IDAM Engineer
About The Position
AVEVA is looking for an Identity & Access Management (IAM) Engineer with a strong automation mindset to join our global IT team. This role focuses on engineering scalable, automated IAM services for workforce identities, using SailPoint as the enterprise Identity Governance (IGA) platform. The successful candidate will be expected to reduce manual IAM operations, automate identity lifecycle processes, and build repeatable, code‑driven solutions for access management in a complex hybrid environment. You will work closely with Security, Infrastructure, HR, and Service Management teams to deliver reliable, efficient, and secure identity services.
Requirements
- Hands‑on experience in Identity & Access Management engineering
- Hands‑on SailPoint experience is required (IdentityIQ, IdentityNow, or similar)
- Strong experience engineering automated identity lifecycle processes
- Experience automating IAM workflows using PowerShell, APIs, or orchestration tools
- Solid understanding of SSO and authentication protocols (SAML, OAuth2, OpenID Connect, Kerberos, LDAP)
- Experience supporting Active Directory and Entra ID in hybrid environments
- Experience producing automated reports for audit and compliance
- Strong analytical, problem‑solving, and communication skills
Nice To Haves
- Experience working with ServiceNow and/or Jira for workflow automation or integrations
- Exposure to broader information security or identity security domains
- Familiarity with DevOps or CI/CD environments, including identity controls
- Bachelor’s degree in Computer Science, Engineering, Mathematics, or related field, or equivalent experience
- Relevant IAM or security certifications (e.g. SailPoint, Microsoft Identity)
- Strong written and verbal communication skills
- Customer‑focused mindset, delivering secure and user‑friendly IAM services
- Growth mindset, passionate about learning new tools and technologies
- Ability to work independently while contributing to a global team
Responsibilities
- Engineer and operate automated IAM solutions for workforce identities
- Support and enhance SailPoint with a focus on automation, scalability, and governance
- Design, implement, and optimise automated Joiner‑Mover‑Leaver (JML) processes
- Automate IAM access request fulfilment via ServiceNow.
- Develop code‑driven workflows and integrations to eliminate manual IAM tasks
- Support and maintain Active Directory and Entra ID (Azure AD) environments
- Manage authentication, authorisation, roles, and entitlements
- Automate access certifications, reviews, and compliance reporting
- Respond to IAM‑related incidents with a focus on root cause fixes through automation
- Produce and maintain documentation, diagrams, and operational runbooks
- Collaborate with Security teams to strengthen identity controls
- Leverage scripting and AI‑assisted tools to improve efficiency and reporting
Benefits
- Flex work hours
- 20 days PTO rising to 25 with service
- three paid volunteering days
- primary and secondary parental leave
- well-being support
- medical
- dental
- vision
- 401K
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Education Level
Associate degree
