Enterprise IAM Engineer II

We don't think about job roles in a traditional way. We are antisilo, anticareer stagnation, anticonventional.

Beyond ONE is a digital services provider radically reshaping personalized digital ecosystems of consumers in high-growth markets worldwide. We're building a digital services aggregator platform with a strong telco foundation and a profitable growth strategy that empowers users to drive their own experiences—subscribe once, source from many, and only pay for what you actually use.

Since our founding in 2021, we've acquired Virgin Mobile MEA, Friendi Mobile MEA, and Virgin Mobile LATAM (with 6.5 million subscribers), and have 1600 dedicated colleagues across Chile, Colombia, KSA, Kuwait, Mexico, Oman, and UAE.

Disrupting for good requires a rebellious spirit, a questioning mind, and a warm heart. We care about how to get things done, not who manages whom. We value diversity and together challenge conventional thinking to make a lasting impact on our lives and the industry.

Want to exchange ideas, learn from others, and leave your mark on our journey? This is the place for you.

Why this role matters:

As Enterprise IAM Engineer II, you will play a key role in securing and streamlining employee identity and access across our business and engineering systems. Your contributions will help shape our enterprise IAM infrastructure and governance frameworks, ultimately enabling us to disrupt the market through secure, scalable access management.

In your first year, you will automate end-to-end joiner/mover/leaver workflows, expand SSO capabilities across core platforms, and lead the implementation of scalable role-based access controls (RBAC) across high-impact systems including HR, finance, and production environments.

If you're keen on solving fragmented access challenges across a hybrid, multi-cloud enterprise, we want to hear from you. We're looking for someone ready to tackle this challenge head-on and make an impact from day one.

• Lead the design and implementation of Identity & Access Management (IAM) systems and integrations, ensuring secure and scalable employee access across the enterprise.
• Collaborate with HR, IT, engineering, and compliance teams to define access needs and enforce consistent RBAC frameworks.
• Manage automation of identity lifecycle processes (joiner/mover/leaver) to minimize friction and maximize compliance.
• Enhance Single Sign-On (SSO) across platforms, enforcing security best practices such as MFA and conditional access.
• Develop technical integrations between identity sources (e.g., HRIS) and target systems for seamless provisioning and deprovisioning.
• Monitor IAM incidents, investigate anomalies, and lead resolution efforts aligned with audit and compliance standards.
• Drive IAM metrics and reporting initiatives to support transparency, audit readiness, and continuous improvement.
• Stay ahead of IAM trends, focusing on innovations in hybrid and multi-cloud enterprise environments.

We're seeking someone who embodies the following:

• Bachelor's or Master's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• Industry certifications preferred (e.g., CISSP, CISM, Microsoft Certified: Identity and Access Administrator, Okta Certified Professional).

• 3-5 years of hands-on experience in an IAM role within a mid- to large-scale enterprise.
• Proven experience with systems like Microsoft Entra ID, SAP, Microsoft 365, AWS IAM, and Privileged Access Management.
• Functional exposure to IAM transformation or system automation initiatives.
• Experience with Mobile Device Management tools (e.g., Intune, JumpCloud, Jamf) is a plus.

Must-haves:

• Expertise in IAM tools (e.g., Entra ID, Azure AD, Okta, Ping Identity).
• Proficiency with directory services (LDAP, AD), SAML, OAuth2, OpenID Connect, and SCIM.
• Strong scripting/programming skills (e.g., PowerShell, Python).
• Hands-on experience in enterprise infrastructure environments (cloud-native/hybrid).
• Familiarity with GRC practices related to IAM.

Nice-to-haves:

• Experience with API integration and system orchestration.
• Ability to automate IAM controls within CI/CD pipelines.

• Thrives in fast-paced, technically complex environments.
• High degree of ownership and self-direction.
• Proactive mindset and quick adoption of new technologies.
• Experience with Agile and DevOps methodologies.

• Rapid learning opportunities, flexible career paths, exposure to challenging and meaningful work to build your expertise.
• Hybrid work environment with flexibility to work from home 2 days a week.
• Healthcare and other local benefits offered in-market.

By submitting your application, you acknowledge and consent to the use of Greenhouse & BrightHire during the recruitment process, including data storage outside your country of residence. For further information, please contact us.