IAM Engineer

How will you make a difference as an IAM Engineer at Fragomen?

• Build a comprehensive Identity and Access Management (IAM) framework, aligned with business and security requirements.
• Ensure all IAM policies and procedures are consistently followed, updated, and enforced across the enterprise.
• Define, implement and manage user provisioning, de-provisioning, role-based access controls (RBAC), and least-privilege access models.
• Integrate Azure IAM capabilities with application development to ensure robust security and compliance.
• Administer centralized directories (Azure AD, LDAP) and configure role-based access controls (RBAC) aligned with the Principle of Least Privilege.
• Develop, implement and support secure authentication methods, including SSO, MFA, password policies, and conditional access based on risk signals.
• Work with infrastructure, applications, and cloud teams to integrate IAM solutions across on-premises and cloud environments (e.g., Azure AD, AWS IAM).
• Conduct regular access reviews, audits, and reporting to support regulatory compliance.
• Enforce strict access controls to protect client confidentiality and sensitive legal data.
• Manage third-party and remote access across multiple jurisdictions.
• Enhance security posture and user experience through automation and IAM best practices.
• Collaborate across IT and security teams to support audit readiness and reduce risk.
• Document all architecture decisions, processes, and technical designs for long-term sustainability and audit readiness.
• Investigate and remediate IAM-related security incidents. Support audits, compliance reviews (e.g., SOX, GDPR, HIPAA), and reporting of user access and IAM controls.
• Partner with IT Security, Systems Engineering, Infrastructure Architecture, and Product teams to design and support secure identity solutions aligned with business needs.

Leverage your valuable skills and experience to make an impact at Fragomen:

• Bachelor’s degree in computer science, engineering, or related field is preferred.
• 3+ years of IAM experience is required. Azure IAM experience is preferred.
• Exceptional troubleshooting and technical problem-solving skills.
• Strong understanding of identity lifecycle management, RBAC, and group/role modeling.
• Experience with Python, PowerShell or other scripting languages for automation.
• Familiarity with security frameworks (NIST, CIS, ISO 27001).
• Solid understanding of regulatory and compliance requirements (e.g., SOX, PCI-DSS, HIPAA).
• A collaborative spirit and a demonstrated ability to work well with others.
• Strong understanding of IAM principles, including authentication, authorization, identity lifecycle management, and access governance.
• Experience with IAM tools and platforms (e.g., SailPoint, Okta, Azure AD, Ping Identity, CyberArk).
• Familiarity with directory services, SSO, MFA, and federation protocols.
• Experience working with cross-functional teams in a complex IT environment.
• IAM-related certifications (e.g., CIAM, CISSP, CISM, Microsoft Identity and Access Administrator).
• Knowledge of Zero Trust Architecture and modern security frameworks.

Benefits:

At Fragomen, we know that great people make a great organization. We value our people and offer employees a broad range of benefits which includes:

• 22 PTO days + Federal holidays
• Medical, Dental, and Vision plans + FSA & HSA Plans
• 401K plan

Learn More About Fragomen:

Please take time to read About Us, explore the Meaningful and Impactful Work we do for our clients, and review the standard Benefits we offer. You can find all the material to the right of this page.