Role Overview
We are looking for an Identity Engineer to join its global Identity and Access Management (IAM) team. Based in our Noida Global Capability Center (GCC), this role is a core member of a 5-person international team spanning India, Mexico, and the United States. The Identity Engineer will own IAM operations and engineering responsibilities during India business hours, acting as the regional anchor for the team while maintaining close collaboration with teammates across time zones.
ShyftLabs is a growing data product company founded in early 2020 and works primarily with Fortune 500 companies. We deliver digital solutions built to help accelerate the growth of businesses in various industries, by focusing on creating value through innovation
Service Operations & Access Management
- Respond to and resolve IAM service tickets for Active Directory and Okta access requests, including provisioning, deprovisioning, and modifications
- Triage and prioritize access requests within established SLAs, ensuring accurate and timely fulfillment
- Perform daily system health checks across Okta, Saviynt, and Delinea to ensure platform availability and operational integrity
Saviynt IGA Administration
- Monitor and manage Saviynt jobs, scheduled tasks, and integration workflows; investigate and remediate failures
- Administer and execute Saviynt User Access Review (UAR) campaigns, coordinating with application owners and business stakeholders through certification completion
- Maintain role definitions, access policies, and provisioning rules within Saviynt IGA
Delinea Privileged Access Management
- Administer Delinea Secret Server vault operations including secret management, folder structure, policy enforcement, and access audits
- Support onboarding of new privileged accounts and systems into the vault in alignment with PAM standards
Automation & Scripting
- Write, maintain, and optimize PowerShell scripts to automate repetitive IAM tasks, reduce manual effort, and improve process reliability
- Develop and enhance integrations between IAM platforms using APIs and SCIM protocols
- Document automation solutions and maintain runbooks for operational consistency
Collaboration & Communication
- Operate independently during India business hours while ensuring seamless handoffs and status communication to team members in other time zones
- Collaborate with the broader IAM team on projects, escalations, and platform improvements via async and scheduled video meetings
- Partner with IT, HR, and business teams to understand access needs and deliver secure, compliant IAM solutions
Requirements
- Identity and Access Management (IAM)
- Okta
- Saviynt IGA
- Active Directory
- Azure AD / Entra ID
- PowerShell scripting
- Privileged Access Management (PAM)
- Delinea Secret Server
- SAML 2.0
- OAuth 2.0
- OpenID Connect (OIDC)
- REST APIs
- SCIM
- MFA solutions
- SQL
- RBAC (Role-Based Access Control)
- English communication
Preferred Skills
- SailPoint
- AWS
- GCP
- Azure
- ServiceNow
- Separation of Duties (SoD)
- Access certifications
- Okta Certified Administrator
- SailPoint IdentityIQ Engineer
- CompTIA Security+
Qualifications
- Bachelor's degree (BS) in Computer Science, Information Technology, Information Systems, or a related technical field required
- Equivalent combination of education and directly relevant hands-on IAM experience is considered on a case-by-case basis
- 3+ years of hands-on experience in Identity and Access Management (IAM) roles
- Demonstrated experience administering Okta (user lifecycle, groups, SSO applications, MFA policies) in a production environment
- Hands-on experience with an IGA platform — Saviynt strongly preferred; SailPoint or similar acceptable
- Experience with Privileged Access Management (PAM) tools — Delinea Secret Server preferred
- Working experience with Active Directory and Azure AD / Entra ID, including group management, OU structures, and GPO basics
- Proficient in PowerShell scripting for IAM automation and administration tasks
- Strong understanding of IAM concepts including authentication, authorization, role-based access control (RBAC), and least privilege
- Working knowledge of SSO and federation standards: SAML 2.0, OAuth 2.0, and OpenID Connect (OIDC)
- Experience working with REST APIs and SCIM for identity provisioning and integration
- Familiarity with MFA solutions, including hardware tokens, authenticator apps, and risk-based authentication
- Exposure to SQL for querying and reporting on IAM data
- Ability to work independently with minimal supervision during India business hours
- Strong written and verbal communication skills in English for collaboration with an international team
- Detail-oriented with a structured approach to ticket management, documentation, and change control
- Proactive problem-solver who escalates appropriately and keeps stakeholders informed
We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.
