671 Iam Engineer jobs in India

Job Description

This is a remote position.

Join Tsaaro as an Identity and Access Management (IAM) Engineer

Connect with Purpose. Secure Digital Identities. Strengthen Trust.

Are you a motivated cybersecurity professional passionate about identity management, access control, and secure authentication? Looking to step into a fast-growing industry where your expertise directly contributes to building safer digital ecosystems?

At Tsaaro, we go beyond compliance — we shape how data privacy, security, and identity governance are understood and adopted across industries. As part of our expanding technology team, we’re looking for an Identity and Access Management (IAM) Engineer who thrives in a high-impact environment and understands the importance of security, precision, and innovation in protecting critical digital assets.

About Tsaaro

At Tsaaro, privacy and security aren’t just support functions — they’re our core mission. We are a specialized data privacy and cybersecurity consulting firm that helps organizations build robust compliance frameworks while communicating their security posture effectively to clients, partners, and regulators.

Our technology team plays a vital role in developing and deploying solutions that safeguard digital identities, enforce access policies, and ensure compliance with global security standards.

Your Role: Identity and Access Management (IAM) Engineer

We are seeking highly motivated and experienced IAM Security experts to join our global team on a critical Role-Based Access Control (RBAC) remediation project. This is a 6-month contract position with the potential to transition into a full-time role based on performance and project deliverables.  The successful candidate will work remotely with a globally distributed team across multiple time zones.

Key Responsibilities:

• Analyse and remediate legacy RBAC structures involving over 20,000 existing global roles across multiple business verticals.
  
• Collaborate with business stakeholders, application owners, and IAM team members to define and document standardised job roles and least-privilege access models.
  
• Perform data mining and access reviews to validate and optimize current role assignments.
  
•  Map existing entitlement to appropriate roles and identify redundant, excessive, or conflicting access.
  
•  Assist in defining role engineering methodologies , governance standards, and access certification requirements.
  
•  Support automation and integration efforts with current IAM tools and platforms (SailPoint and Microsoft Active Directory Services) .
  
•  Document remediation activities, changes, and business approvals in alignment with security best practices, compliance and audit requirements.
  

Requirements

• 3-6+ years of hands-on experience in Identity and Access Management, with a focus on role-based access control management and remediation.
  
• Strong understanding of IAM principles and best practices, including least privilege, segregation of duties (SoD), and access lifecycle management.
  
•  Experience with SailPoint, Microsoft AD and Entra, Saviynt, Okta, or similar.
  
•  Strong data analysis skills (Excel, Power-bi, PowerShell, or scripting for data review and reporting).
  
•  Experience working independently in a remote, global environment and manage cross-functional collaboration effectively.
  
•  Excellent verbal and written communication skills.
  
•  Experience with security and compliance frameworks (e.g., PCI-DSS, HIPAA, NIST).
  
•  CISA, CISSP or ISO 27001 certifications is a plus
  

Preferred Qualifications:

•  Prior experience working in large, global enterprises with complex access control structures.
  
•  Familiarity with contractor onboarding, off boarding, and non-human identity governance.
  
•  Experience with enterprise Identity Access remediation initiatives and projects.
  

Benefits

• Be part of one of India’s fastest-growing privacy and cybersecurity consulting firms, contributing directly to securing digital identities and protecting critical business systems.
  
• Gain deep expertise in identity governance, authentication protocols, access control, and cybersecurity frameworks while working on impactful IAM projects.
  
• Opportunity to grow into senior cybersecurity or IAM architect roles based on performance and technical contributions.
  
• Work closely with experienced security consultants, privacy experts, and technology specialists to design and deliver cutting-edge identity solutions.
  
• Collaborative and transparent work culture with a strong focus on ownership, initiative, and continuous skill development.
  
• Access to advanced IAM training, privacy and security certifications, and performance-based growth opportunities to accelerate your career.
  

From the Tsaaro Team:

“At Tsaaro, IAM isn’t just about access control — it’s about building trust in every digital interaction. As an IAM Engineer, you’ll be at the core of that mission.”

Ready to Elevate Your Privacy Career?

Apply now and be a part of Tsaaro’s mission to   revolutionise privacy and cybersecurity consulting .

Requirements
⦁ Analyze and remediate legacy RBAC structures involving over 20,000 existing global roles across multiple business verticals. ⦁ Collaborate with business stakeholders, application owners, and IAM team members to define and document standardized job roles and least-privilege access models. ⦁ Perform data mining and access reviews to validate and optimize current role assignments. ⦁ Map existing entitlement to appropriate roles and identify redundant, excessive, or conflicting access. ⦁ Assist in defining role engineering methodologies, governance standards, and access certification requirements. ⦁ Support automation and integration efforts with current IAM tools and platforms (SailPoint and Microsoft Active Directory Services). ⦁ Document remediation activities, changes, and business approvals in alignment with security best practices, compliance and audit requirements.

**Company Description:**
Tradeweb Markets is a world leader in the evolution of electronic trading. A fintech company serving approximately 2,500 clients - including the world's largest banks, asset managers, hedge funds, insurance companies, wealth managers and retail clients -- in more than 65 countries across the globe. Since our first trade in 1998, we have helped transform and electronify the fixed income markets. Tradeweb is a culture built on innovation, creativity and collaboration. Through a combination of very talented and driven people, innovative products and solutions, cutting-edge technology, market data, and a vast network of clients, we continue to work together to improve the way financial markets trade.
Mission: Move first and never stop. Collaborate with clients to create and build solutions that drive efficiency, connectivity, and transparency in electronic trading.
Tradeweb Markets LLC ("Tradeweb") is proud to be an EEO Minorities/Females/Protected Veterans/Disabled/Affirmative Action Employer.
Description:**
To capitalize on our success and continued growth, we are seeking a detail-oriented, results-driven IAM Engineer to join our Identity & Access Management (IAM) team. This role will be responsible for engineering and supporting both our Single Sign-On (SSO) integrations and our Identity Governance & Administration (IGA) platform to ensure secure, scalable, and auditable access across the organization.
The ideal candidate will work across the full identity lifecycle-designing and integrating enterprise applications into our SSO infrastructure using modern federation standards (SAML, OIDC, OAuth2), while also onboarding those applications into our IGA platform (such as SailPoint, Saviynt, or equivalent) to enforce role-based access control (RBAC), streamline entitlement reviews, and support regulatory compliance initiatives.
We are looking for an engineer with a strong technical foundation in identity systems who can build and automate IAM solutions, contribute to role modeling and access policies, and communicate effectively with both technical teams and compliance stakeholders. Experience in the financial industry and familiarity with regulatory frameworks (e.g., SOX, GLBA, FFIEC) are strongly preferred.
**Job Responsibilities:**
Support the implementation of access certification processes within the IGA platform (e.g., SailPoint, Saviynt) to ensure periodic entitlement reviews align with least-privilege principles and compliance requirements.
Contribute to the integration of applications with Single Sign-On (SSO) using identity federation protocols such as SAML, OIDC, and OAuth2, collaborating with application teams and security architects.
Work closely with IAM architects and application teams to onboard applications into the IGA platform, ensuring entitlement data, user attributes, and provisioning rules are accurately mapped and configured.
Analyze access patterns and application entitlements to assist in role mining, entitlement rationalization, and the development of scalable, governance-aligned role models.
Document technical specifications, data mappings, and integration workflows for SSO and IGA implementations, supporting both technical teams and audit requirements.
Configure and maintain integrations between target systems and the IGA platform, ensuring proper lifecycle management of users and entitlements.
Assist in the creation of access policies and role definitions, aligning with business and compliance requirements.
Generate reports and provide evidence for audit activities, including entitlement reviews, access request histories, and policy enforcement logs.
Identify technical gaps or inconsistencies in access controls, provisioning workflows, or entitlement structures and propose engineering solutions to address them.
Participate in testing, validation, and deployment of IAM-related changes, ensuring proper functionality across SSO and IGA components.
Provide technical support and knowledge sharing to application teams and business stakeholders around IAM integration processes and access governance best practices.
**Required Qualifications**
Bachelor's degree in information systems, Computer Science, Cybersecurity, or a related technical or business field (or equivalent practical experience).
5+ years of experience in Identity and Access Management (IAM), with at least 2 years focused on access governance, entitlement reviews, or SSO integration.
Hands-on experience with an Identity Governance and Administration (IGA) platform such as SailPoint, Saviynt, or Oracle Identity Governance, including configuring connectors, onboarding applications, and implementing access certification workflows.
Practical experience integrating applications with enterprise Single Sign-On (SSO) solutions using SAML, OIDC, or OAuth2 protocols.
Solid understanding of Role-Based Access Control (RBAC) concepts, the entitlement lifecycle, and how they apply to automated provisioning, de-provisioning, and access modeling.
Demonstrated ability to gather, analyze, and document technical and business requirements to support IAM processes such as role mining, access policy definition, and entitlement rationalization.
Familiarity with regulatory frameworks such as SOX, ISO 27001, NIST, or GLBA, and how they influence identity lifecycle and access governance requirements.
Strong written and verbal communication skills, with the ability to work effectively across technical, security, and business stakeholders.
Experience using tools such as Excel, Visio, and Confluence to create process flows, data maps, and documentation for IAM initiatives.
Highly organized and detail-oriented, with the ability to manage multiple concurrent application onboarding and integration efforts.
**Preferred Qualifications**
Proven experience leading or significantly contributing to enterprise-scale entitlement review campaigns, including remediation strategies and audit response preparation.
Deep hands-on experience customizing complex workflows, provisioning policies, certification rules, and connectors within enterprise IGA platforms such as SailPoint or Saviynt.
Strong proficiency in scripting or programming for IAM automation and data transformation, using languages such as Python or Go, as well as tools like SQL or PowerShell.

Company Description:

Tradeweb Markets is a world leader in the evolution of electronic trading. A fintech company serving approximately 2,500 clients – including the world’s largest banks, asset managers, hedge funds, insurance companies, wealth managers and retail clients -- in more than 65 countries across the globe. Since our first trade in 1998, we have helped transform and electronify the fixed income markets. Tradeweb is a culture built on innovation, creativity and collaboration. Through a combination of very talented and driven people, innovative products and solutions, cutting-edge technology, market data, and a vast network of clients, we continue to work together to improve the way financial markets trade.

Mission: Move first and never stop. Collaborate with clients to create and build solutions that drive efficiency, connectivity, and transparency in electronic trading.

Tradeweb Markets LLC ("Tradeweb") is proud to be an EEO Minorities/Females/Protected Veterans/Disabled/Affirmative Action Employer.

Job Description:

To capitalize on our success and continued growth, we are seeking a detail-oriented, results-driven IAM Engineer to join our Identity & Access Management (IAM) team. This role will be responsible for engineering and supporting both our Single Sign-On (SSO) integrations and our Identity Governance & Administration (IGA) platform to ensure secure, scalable, and auditable access across the organization.

The ideal candidate will work across the full identity lifecycle—designing and integrating enterprise applications into our SSO infrastructure using modern federation standards (SAML, OIDC, OAuth2), while also onboarding those applications into our IGA platform (such as SailPoint, Saviynt, or equivalent) to enforce role-based access control (RBAC), streamline entitlement reviews, and support regulatory compliance initiatives.

We are looking for an engineer with a strong technical foundation in identity systems who can build and automate IAM solutions, contribute to role modeling and access policies, and communicate effectively with both technical teams and compliance stakeholders. Experience in the financial industry and familiarity with regulatory frameworks (e.g., SOX, GLBA, FFIEC) are strongly preferred.

Job Responsibilities:

Support the implementation of access certification processes within the IGA platform (e.g., SailPoint, Saviynt) to ensure periodic entitlement reviews align with least-privilege principles and compliance requirements.

Contribute to the integration of applications with Single Sign-On (SSO) using identity federation protocols such as SAML, OIDC, and OAuth2, collaborating with application teams and security architects.

Work closely with IAM architects and application teams to onboard applications into the IGA platform, ensuring entitlement data, user attributes, and provisioning rules are accurately mapped and configured.

Analyze access patterns and application entitlements to assist in role mining, entitlement rationalization, and the development of scalable, governance-aligned role models.

Document technical specifications, data mappings, and integration workflows for SSO and IGA implementations, supporting both technical teams and audit requirements.

Configure and maintain integrations between target systems and the IGA platform, ensuring proper lifecycle management of users and entitlements.

Assist in the creation of access policies and role definitions, aligning with business and compliance requirements.

Generate reports and provide evidence for audit activities, including entitlement reviews, access request histories, and policy enforcement logs.

Identify technical gaps or inconsistencies in access controls, provisioning workflows, or entitlement structures and propose engineering solutions to address them.

Participate in testing, validation, and deployment of IAM-related changes, ensuring proper functionality across SSO and IGA components.

Provide technical support and knowledge sharing to application teams and business stakeholders around IAM integration processes and access governance best practices.

Required Qualifications

Bachelor’s degree in information systems, Computer Science, Cybersecurity, or a related technical or business field (or equivalent practical experience).

5+ years of experience in Identity and Access Management (IAM), with at least 2 years focused on access governance, entitlement reviews, or SSO integration.

Hands-on experience with an Identity Governance and Administration (IGA) platform such as SailPoint, Saviynt, or Oracle Identity Governance, including configuring connectors, onboarding applications, and implementing access certification workflows.

Practical experience integrating applications with enterprise Single Sign-On (SSO) solutions using SAML, OIDC, or OAuth2 protocols.

Solid understanding of Role-Based Access Control (RBAC) concepts, the entitlement lifecycle, and how they apply to automated provisioning, de-provisioning, and access modeling.

Demonstrated ability to gather, analyze, and document technical and business requirements to support IAM processes such as role mining, access policy definition, and entitlement rationalization.

Familiarity with regulatory frameworks such as SOX, ISO 27001, NIST, or GLBA, and how they influence identity lifecycle and access governance requirements.

Strong written and verbal communication skills, with the ability to work effectively across technical, security, and business stakeholders.

Experience using tools such as Excel, Visio, and Confluence to create process flows, data maps, and documentation for IAM initiatives.

Highly organized and detail-oriented, with the ability to manage multiple concurrent application onboarding and integration efforts.

Preferred Qualifications

Proven experience leading or significantly contributing to enterprise-scale entitlement review campaigns, including remediation strategies and audit response preparation.

Deep hands-on experience customizing complex workflows, provisioning policies, certification rules, and connectors within enterprise IGA platforms such as SailPoint or Saviynt.

Strong proficiency in scripting or programming for IAM automation and data transformation, using languages such as Python or Go, as well as tools like SQL or PowerShell.

Company Description:

Tradeweb Markets is a world leader in the evolution of electronic trading. A fintech company serving approximately 2,500 clients – including the world’s largest banks, asset managers, hedge funds, insurance companies, wealth managers and retail clients -- in more than 65 countries across the globe. Since our first trade in 1998, we have helped transform and electronify the fixed income markets. Tradeweb is a culture built on innovation, creativity and collaboration. Through a combination of very talented and driven people, innovative products and solutions, cutting-edge technology, market data, and a vast network of clients, we continue to work together to improve the way financial markets trade.

Mission: Move first and never stop. Collaborate with clients to create and build solutions that drive efficiency, connectivity, and transparency in electronic trading.

Tradeweb Markets LLC ("Tradeweb") is proud to be an EEO Minorities/Females/Protected Veterans/Disabled/Affirmative Action Employer.

Job Description:

To capitalize on our success and continued growth, we are seeking a detail-oriented, results-driven IAM Engineer to join our Identity & Access Management (IAM) team. This role will be responsible for engineering and supporting both our Single Sign-On (SSO) integrations and our Identity Governance & Administration (IGA) platform to ensure secure, scalable, and auditable access across the organization.

The ideal candidate will work across the full identity lifecycle—designing and integrating enterprise applications into our SSO infrastructure using modern federation standards (SAML, OIDC, OAuth2), while also onboarding those applications into our IGA platform (such as SailPoint, Saviynt, or equivalent) to enforce role-based access control (RBAC), streamline entitlement reviews, and support regulatory compliance initiatives.

We are looking for an engineer with a strong technical foundation in identity systems who can build and automate IAM solutions, contribute to role modeling and access policies, and communicate effectively with both technical teams and compliance stakeholders. Experience in the financial industry and familiarity with regulatory frameworks (e.g., SOX, GLBA, FFIEC) are strongly preferred.

Job Responsibilities:

Support the implementation of access certification processes within the IGA platform (e.g., SailPoint, Saviynt) to ensure periodic entitlement reviews align with least-privilege principles and compliance requirements.

Contribute to the integration of applications with Single Sign-On (SSO) using identity federation protocols such as SAML, OIDC, and OAuth2, collaborating with application teams and security architects.

Work closely with IAM architects and application teams to onboard applications into the IGA platform, ensuring entitlement data, user attributes, and provisioning rules are accurately mapped and configured.

Analyze access patterns and application entitlements to assist in role mining, entitlement rationalization, and the development of scalable, governance-aligned role models.

Document technical specifications, data mappings, and integration workflows for SSO and IGA implementations, supporting both technical teams and audit requirements.

Configure and maintain integrations between target systems and the IGA platform, ensuring proper lifecycle management of users and entitlements.

Assist in the creation of access policies and role definitions, aligning with business and compliance requirements.

Generate reports and provide evidence for audit activities, including entitlement reviews, access request histories, and policy enforcement logs.

Identify technical gaps or inconsistencies in access controls, provisioning workflows, or entitlement structures and propose engineering solutions to address them.

Participate in testing, validation, and deployment of IAM-related changes, ensuring proper functionality across SSO and IGA components.

Provide technical support and knowledge sharing to application teams and business stakeholders around IAM integration processes and access governance best practices.

Required Qualifications

Bachelor’s degree in information systems, Computer Science, Cybersecurity, or a related technical or business field (or equivalent practical experience).

5+ years of experience in Identity and Access Management (IAM), with at least 2 years focused on access governance, entitlement reviews, or SSO integration.

Hands-on experience with an Identity Governance and Administration (IGA) platform such as SailPoint, Saviynt, or Oracle Identity Governance, including configuring connectors, onboarding applications, and implementing access certification workflows.

Practical experience integrating applications with enterprise Single Sign-On (SSO) solutions using SAML, OIDC, or OAuth2 protocols.

Solid understanding of Role-Based Access Control (RBAC) concepts, the entitlement lifecycle, and how they apply to automated provisioning, de-provisioning, and access modeling.

Demonstrated ability to gather, analyze, and document technical and business requirements to support IAM processes such as role mining, access policy definition, and entitlement rationalization.

Familiarity with regulatory frameworks such as SOX, ISO 27001, NIST, or GLBA, and how they influence identity lifecycle and access governance requirements.

Strong written and verbal communication skills, with the ability to work effectively across technical, security, and business stakeholders.

Experience using tools such as Excel, Visio, and Confluence to create process flows, data maps, and documentation for IAM initiatives.

Highly organized and detail-oriented, with the ability to manage multiple concurrent application onboarding and integration efforts.

Preferred Qualifications

Proven experience leading or significantly contributing to enterprise-scale entitlement review campaigns, including remediation strategies and audit response preparation.

Deep hands-on experience customizing complex workflows, provisioning policies, certification rules, and connectors within enterprise IGA platforms such as SailPoint or Saviynt.

Strong proficiency in scripting or programming for IAM automation and data transformation, using languages such as Python or Go, as well as tools like SQL or PowerShell.

Company Description:
Tradeweb Markets is a world leader in the evolution of electronic trading. A fintech company serving approximately 2,500 clients – including the world’s largest banks, asset managers, hedge funds, insurance companies, wealth managers and retail clients -- in more than 65 countries across the globe. Since our first trade in 1998, we have helped transform and electronify the fixed income markets. Tradeweb is a culture built on innovation, creativity and collaboration. Through a combination of very talented and driven people, innovative products and solutions, cutting-edge technology, market data, and a vast network of clients, we continue to work together to improve the way financial markets trade.
Mission: Move first and never stop. Collaborate with clients to create and build solutions that drive efficiency, connectivity, and transparency in electronic trading.
Tradeweb Markets LLC ("Tradeweb") is proud to be an EEO Minorities/Females/Protected Veterans/Disabled/Affirmative Action Employer.
Description:
To capitalize on our success and continued growth, we are seeking a detail-oriented, results-driven IAM Engineer to join our Identity & Access Management (IAM) team. This role will be responsible for engineering and supporting both our Single Sign-On (SSO) integrations and our Identity Governance & Administration (IGA) platform to ensure secure, scalable, and auditable access across the organization.
The ideal candidate will work across the full identity lifecycle—designing and integrating enterprise applications into our SSO infrastructure using modern federation standards (SAML, OIDC, OAuth2), while also onboarding those applications into our IGA platform (such as SailPoint, Saviynt, or equivalent) to enforce role-based access control (RBAC), streamline entitlement reviews, and support regulatory compliance initiatives.
We are looking for an engineer with a strong technical foundation in identity systems who can build and automate IAM solutions, contribute to role modeling and access policies, and communicate effectively with both technical teams and compliance stakeholders. Experience in the financial industry and familiarity with regulatory frameworks (e.g., SOX, GLBA, FFIEC) are strongly preferred.
Job Responsibilities:
Support the implementation of access certification processes within the IGA platform (e.g., SailPoint, Saviynt) to ensure periodic entitlement reviews align with least-privilege principles and compliance requirements.
Contribute to the integration of applications with Single Sign-On (SSO) using identity federation protocols such as SAML, OIDC, and OAuth2, collaborating with application teams and security architects.
Work closely with IAM architects and application teams to onboard applications into the IGA platform, ensuring entitlement data, user attributes, and provisioning rules are accurately mapped and configured.
Analyze access patterns and application entitlements to assist in role mining, entitlement rationalization, and the development of scalable, governance-aligned role models.
Document technical specifications, data mappings, and integration workflows for SSO and IGA implementations, supporting both technical teams and audit requirements.
Configure and maintain integrations between target systems and the IGA platform, ensuring proper lifecycle management of users and entitlements.
Assist in the creation of access policies and role definitions, aligning with business and compliance requirements.
Generate reports and provide evidence for audit activities, including entitlement reviews, access request histories, and policy enforcement logs.
Identify technical gaps or inconsistencies in access controls, provisioning workflows, or entitlement structures and propose engineering solutions to address them.
Participate in testing, validation, and deployment of IAM-related changes, ensuring proper functionality across SSO and IGA components.
Provide technical support and knowledge sharing to application teams and business stakeholders around IAM integration processes and access governance best practices.
Required Qualifications
Bachelor’s degree in information systems, Computer Science, Cybersecurity, or a related technical or business field (or equivalent practical experience).
5+ years of experience in Identity and Access Management (IAM), with at least 2 years focused on access governance, entitlement reviews, or SSO integration.
Hands-on experience with an Identity Governance and Administration (IGA) platform such as SailPoint, Saviynt, or Oracle Identity Governance, including configuring connectors, onboarding applications, and implementing access certification workflows.
Practical experience integrating applications with enterprise Single Sign-On (SSO) solutions using SAML, OIDC, or OAuth2 protocols.
Solid understanding of Role-Based Access Control (RBAC) concepts, the entitlement lifecycle, and how they apply to automated provisioning, de-provisioning, and access modeling.
Demonstrated ability to gather, analyze, and document technical and business requirements to support IAM processes such as role mining, access policy definition, and entitlement rationalization.
Familiarity with regulatory frameworks such as SOX, ISO 27001, NIST, or GLBA, and how they influence identity lifecycle and access governance requirements.
Strong written and verbal communication skills, with the ability to work effectively across technical, security, and business stakeholders.
Experience using tools such as Excel, Visio, and Confluence to create process flows, data maps, and documentation for IAM initiatives.
Highly organized and detail-oriented, with the ability to manage multiple concurrent application onboarding and integration efforts.
Preferred Qualifications
Proven experience leading or significantly contributing to enterprise-scale entitlement review campaigns, including remediation strategies and audit response preparation.
Deep hands-on experience customizing complex workflows, provisioning policies, certification rules, and connectors within enterprise IGA platforms such as SailPoint or Saviynt.
Strong proficiency in scripting or programming for IAM automation and data transformation, using languages such as Python or Go, as well as tools like SQL or PowerShell.

Company Description:

Tradeweb Markets is a world leader in the evolution of electronic trading. A fintech company serving approximately 2,500 clients – including the world’s largest banks, asset managers, hedge funds, insurance companies, wealth managers and retail clients -- in more than 65 countries across the globe. Since our first trade in 1998, we have helped transform and electronify the fixed income markets. Tradeweb is a culture built on innovation, creativity and collaboration. Through a combination of very talented and driven people, innovative products and solutions, cutting-edge technology, market data, and a vast network of clients, we continue to work together to improve the way financial markets trade.

Mission: Move first and never stop. Collaborate with clients to create and build solutions that drive efficiency, connectivity, and transparency in electronic trading.

Tradeweb Markets LLC ("Tradeweb") is proud to be an EEO Minorities/Females/Protected Veterans/Disabled/Affirmative Action Employer.

Job Description:

To capitalize on our success and continued growth, we are seeking a detail-oriented, results-driven IAM Engineer to join our Identity & Access Management (IAM) team. This role will be responsible for engineering and supporting both our Single Sign-On (SSO) integrations and our Identity Governance & Administration (IGA) platform to ensure secure, scalable, and auditable access across the organization.

The ideal candidate will work across the full identity lifecycle—designing and integrating enterprise applications into our SSO infrastructure using modern federation standards (SAML, OIDC, OAuth2), while also onboarding those applications into our IGA platform (such as SailPoint, Saviynt, or equivalent) to enforce role-based access control (RBAC), streamline entitlement reviews, and support regulatory compliance initiatives.

We are looking for an engineer with a strong technical foundation in identity systems who can build and automate IAM solutions, contribute to role modeling and access policies, and communicate effectively with both technical teams and compliance stakeholders. Experience in the financial industry and familiarity with regulatory frameworks (e.g., SOX, GLBA, FFIEC) are strongly preferred.

Job Responsibilities:

Support the implementation of access certification processes within the IGA platform (e.g., SailPoint, Saviynt) to ensure periodic entitlement reviews align with least-privilege principles and compliance requirements.

Contribute to the integration of applications with Single Sign-On (SSO) using identity federation protocols such as SAML, OIDC, and OAuth2, collaborating with application teams and security architects.

Work closely with IAM architects and application teams to onboard applications into the IGA platform, ensuring entitlement data, user attributes, and provisioning rules are accurately mapped and configured.

Analyze access patterns and application entitlements to assist in role mining, entitlement rationalization, and the development of scalable, governance-aligned role models.

Document technical specifications, data mappings, and integration workflows for SSO and IGA implementations, supporting both technical teams and audit requirements.

Configure and maintain integrations between target systems and the IGA platform, ensuring proper lifecycle management of users and entitlements.

Assist in the creation of access policies and role definitions, aligning with business and compliance requirements.

Generate reports and provide evidence for audit activities, including entitlement reviews, access request histories, and policy enforcement logs.

Identify technical gaps or inconsistencies in access controls, provisioning workflows, or entitlement structures and propose engineering solutions to address them.

Participate in testing, validation, and deployment of IAM-related changes, ensuring proper functionality across SSO and IGA components.

Provide technical support and knowledge sharing to application teams and business stakeholders around IAM integration processes and access governance best practices.

Required Qualifications

Bachelor’s degree in information systems, Computer Science, Cybersecurity, or a related technical or business field (or equivalent practical experience).

5+ years of experience in Identity and Access Management (IAM), with at least 2 years focused on access governance, entitlement reviews, or SSO integration.

Hands-on experience with an Identity Governance and Administration (IGA) platform such as SailPoint, Saviynt, or Oracle Identity Governance, including configuring connectors, onboarding applications, and implementing access certification workflows.

Practical experience integrating applications with enterprise Single Sign-On (SSO) solutions using SAML, OIDC, or OAuth2 protocols.

Solid understanding of Role-Based Access Control (RBAC) concepts, the entitlement lifecycle, and how they apply to automated provisioning, de-provisioning, and access modeling.

Demonstrated ability to gather, analyze, and document technical and business requirements to support IAM processes such as role mining, access policy definition, and entitlement rationalization.

Familiarity with regulatory frameworks such as SOX, ISO 27001, NIST, or GLBA, and how they influence identity lifecycle and access governance requirements.

Strong written and verbal communication skills, with the ability to work effectively across technical, security, and business stakeholders.

Experience using tools such as Excel, Visio, and Confluence to create process flows, data maps, and documentation for IAM initiatives.

Highly organized and detail-oriented, with the ability to manage multiple concurrent application onboarding and integration efforts.

Preferred Qualifications

Proven experience leading or significantly contributing to enterprise-scale entitlement review campaigns, including remediation strategies and audit response preparation.

Deep hands-on experience customizing complex workflows, provisioning policies, certification rules, and connectors within enterprise IGA platforms such as SailPoint or Saviynt.

Strong proficiency in scripting or programming for IAM automation and data transformation, using languages such as Python or Go, as well as tools like SQL or PowerShell.

Company Description:

Tradeweb Markets is a world leader in the evolution of electronic trading. A fintech company serving approximately 2,500 clients – including the world’s largest banks, asset managers, hedge funds, insurance companies, wealth managers and retail clients -- in more than 65 countries across the globe. Since our first trade in 1998, we have helped transform and electronify the fixed income markets. Tradeweb is a culture built on innovation, creativity and collaboration. Through a combination of very talented and driven people, innovative products and solutions, cutting-edge technology, market data, and a vast network of clients, we continue to work together to improve the way financial markets trade.

Mission: Move first and never stop. Collaborate with clients to create and build solutions that drive efficiency, connectivity, and transparency in electronic trading.

Tradeweb Markets LLC ("Tradeweb") is proud to be an EEO Minorities/Females/Protected Veterans/Disabled/Affirmative Action Employer.

Job Description:

To capitalize on our success and continued growth, we are seeking a detail-oriented, results-driven IAM Engineer to join our Identity & Access Management (IAM) team. This role will be responsible for engineering and supporting both our Single Sign-On (SSO) integrations and our Identity Governance & Administration (IGA) platform to ensure secure, scalable, and auditable access across the organization.

The ideal candidate will work across the full identity lifecycle—designing and integrating enterprise applications into our SSO infrastructure using modern federation standards (SAML, OIDC, OAuth2), while also onboarding those applications into our IGA platform (such as SailPoint, Saviynt, or equivalent) to enforce role-based access control (RBAC), streamline entitlement reviews, and support regulatory compliance initiatives.

We are looking for an engineer with a strong technical foundation in identity systems who can build and automate IAM solutions, contribute to role modeling and access policies, and communicate effectively with both technical teams and compliance stakeholders. Experience in the financial industry and familiarity with regulatory frameworks (e.g., SOX, GLBA, FFIEC) are strongly preferred.

Job Responsibilities:

Support the implementation of access certification processes within the IGA platform (e.g., SailPoint, Saviynt) to ensure periodic entitlement reviews align with least-privilege principles and compliance requirements.

Contribute to the integration of applications with Single Sign-On (SSO) using identity federation protocols such as SAML, OIDC, and OAuth2, collaborating with application teams and security architects.

Work closely with IAM architects and application teams to onboard applications into the IGA platform, ensuring entitlement data, user attributes, and provisioning rules are accurately mapped and configured.

Analyze access patterns and application entitlements to assist in role mining, entitlement rationalization, and the development of scalable, governance-aligned role models.

Document technical specifications, data mappings, and integration workflows for SSO and IGA implementations, supporting both technical teams and audit requirements.

Configure and maintain integrations between target systems and the IGA platform, ensuring proper lifecycle management of users and entitlements.

Assist in the creation of access policies and role definitions, aligning with business and compliance requirements.

Generate reports and provide evidence for audit activities, including entitlement reviews, access request histories, and policy enforcement logs.

Identify technical gaps or inconsistencies in access controls, provisioning workflows, or entitlement structures and propose engineering solutions to address them.

Participate in testing, validation, and deployment of IAM-related changes, ensuring proper functionality across SSO and IGA components.

Provide technical support and knowledge sharing to application teams and business stakeholders around IAM integration processes and access governance best practices.

Required Qualifications

Bachelor’s degree in information systems, Computer Science, Cybersecurity, or a related technical or business field (or equivalent practical experience).

5+ years of experience in Identity and Access Management (IAM), with at least 2 years focused on access governance, entitlement reviews, or SSO integration.

Hands-on experience with an Identity Governance and Administration (IGA) platform such as SailPoint, Saviynt, or Oracle Identity Governance, including configuring connectors, onboarding applications, and implementing access certification workflows.

Practical experience integrating applications with enterprise Single Sign-On (SSO) solutions using SAML, OIDC, or OAuth2 protocols.

Solid understanding of Role-Based Access Control (RBAC) concepts, the entitlement lifecycle, and how they apply to automated provisioning, de-provisioning, and access modeling.

Demonstrated ability to gather, analyze, and document technical and business requirements to support IAM processes such as role mining, access policy definition, and entitlement rationalization.

Familiarity with regulatory frameworks such as SOX, ISO 27001, NIST, or GLBA, and how they influence identity lifecycle and access governance requirements.

Strong written and verbal communication skills, with the ability to work effectively across technical, security, and business stakeholders.

Experience using tools such as Excel, Visio, and Confluence to create process flows, data maps, and documentation for IAM initiatives.

Highly organized and detail-oriented, with the ability to manage multiple concurrent application onboarding and integration efforts.

Preferred Qualifications

Proven experience leading or significantly contributing to enterprise-scale entitlement review campaigns, including remediation strategies and audit response preparation.

Deep hands-on experience customizing complex workflows, provisioning policies, certification rules, and connectors within enterprise IGA platforms such as SailPoint or Saviynt.

Strong proficiency in scripting or programming for IAM automation and data transformation, using languages such as Python or Go, as well as tools like SQL or PowerShell.

**Job Description**
**Your Opportunity**
We are looking for flexible and open-minded experts, able to work with different technologies, and address complex architectures, on premises, cloud, or Hybrid environments. We are looking for engineers who can quickly learn, who are willing to work with new and innovative products and solutions and who are capable of interacting and collaborating with people in different global teams to provide the best-tailored solution to Oracle customers.
The engineer will join **Fusion Middleware Global Expertise Center** , a team that centrally delivers proactive and reactive services for any country across the world. We are offering a professional context where engineers can develop themselves constantly and where they can always be in touch with the most innovative technologies both in on-prem and in cloud environments.
**Customer Success Services (CSS)** is an organization providing tailored mission critical support services for the full Oracle Product Stack. CSS understands the customer's needs and helps them to increase availability, improve performance, mitigate risk and save cost.
**Your Qualifications**
+ **Minimum of 8+ years** of working with Oracle FMW products,
+ Experience with highly available environments in areas like: **installation and configuration, patching, administration, monitoring, troubleshooting.**
+ **Products knowledge** where the candidate must have real hands-on experience (bold ones are a must):
+ **Oracle Unified Directory (Directory services and Proxy servers)**
+ **LDAP Protocols**
+ **LDAP Command Line Interface (CLI)**
+ **Public Key Infrastructure (PKI)**
+ **WebLogic Server**
+ Linux and Shell scripting
+ ITIL Knowledge (Incident/Change/Problem)
+ ITIL tool - SNOW - Creating Change requests and run sheets
+ Oracle Identity Manager (OIM) and Oracle Access Manager (OAM)
**Additional Requirements**
+ **University Degree,**
+ **Excellent communication and technical documentation writing skills,**
+ **Fluent in English** (other additional languages like Spanish and German will be also valued),
+ Development background will be considered added value,
+ Availability to travel and work onsite at customers.
**Benefits**
+ A competitive salary,
+ A stimulating environment where you create your own career path,
+ Professional development, training and tools that enable you to grow,
+ A collaborative team,
+ An Employee Assistance Program to support your health,
+ Employee resource groups that champion our diverse communities,
+ An inclusive culture that celebrates what makes you unique,
+ Core benefits such as medical insurance and access to retirement planning.
Career Level - IC3
**Responsibilities**
As a Senior Technical Engineer, you will interact with the customer's IT staff on a regular basis. Either from a remote location or at the client's site, you will be supporting the resolution of complex technical problems the customer faces.
You should be highly experienced in the Oracle products mentioned in the Job Description. You will be expected to work with only general guidance from management, while advising management on progress/status.
Here are some of the responsibilities you will be assigned, hands-on work on the customer environments:
+ Monitoring Oracle Unified Directory **(** OUD) services using automated scripts and perform action/fix on notifications received,
+ Troubleshoot user and application Authentication issues in OUD,
+ Support for application off-boarding,
+ Investigate issues related to SSL certificates,
+ Initial diagnosis of any incident assigned. Analyze and fix, if issue is not related to OUD, redirect the issue to the relevant team,
+ Extract evidence for Auditing,
+ OIM/OUD synchronization issues when user account is not in sync,
+ Planning and deployment of OUD patches in Non-Prod and Prod environments,
+ Plan and perform SSL Renewals based on Notification received,
+ Create change records and attend CAB meetings to review and approve change records,
+ Execute change records,
+ Participate in Incident triage, fix and participate in any follow-up problem management meetings,
+ Provide support to any integrated application for connectivity issue to OUD,
+ Password rotation for admin accounts,
+ Apply latest OUD patch quarterly upon the CPU release,
+ Recommend the downsize/expand the current environment as needed.
Additionally, you will have to collaborate internally with the team, ensuring the below is done:
+ Identify required/recommended actions as main output of service delivery, based on own knowledge and experience,
+ Analyze, troubleshoot and solve, whenever feasible, the issues the customer may face using Oracle products,
+ Deliver high quality technical results to CSS Customers,
+ Escalate at the right time customer issues to Technical Account Manager where relevant,
+ Ensure adherence to internal methodology, tools and quality standards,
+ Actively participate on Services development,
+ Stay updated with the latest security trends, threats and technologies,
+ Actively collaborate with other engineers in the team or in other teams to share knowledge and experiences, which can benefit CSS Business results.
**About Us**
As a world leader in cloud solutions, Oracle uses tomorrow's technology to tackle today's challenges. We've partnered with industry-leaders in almost every sector-and continue to thrive after 40+ years of change by operating with integrity.
We know that true innovation starts when everyone is empowered to contribute. That's why we're committed to growing an inclusive workforce that promotes opportunities for all.
Oracle careers open the door to global opportunities where work-life balance flourishes. We offer competitive benefits based on parity and consistency and support our people with flexible medical, life insurance, and retirement options. We also encourage employees to give back to their communities through our volunteer programs.
We're committed to including people with disabilities at all stages of the employment process. If you require accessibility assistance or accommodation for a disability at any point, let us know by emailing or by calling +1 in the United States.
Oracle is an Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability and protected veterans' status, or any other characteristic protected by law. Oracle will consider for employment qualified applicants with arrest and conviction records pursuant to applicable law.

Candidate should be able to:
• Identify new areas of risk
• Evaluate existing data security procedures
• Develop and administer data security policies
• Safeguard information
• Perform forensic analysis on workstations, servers, mobile devices, and other technology as needed
Candidate should have:
• Excellent written and oral communication
• Experienced in Excel
•Strong knowledge in SQL, Powershell, TAM, CyberArk Conjur, CyberArk PSM, Sybase, Oracle, UDB