As a Senior Systems Engineer specializing in Endpoint IAM, you will play a critical role in designing, implementing, and managing identity and access management solutions specifically focused on endpoints (devices) within an organization. Your responsibilities will revolve around ensuring secure and efficient access to resources for end-users while maintaining confidentiality, integrity, and availability.
Responsibilities
Endpoint IAM Design and Implementation:
Collaborate with cross-functional teams to understand business requirements related to endpoint security and access.
Develop and implement IAM solutions tailored for endpoints, including single sign-on (SSO), multi-factor authentication (MFA), and privileged access management (PAM).
Configure and manage authentication mechanisms, access controls, and policies for devices.
Ensure seamless integration of IAM solutions with endpoint management tools (e.g., Microsoft Intune, JAMF).
Troubleshooting and Issue Resolution:
Identify and resolve technical issues related to endpoint IAM.
Investigate access-related incidents and anomalies.
Optimize IAM processes to enhance efficiency and user experience.
Security Best Practices:
Stay up-to-date with industry trends and emerging threats in endpoint security.
Implement security controls to protect endpoints against evolving risks.
Collaborate with security teams to enforce IAM policies and compliance.
Education and Training:
Coach other IT team members on best practices for endpoint IAM.
Conduct training sessions to raise awareness about secure access practices.
Qualifications:
Bachelor’s degree in IT, information security, computer science, or a related field.
Multiple years of experience in systems engineering, with a focus on IAM.
Proficiency in authentication standards (e.g., OAuth, OpenID Connect) and technologies (e.g., JSON Web Tokens).
Hands-on experience with IAM solutions such as CyberArk, ForgeRock, Okta, or Ping Identity.
Familiarity with programming languages (e.g., C++, Java, Python, JavaScript, or C#).
Knowledge of Windows, Linux/Unix, scripting (Bash, PowerShell, or Perl), LDAP, SQL, and web services.
Professional certifications related to IAM (such as Certified Identity Management Professional (CIMP)) are advantageous.
Strong communication skills and the ability to collaborate effectively with diverse teams.
FR : Dans le cadre de sa politique Diversité, Evotec étudie, à compétences égales, toutes les candidatures dont celles des personnes en situation de handicap.
ENG : In the frame of our Diversity policy, Evotec considers, with equal competences, all applications including people with disabilities.