IAM Engineer
Position Description
At CGI, we help clients strengthen their cyber resilience through secure, scalable identity and access management solutions that protect critical systems and enable business transformation. As an IAM Engineer, you will play a key role in delivering privileged access and identity governance capabilities across complex hybrid environments, helping organisations adopt modern security models while improving operational efficiency and compliance. Working alongside experienced cyber professionals, you’ll have the opportunity to shape secure access strategies, contribute innovative ideas, and take ownership of high‑impact solutions using leading technologies including CyberArk, Microsoft Entra, and cloud‑based IAM platforms.
Due to the secure nature of the programme, you will need to hold UK Security Clearance or be eligible to go through this clearance. This is a hybrid position.
Responsibilities
* Design, implement, support privileged access and identity governance solutions to strengthen security across enterprise environments.
* Work closely with security architects, infrastructure teams, and business stakeholders to deliver secure, scalable IAM capabilities that align with organisational and regulatory requirements.
* Leverage expertise in CyberArk and Microsoft Entra to modernise access controls, improve identity lifecycle management, and support Zero Trust security initiatives.
* Deliver innovative IAM solutions across hybrid and cloud environments, taking ownership of technical integrations, automation, and continuous improvement activities.
* Design & deliver secure privileged access management solutions using CyberArk PAS, EPV, PSM, and Privileged Cloud.
* Integrate and enhance IAM capabilities across enterprise platforms and cloud services.
* Support and optimise Microsoft Entra services including SSO, Conditional Access, and PIM.
* Develop and automate IAM workflows and integrations using PowerShell and APIs.
* Improve and govern identity lifecycle processes including Joiner/Mover/Leaver workflows and access certifications.
* Collaborate and advise on security architecture and modern access management strategies.
* Contribute and innovate within Zero Trust and cloud security transformation initiatives.
* Monitor and resolve IAM-related issues, ensuring secure and reliable service delivery.
Required Qualifications
* Strong hands‑on experience with CyberArk PAS, EPV, and PSM.
* Proven experience with CyberArk Privileged Cloud including SIA and SCA.
* CyberArk Certified Delivery Engineer (CDE) certification.
* Strong understanding of IAM principles including RBAC, least privilege, and JML processes.
* Experience integrating CyberArk with enterprise systems and applications.
* Expertise in security architecture and IAM solution design within complex environments.
* Strong experience with Microsoft Entra (Azure AD), including SSO, Conditional Access, and PIM.
* Experience with IGA platforms such as SailPoint or Saviynt.
* Strong scripting and automation capability using PowerShell and APIs.
Desirable Skills
* Knowledge of Zero Trust and modern access management models.
* Experience across cloud platforms including Azure, AWS, and GCP.
* Broader cyber security certifications such as CISSP or CCSP.
Benefits
Competitive salary, excellent pension, private healthcare, plus a share scheme (3.5% + 3.5% matching) which makes you a CGI Partner not just an employee.
#J-18808-Ljbffr