Job Closed
This listing is no longer active.
AI-Augmented IAM Security Engineer
Location
Croatia
Posted
11 days ago
Salary
0
Seniority
Mid Level
Job Description
AI-Augmented IAM Security Engineer
EPAM
Role Description We are seeking an AI-Augmented IAM Security Engineer to handle the hands-on implementation, configuration, automation and day-to-day operation of enterprise Identity and Access Management. This is a delivery-and-operations role that works within the designs, standards, role models and policies set by IAM architects and security leadership. The focus is building, configuring, scripting, running and troubleshooting IAM, not defining target-state architecture, role models or governance policy. - Implement, configure, and operate IAM solutions and controls based on architecture, standards, and designs defined by IAM architects and security leadership. - Build and maintain identity lifecycle (Joiner / Mover / Leaver) processes, including automated provisioning and deprovisioning across target systems. - Configure and maintain core IAM capabilities, including SSO, federation, MFA and passwordless authentication, conditional access, RBAC/ABAC role models, and least-privilege access. - Develop, deploy, and maintain IAM integrations and connectors with cloud platforms, SaaS applications, enterprise systems, directories, authoritative source systems, databases, and APIs. - Execute access certification and review campaigns, perform entitlement clean-up, and configure segregation-of-duties (SoD) rules according to access policies defined by architects and the business. - Implement and operate Privileged Access Management controls, including credential vaulting, secrets rotation, session management, and just-in-time and just-enough access. - Develop and maintain automation scripts, workflows, and IAM tooling using PowerShell, Python, REST APIs, SCIM, Terraform, or similar technologies. - Monitor IAM platform health, troubleshoot and resolve incidents and access issues, and perform patching, upgrades, and configuration hardening. - Implement and maintain IAM logging, alerting, and monitoring, and run backup and recovery procedures according to defined runbooks and resilience requirements. - Build, deploy, and maintain AI-assisted automations and agentic workflows that reduce manual effort across daily IAM operations. - Build and integrate AI agents and LLM-backed automations into IAM systems and operational pipelines. - Develop, test, and maintain reusable prompts, structured-prompting patterns, and prompt templates for recurring IAM tasks. - Implement retrieval over IAM policies, role catalogs, runbooks, and documentation so AI assistants answer from current, authoritative internal sources. - Implement output verification, human-in-the-loop approval gates, and rollback paths in AI-assisted IAM workflows. - Implement security and privacy controls for IAM AI usage. - Monitor AI-assisted IAM automations in production, measure their accuracy and impact, and continuously tune prompts, tools, and workflows based on results and feedback. - Produce and maintain operational documentation, runbooks, and standard operating procedures, and support audits and compliance evidence requests. Qualifications - Bachelor's degree in Computer Science, Cybersecurity, Engineering, or equivalent practical experience. - 2+ years of hands-on experience implementing or operating Identity and Access Management solutions. - Hands-on experience with at least one enterprise IAM, IGA, PAM, or federation platform. - Solid understanding of IAM concepts, including identity lifecycle, authentication, authorization, SSO, federation, MFA, RBAC/ABAC, least privilege, and privileged access. - Practical knowledge of common IAM protocols and standards, such as SAML, OAuth 2.0, OpenID Connect, SCIM, LDAP, and Kerberos. - Experience configuring IAM controls, policies, connectors, and access governance workflows. - Working knowledge of cloud IAM concepts across at least one major cloud platform such as Azure, AWS, or GCP. - Scripting and automation experience using at least one of PowerShell, Python, Bash, REST APIs, SCIM, or Terraform. - Ability to work closely with developers, architects, infrastructure engineers, security operations, compliance teams, and business stakeholders. - Ability to follow, maintain, and improve defined IAM and security processes. - Comfortable executing changes from tickets, runbooks, and designs provided by senior engineers and architects. - Practical understanding of AI-assisted productivity and automation beyond basic chatbot usage. - Good communication skills and the ability to explain IAM issues, technical decisions, and remediation steps to both technical and non-technical stakeholders. - Hands-on proficiency is a must. - English proficiency at B2 level or higher. Requirements - Experience with IAM platforms such as Microsoft Entra ID, Active Directory, Okta, Ping Identity, ForgeRock, Auth0, SailPoint, Saviynt, CyberArk, or similar. - Experience with CIAM, B2B/B2C identity, customer identity, external identity, or partner access scenarios. - Experience with SIEM/SOAR integrations for IAM monitoring, alerting, and automated response. - Experience with CI/CD-based IAM deployment, configuration-as-code, and automated testing of IAM changes. - Experience with AI/LLM platforms or frameworks such as Azure OpenAI, Amazon Bedrock, Microsoft Copilot Studio, LangChain, AutoGen, or Power Automate. - Understanding of AI security risks, including data leakage, prompt injection, excessive agency, insecure tool use, model governance, and sensitive identity data exposure. - Security or IAM certifications such as SC-300: Microsoft Identity and Access Administrator; Okta Certified Professional / Administrator / Consultant; SailPoint, Saviynt, CyberArk, or Ping Identity certifications; CISSP, CISM, CISA, CCSK, CCSP, SSCP, or similar. - AI-related certifications are a plus, for example: AI-900: Microsoft Azure AI Fundamentals; AWS Certified AI Practitioner.
Related Guides
Related Categories
Related Job Pages
More Security Engineer Jobs
• Support cybersecurity engineering for the pilot, including cloud security, RMF/ATO support, compliance documentation, and continuous monitoring. • Secure AWS-based environments through identity and access management, encryption, logging, monitoring, network security, vulnerability management, and configuration hardening. • Configure, monitor, and support AWS security services such as AWS Network Firewall, Security Hub, GuardDuty, CloudWatch, CloudTrail, Inspector, and related capabilities. • Support security planning for an AWS Commercial Cloud environment with consideration for future migration to AWS GovCloud or another VA-approved hosting environment. • Assist with ATO planning, control implementation, evidence collection, compliance reporting, and approval workflows. • Work within eMASS, ServiceNow GRC, or similar risk management systems to support ATO artifacts, information assurance tasking, POA&M tracking, and security documentation. • Develop and maintain SSPs, POA&Ms, SOPs, risk assessments, control narratives, security diagrams, and remediation plans. • Support vulnerability assessments, DISA STIG hardening, configuration compliance reviews, remediation tracking, and audit readiness activities. • Integrate security requirements into architecture, sprint planning, CI/CD processes, testing, and deployment readiness. • Support security reviews for VIA platform capabilities, including data handling, access control, auditability, secure integration, and AI-enabled modernization workflows. • Collaborate with technical and non-technical stakeholders to translate security requirements into practical engineering, documentation, and compliance actions.
Cyber Security SME
9th Way InsigniaServing the federal government with courage, integrity, and excellence.
• Provide expert cybersecurity guidance across enterprise systems, cloud environments, applications, networks, and mission platforms. • Lead the development and implementation of innovative cyber defense strategies that improve detection, prevention, response, and recovery capabilities. • Assess current cyber defense posture and recommend practical, scalable improvements aligned with mission, business, and regulatory requirements. • Design and support implementation of layered defense models, including Zero Trust, endpoint protection, identity-based security, network segmentation, encryption, threat monitoring, and secure cloud controls. • Evaluate emerging cybersecurity technologies, tools, and methodologies to determine applicability, maturity, risk, and operational value. • Support development of cybersecurity roadmaps, implementation plans, maturity models, and modernization strategies. • Advise leadership on cyber risk, threat trends, security gaps, mitigation strategies, and investment priorities. • Collaborate with technical teams, program managers, architects, engineers, system owners, and business stakeholders to integrate security into planning, development, operations, and sustainment activities. • Support security assessments, risk assessments, authorization activities, audits, and compliance reviews. • Provide expertise in federal cybersecurity frameworks and standards, including NIST, RMF, FISMA, FedRAMP, CMMC, CIS Controls, and Zero Trust guidance. • Recommend automation, analytics, artificial intelligence, machine learning, and security orchestration approaches to improve cyber defense effectiveness. • Support incident response planning, tabletop exercises, root cause analysis, and lessons-learned activities. • Develop cybersecurity policies, procedures, playbooks, technical guidance, briefings, and executive-level decision materials. • Mentor junior and mid-level cybersecurity staff and promote knowledge sharing across technical teams. • Identify opportunities to reduce risk, improve efficiency, strengthen resilience, and advance the organization’s cyber maturity. • This position may perform other duties as assigned. The responsibilities listed above are representative and not intended to be all-inclusive.
Cybersecurity Engineer – AI Risk and Governance
Vantage Data CentersExperience | Scalability | Efficiency By Design
• Perform technical security testing and reviews of AI‑enabled applications, agents, and workflows • Implement approved security architecture patterns for AI, ML, and LLM systems across cloud, hybrid, on‑prem, and OT‑adjacent environments • Engineer secure inference paths, APIs, service identities, authentication flows, and segmentation boundaries aligned with least privilege and zero trust principles • Implement technical safeguards to mitigate prompt injection, unauthorized context expansion, data leakage, hallucination risk, and unsafe output handling • Configure and maintain controls for limiting, monitoring, logging, and managing AI usage across platforms, models, and agents • Implement and validate technical controls supporting model explainability, traceability, and output validation where AI impacts operational, workforce, safety, or compliance decisions • Review and validate LLM usage patterns, including prompt design, retrieval‑augmented generation (RAG), context window constraints, and output handling mechanisms • Implement controls preventing unauthorized external model training, reuse, or retention of enterprise data by third‑party AI platforms • Validate encryption, access logging, retention, and deletion controls for data ingested, processed, or generated by AI systems • Execute AI‑specific threat modeling activities and contribute findings to enterprise and OT cybersecurity risk assessments • Ensure AI systems produce security telemetry, logs, and audit trails sufficient to detect misuse, drift, policy violations, or anomalous behavior • Integrate AI security signals into SOC, SIEM, and incident response tooling and workflows • Support investigation and response to AI‑related incidents, including data exposure, model failure, unsafe outputs, or control breakdowns • Conduct technical security reviews of vendor‑provided and embedded AI capabilities, assessing model behavior, data handling, and control alignment • Enforce approved security requirements for AI vendors and prevent activation of AI features without required security validation and governance approval • Drive alignment with ISO 42001 and related AI governance standards across applicable teams
• Triage, investigate, and respond to alerts across the SOC queue, hitting SLAs and following playbooks • Lead incident investigations, gather evidence, correlate events, and coordinate containment and recovery • Build and tune AI-assisted and agentic workflows across SIEM, SOAR, and EDR, including Claude via API • Engineer detection content: rules, queries, and alert tuning mapped to MITRE ATT&CK • Write and maintain SOAR playbooks and automation scripts that cut manual toil and accelerate response • Hunt for threats proactively, forming and testing hypotheses against current adversary TTPs • Maintain the SOC technology stack: integrations, health, and content engineering across all platforms • Keep SOX and SOC 2 Type 2 audit-ready evidence: logging coverage, incident records, and procedures • Partner with IT, Cloud, Risk, and Compliance to embed telemetry and surface findings clearly



