About Us
Position Name
Cybersecurity L3 IAM Specialist
Experience
Location
Shift Timings
Job Description
Job Summary:
The Cybersecurity L3 IAM Specialist will be responsible for leading the design, implementation, and maintenance of enterprise-grade Identity and Access Management solutions. The role requires deep expertise in IAM technologies, governance frameworks, and integrations across hybrid and cloud environments. The candidate will serve as the escalation point for complex IAM issues, mentor junior team members, and ensure compliance with security and regulatory standards.
Shape
Key Responsibilities
IAM Architecture & Strategy
Design and implement end-to-end IAM solutions, including authentication, authorization, and identity lifecycle management.
Define and enforce IAM architecture standards, best practices, and governance models.
Collaborate with enterprise architects and application teams to integrate IAM capabilities across platforms.
Operations & Support
Lead L3 operations for IAM tools such as SailPoint, Okta, Ping Identity, ForgeRock, CyberArk, or Azure AD.
Troubleshoot and resolve complex IAM incidents and service requests escalated from L2 teams.
Maintain and monitor IAM systems for performance, reliability, and security posture.
Access Governance & Compliance
Oversee access certification campaigns, segregation of duties (SoD) reviews, and audit compliance activities.
Implement and maintain role-based access control (RBAC), attribute-based access control (ABAC), and least privilege models.
Develop and enforce identity security policies and standards in compliance with ISO 27001, NIST, GDPR, or SOX.
Automation & Process Improvement
Drive automation in provisioning, de-provisioning, and access review processes using scripts or IAM workflows.
Contribute to continuous improvement initiatives to enhance efficiency and reduce manual intervention.
Collaboration & Leadership
Partner with IT, Security, HR, and Application teams to align IAM solutions with business requirements.
Mentor and train L1/L2 support teams on IAM operations and troubleshooting.
Participate in security assessments, audits, and remediation planning.
Competencies
Threat Analysis
Threat Data Collection
Threat Hunting
Threat Intelligence Sharing
Communication Skills
INTERPERSONAL SKILLS
JOB KNOWLEDGE
SKILL
Key Skills
Required Technical Skills
Strong hands-on experience with one or more IAM platforms: SailPoint IIQ, Okta, Ping Identity, ForgeRock, CyberArk, or Azure AD.
Expertise in SSO, MFA, Federation (SAML, OAuth, OpenID Connect), and directory services (Active Directory, LDAP).
Proficiency in PowerShell, Python, or Java for automation and customization of IAM workflows.
Deep understanding of identity lifecycle management, privilege management, and access governance.
- Experience integrating IAM with cloud environments (AWS, Azure, GCP) and enterprise applications (SAP, Oracle, ServiceNow, etc.).
Soft Skills
Qualification
Certifications
