
Identity & PAM Security Engineer
Sporty GroupAbout the role
This team is responsible for the security, stability, and scalability of the company's software systems and infrastructure. We monitor system performance, identify and mitigate risks, and ensure our platforms remain secure, resilient, and capable of supporting continued growth.
As an Identity & PAM Security Engineer, you will be responsible for designing, implementing, and managing identity security controls across the enterprise. Your focus will include privileged access management, identity governance, service account security, and conditional access controls. Working closely with Security, Infrastructure, and Engineering teams, you will help ensure that access to critical systems and resources is secure, appropriately governed, and aligned with least-privilege principles.
What you'll be doing
- Manage privileged access controls, including Privileged Identity Management (PIM), just-in-time (JIT) access, approval workflows, and privileged role assignments.
- Define and maintain administrative access processes for high-risk roles, privileged sessions, and break-glass accounts.
- Lead and support access review processes, track remediation activities, and ensure access rights remain aligned with least-privilege principles.
- Manage the lifecycle of service and machine accounts, including ownership, permissions, credential rotation, monitoring, and decommissioning.
- Configure, maintain, and monitor conditional access policies, multi-factor authentication (MFA), and identity risk controls.
- Design and implement automation for identity workflows, approvals, access validation, reporting, and remediation activities.
- Collaborate with Security, Infrastructure, and Engineering teams to strengthen identity security across cloud and enterprise environments.
- Support security audits, incident response activities, and identity-related investigations.
- Contribute to the ongoing improvement of identity governance, privileged access management, and security operations practices.
What you'll bring
- 4+ years of experience in Identity and Access Management (IAM), Cloud Security, Infrastructure Security, or Security Engineering.
- Hands-on experience administering and securing Microsoft Entra ID and Google Cloud IAM environments.
- Strong understanding of identity security concepts including least privilege, role-based access control (RBAC), multi-factor authentication (MFA), conditional access, access governance, and privileged access management.
- Experience managing service accounts, machine identities, secrets, API keys, and credential rotation processes.
- Experience building automation using workflow management platforms, APIs, PowerShell, Python, or similar technologies.
- Strong analytical and problem-solving skills with a security-first mindset.
- Excellent documentation, commu
Opens the company's application page
Listed via
Jobicy
jobicy.com
Similar roles
Design & Tech
Related reads from TCHNX

The Quiet Revolution in Local-First Software
As major platforms face outages and data breaches, a new generation of developers is building applications that prioritise local data storage and peer-to-peer sync, challenging the cloud-first orthodoxy that's dominated tech for two decades.

The Quiet Revolution in Edge AI: Why Your Next Computer Might Not Need the Cloud
As neural processing units become standard in consumer devices, we're witnessing a fundamental shift in how AI applications work. Local processing is no longer a fallback; it's becoming the preferred architecture.

The Rise of AI-Assisted Code Generation 2: Are Developers Becoming Prompt Engineers?
As AI coding assistants reshape software development, the industry grapples with a fundamental question: is writing code giving way to writing prompts? We examine how London's tech scene is adapting to this seismic shift.

