We are looking for an IAM Engineer to join our Security team. The role sits at the intersection of development, infrastructure, and information security.This position is ideal for someone with strong expertise in identity and access management systems, who understands how to implement RBAC models within company processes and is ready to automate routine tasks.* Our team is Russian-speaking, so we’re currently looking for candidates with Russian as a native language to ensure smooth and comfortable communication within the teamWhat we expect:Solid understanding of access management processes in large organizationsHands-on experience with deployment and integration of IdP solutions: Okta / Keycloak / SailPointStrong knowledge of RBAC, ABAC, PBAC, and experience embedding access models into IDM systems and company workflowsUnderstanding of authentication and authorization protocols: SAML, OIDC, OAuth2, LDAP, Kerberos, SCIMExperience with provisioning/deprovisioning automation, onboarding/offboarding processesExperience with Git and CI/CD pipelinesUnderstanding of cloud IAM services (e.g., AWS or GCP)Knowledge of Python or Go for automation tasksNice to have:Experience integrating LLMs via APIs / MCP into existing systemsInfrastructure as Code skills (Terraform, Ansible)Experience with MDM solutionsFamiliarity with ELK stackExperience in incident investigation and participation in CTF challengesRequirementsDesign, implement, and maintain Identity and Access Management (IAM) solutions across the organizationIntegrate and support IdP systems (e.g., Okta, Keycloak, SailPoint) with internal and external servicesDevelop and enforce access control models (RBAC, ABAC, PBAC) aligned with business processesAutomate user lifecycle management (provisioning, deprovisioning, onboarding, offboarding)Implement and maintain authentication and authorization flows (SAML, OAuth2, OIDC, LDAP, Kerberos, SCIM)Collaborate with engineering, DevOps, and security teams to embed IAM into infrastructure and applicationsBuild and maintain automation scripts/tools (Python or Go) to reduce manual effort and improve efficiencyManage and optimize IAM in cloud environments (AWS, GCP)Contribute to CI/CD pipelines and ensure secure integration of IAM processesMonitor, troubleshoot, and resolve access-related issues and incidentsParticipate in security audits, access reviews, and compliance initiativesDocument IAM processes, standards, and best practicesBenefits25 vacation days and 5 family days yearlyFlexible start to the workdaySupport from a professional corporate coach and psychologistRegular internal and external activities, workshops, trips, and corporate eventsAccess to our internal knowledge base, meetups, and team-building activitiesOngoing training in new technologies and continuous professional development support
