Cloud Infra Engineer (IAM)

Assurity Trusted Solutions (ATS) is a wholly owned subsidiary of the Government Technology Agency (GovTech). As a Trusted Partner over the last decade. ATS offers a comprehensive suite of products and services ranging from infrastructure and operational services, governance and assurance services as well as managed processes. In a dynamic digital & cyber landscape where trust & collaboration is key, ATS continues to drive mutually beneficial business outcomes through collaboration with GovTech, government agencies and commercial partners to mitigate cyber risks and bolster security postures.

• Maintain, enhance and automate the Identity and Access Management (IAM) solution comprising of hybrid Identity service, the PKI service and Privilege ID Administration service.
• Maintain and implement identity services including SSO, MFA, federation (SAML, OIDC) and directory synchronisation.
• Maintain and manage the PKI Certificate Authority, OCSP, CRL distribution points.
• Maintain and enforced access control with role-based access control (RBAC) and least privilege principles.
• Develop codes to automate the existing operation toils such as manual health checks, manual SR fulfilment.
• Collaborate with Product Owners and Product Principals to integrate the IAM services into their product for purpose of authentication and access.
• Collaborate with on-prem and cloud services owners for secure and seamless access across internet and intranet resources.
• Perform proactive monitoring of the IAM services, and investigate and troubleshoot related incidents.

• 3-5 years of IAM or security engineering roles.
• Good understanding of Entra ID (Azure AD), Active Directory, PKI certificate and privilege administration services.
• Experience in modern authentication protocol such as OIDC, SAML, Sign-in methods (WHFB, MFA, cert/key-based) to support the devices, users and application access.
• Experience in managing certificate lifecycle and understanding of X.509 certificates, TLS/SSL and cryptographic protocol.
• Candidate who knows coding/scripting and experience in automating routine tasks and capable of streamlining process will have added advantage.
• Familiar with Hybrid Identity Access Management tools such as Active Directory, Entra ID, Microsoft Certificate Authority.
• Familiar with Privilege ID Administration tools such as Cyberark, Beyondtrust.
• Coding / scripting using MS Graph, nodejs, PowerShell
• Familiar with Devops CICD tools such as Gitlab, Jira, Confluence
• Microsoft Identity and Access Administrator (SE-300)
• Azure Security Engineer Associate
• AWS Certified Solutions Architect

Join us and discover a meaningful and exciting career with Assurity Trusted Solutions!

The remuneration package will commensurate with your qualifications and experience. Interested applicants, please click "Apply Now".

We thank you for your interest and please note that only shortlisted candidates will be notified.

By submitting your application, you agree that your personal data may be collected, used and disclosed by Assurity Trusted Solutions Pte. Ltd. (ATS), GovTech and their service providers and agents in accordance with ATS’s privacy statement which can be found at: https://www.assurity.sg/ or such other successor site.