Amach is an industry-leading technology driven company with headquarters located in Dublin and remote teams in UK and Europe.Our blended teams of local and nearshore talent are optimised to deliver high quality and collaborative solutions.Established in 2013, we specialise in cloud migration and development, digital transformation including agile software development, DevOps, automation, data and machine learning…The Senior Identity Security Engineer within the Cyber Engineering & Architecture function, will be responsible for the lifecycle, performance, and strategic direction of the organisation’s identity security and identity and access management (IAM) platforms and services, including Privileged Access, to ensure digital identities (employees, contractors, machines) are properly managed, secured, and governed and access to our customer's systems are appropriate protected. This role will have ownership of identity security policies, standards, architectures and technologies to deliver identity services, including oversight of the management and operations of Identity platforms and critical infrastructure (Active Directory & MS Entra).This is a hybrid role, so the successful candidate will be expected to attend the office in Dublin at least once a week.Own identity security policies, standards and architecture patterns across AD, Entra, PAM, and IAM/IGA services.Lead program of continuous improvements of identity security controls, PAM and IAM lifecycle processes, enabling self-service and scalable services through automationOwn security posture management for Active Directory and Entra configurations and infrastructure, treating identity as a critical enterprise asset.Lead design and governance of identity lifecycle management processes and controls for employees, contractors, third parties and non‑human identities.Own privileged access management requirements and secure patterns as part of identity services (privileged access lifecycle, role design, access reviews).Lead the engineering and governance of IAM workflows via SailPoint (access requests, provisioning/deprovisioning, certifications/access reviews, RBAC/role models).Provide SME support during incidents relating to identity compromise, privileged access misuse or access control failures, and drive root‑cause remediation.Ensure alignment with compliance requirements & regulationsStay informed ofthreats facing the organization to proactively drive ongoing improvements in our overall identity risk posturePartner with technology teams to embed secure‑by‑design identity patterns into applications and platforms (authentication, authorisation, SSO patterns).Collaborate with Cyber Defence to ensure identity telemetry and signals support detection and response use cases.Maintain identity security blueprints, standards and documentation to support consistent implementation and audit readiness.Provide direction and oversight to third party providers that are supporting and operating identity services and platformsCollaborate with IT and support teams, to continually identify opportunities to automate identity or access related tasks, removing the needs for privileged access into ADRequired Experience:Minimum of 12 years’ industry experience with at least 8 years in identity hands‑on roles.Proven technical experience with Active Directory and Entra (Azure AD) in enterprise environments and maintaining secure configuration and posture of same.Hands‑on experience designing, implementing and governing identity lifecycle and access lifecycle processes using an IGA platformExperience designing & implementing privileged access management controls and processesExperience implementing zero trust patterns and controlsStrong understanding of IAM principles including least privilege, RBAC, access reviews/certifications, segregation of duties concepts and lifecycle governance. Ability to define secure identity architecture patterns and translate them into practical standards and blueprints. Strong automation mindset with scripting/workflow capability (e.g., PowerShell or equivalent) to reduce manual processes and improve control reliability. Strong stakeholder management skills across HR, IT, application and security teams. Engineering experience with Identity Protection, IAM, and governance e.g. SailPoint, CyberArk, BeyondTrust, MS Defender for Identity, Crowdstrike Identity, SilverFort Experience with identity threat detection concepts and integration with SOC monitoring. Experience with non‑human identity governance patterns and modern authentication protocols.What’s in it for you:An opportunity to join a fast‑growing companyOptions for career advancementLearning and development opportunitiesFlexible working environmentCompetitive salaries based on experienceEqual Opportunity Employer:Amach is an equal opportunity employer and makes employment decisions on the basis of merit. We celebrate diversity and are committed to creating an inclusive environment for all employees. This job description is intended to convey essential responsibilities and qualifications for this role, but it is not an exhaustive list of tasks that an employee may be required to perform.If you are passionate about driving customer success, advising on strategic solutions, and contributing to product innovation, we would love to hear from you!Not for you?Check out all of our open positions in our careers page and follow us on LinkedIn for future opportunities.P.S. Share this with friends and co-workers! Don't be afraid they'll steal it from you, if you're amazing and smart we'll find a role for you. We are growing fast and we are always looking for talented people.At Amach, we strive to be an inclusive community of open-minded individuals with different backgrounds and we are committed to fostering, cultivating and preserving a culture of diversity, equity and inclusion. We strongly believe that a diversity of experience and background is essential to create a fulfilling environment and better solutions for our people and our customers. All Amach employees and contractors are expected to honour this policy and act to ensure that every individual is respected in the workplace.Your personal dataAmach will process your personal information in accordance with the EU's General Data Protection Regulation (GDPR).We will comply with data protection law and principles, which means that your data will be:Used lawfully, fairly and in a transparent wayCollected only for valid purposes and not used in any way that is incompatible with those purposesRelevant to the purposes we have told you about and limited only to those purposesAccurate and kept up to dateKept only as long as necessary for the purposes we have told you aboutKept securelyIf you would like to contact us about your data, please use the following address: info@amach.com
#J-18808-Ljbffr