and access management or security engineering roles.
Strong knowledge of IAM protocols: SAML, OAuth2, OpenID Connect, LDAP, SCIM.
Hands-on experience with Azure AD, Active Directory, AWS IAM, GCP IAM.
Experience with PAM tools (e.g., CyberArk, BeyondTrust, HashiCorp Vault).
Proficiency in scripting and automation (PowerShell, Python, or similar).
Solid understanding of Zero Trust principles and identity governance.
Preferred Qualifications
Certifications: Microsoft Identity and Access Administrator, CISSP, Azure Security Engineer, or equivalent.
Experience in large-scale enterprise or retail environments.
Familiarity with identity analytics, behavioral monitoring, and Just-In-Time (JIT) access.
Knowledge of DevSecOps practices and integration of IAM into CI/CD pipelines.
Skills:
Identity Access Management,Information Security,Security Monitoring
About Company:
UST is a global digital transformation solutions provider. For more than 20 years, UST has worked side by side with the world's best companies to make a real impact through transformation. Powered by technology, inspired by people and led by purpose, UST partners with their clients from design to operation. With deep domain expertise and a future-proof philosophy, UST embeds innovation and agility into their clients' organizations. With over 30,000 employees in 30 countries, UST builds for boundless impact--touching billions of lives in the process.

Skills Required