IDAM Engineer

The team you'll be working with:

We are currently recruiting for IDAM & PAM Engineers of various grades to join our growing client advisory & delivery business.

NTT DATA is one of the world's largest Global Security services providers with over 7,500 Security SMEs and an integration partner to many of the world's most recognized Security Technology providers. We strive to hire exceptional, innovative, and passionate individuals who want to grow with us. In a constantly changing world, we work together with our people, clients, and communities to enable them to fulfill their potential to do great things. We believe that by bringing everyone together, we can solve problems using innovative technology that can create a world that is sustainable and secure.

This is a great opportunity for you to play a pivotal role in helping to shape our client’s transformation journeys.

You will use your background in Identity and Access Management, and Privileged Access Management to support our clients by:

• Working within agreed timelines on the design & implementation phases to identify and unpack IDAM requirements, evaluate client IDAM solutions, define IDAM designs, support integration, configuration, and testing of IDAM solutions and platforms.
• Leveraging core competence and industry standards, frameworks, and good practices to review, enable, validate or define client IDAM outcomes.
• Identifying client needs and drivers for IDAM & PAM technology adoption, including technical security requirements, functional & non-functional aspects, and gaps or issues in current security designs.
• Defining IDAM & PAM designs (High Level & Low Level), user profiles, use cases, and processes.
• Working with other teams to agree on implementation plans and effort, and establishing appropriate metrics and processes to meet client objectives.
• Enacting the setup of test, development, and production IDAM & PAM environments, along with technology implementation and configurations.
• Overseeing, evaluating, and supporting discovery, audits, documentation, validation, assessment, and authorization processes.

Required technologies include Microsoft AD, Key Vault, Entra, AWS IAM, Google Cloud Identity, Okta, SailPoint, CyberArk, AuthO, Ping Identity. Candidates should have strong working knowledge of design, build, and operation for at least four of the following:

• IDAM Policy Management
• IDAM fraud & risk management
• IDAM Vendor & Industry-Related Assessment
• IDAM Health Checks
• CIAM (B2B, B2B2C/E/B) design & build
• CIAM (B2C, G2C) design & build
• IDAM Applications Onboarding
• IDAM / PAM process enhancements, including JML
• IDAM custom rules/interface creation
• Identity Lifecycle Management & Provisioning
• Identity & Access Governance, Certification/Recertification
• Role, Entitlement Management, SOD
• Privileged Account Management, Privilege Password Management
• Access Management, Single Sign-On & Federation
• Access review process customizations, including exclusion, pre-delegation, and active period rules
• Risk-based & Multi-Factor Authentication
• Vault / Key / Password Management

Experience with at least one development environment/language such as J2EE, Python, Java, C/C++, .NET, C#, or PL/SQL. Knowledge of operating systems (UNIX/Linux, Solaris, Windows) and database management systems (Oracle, SQL Server, etc.). Experience in designing, building, deploying, and managing security processes, including support for system testing, user acceptance testing, and production rollout. Applied knowledge of 'Secure by Design' and 'Zero Trust' principles. Willingness to learn new security skills and attain relevant certifications. Ability to operate under demanding conditions while maintaining enthusiasm. Strong interpersonal skills to build relationships with delivery teams and stakeholders. Professional Security, Risk, Compliance, or Security Technology certifications are preferred. For public sector clients, UK Gov. Defence Vetting (e.g., SC) is required or eligibility to obtain it.