At a Glance
- Tasks: Design and implement enterprise access management solutions for a global hybrid environment.
- Company: Join UMG's innovative Tech Security & Identity team.
- Benefits: Competitive salary, flexible work options, and opportunities for professional growth.
- Other info: Dynamic role with excellent career advancement in a global organisation.
- Why this job: Make a real impact on security and user experience with cutting-edge technology.
- Qualifications: 5+ years in Identity & Access Management with strong technical skills.
The predicted salary is between 60000 - 80000 € per year.
Requirements
- 5+ years of hands-on experience in Identity & Access Management or Security Engineering roles, with a strong focus on Access Management.
- Demonstrated experience implementing and operating enterprise access management platforms (e.g., Ping Identity, Okta, Microsoft Entra ID, or equivalent).
- Strong understanding of authentication and authorization concepts, including SSO, federation, MFA, and adaptive access.
- Hands-on experience with identity protocols and standards such as SAML, OAuth 2.0, OpenID Connect (OIDC), and LDAP.
- Experience integrating identity platforms with cloud applications, SaaS platforms, and custom-built applications.
- Proficiency in scripting and automation using tools such as PowerShell or Python.
- Experience operating access services in hybrid and cloud environments (Azure and/or AWS).
- Ability to independently own complex technical implementations while collaborating across a global organization.
- Strong troubleshooting, documentation, and communication skills.
- (Desirable) Bachelor’s degree in Computer Science, Information Security, Engineering, or a related technical discipline.
- (Desirable) Experience with passwordless authentication technologies and modern identity standards.
- (Desirable) Familiarity with Zero Trust and conditional access models.
- (Desirable) Experience supporting authentication services in high-availability, 24x7 enterprise environments.
- (Desirable) Experience with identity verification solutions and technologies.
- (Desirable) Professional certifications such as Ping Identity Certified Professional, Microsoft Certified: Identity and Access Administrator, Security+, or CISSP.
- (Desirable) Experience operating IAM platforms within a large, global, or highly regulated enterprise environment.
What the job involves
We are currently seeking an Identity & Access Management Engineer with specialization in Access Management to join UMG’s global Tech Security & Identity organization. Reporting to the Manager, Access Management VP, Tech Security & Identity, this is a hands-on engineering role responsible for designing, implementing, and operating enterprise access management capabilities across a global, hybrid environment – including workforce, partner, customer, and consumer experiences.
This engineer will play a critical role in securing authentication and authorization for workforce and application access, delivering scalable solutions across Single Sign-On (SSO), federation, and multi-factor authentication (MFA). The role emphasizes strong technical execution, platform reliability, and automation, working closely with application, infrastructure, and security teams to enable secure access while maintaining a strong user experience.
- Design, engineer, deploy, and operate Access Management solutions across the enterprise.
- Implement and support Single Sign-On (SSO) and federation services using modern identity protocols.
- Engineer and maintain authentication and authorization services including MFA, adaptive access, and conditional access policies.
- Integrate applications and platforms with enterprise access management systems across on-premises and cloud environments.
- Partner with application owners and platform teams to onboard applications to SSO and enforce consistent authentication standards.
- Design and maintain secure federation integrations using protocols such as SAML, OAuth 2.0, and OpenID Connect (OIDC).
- Develop and maintain automation and tooling to support access onboarding, configuration, and lifecycle management.
- Troubleshoot and resolve complex authentication, authorization, and federation issues impacting users or applications.
- Ensure access management services meet availability, performance, and resiliency requirements in a global environment.
- Support audit, compliance, and security review activities related to access controls and authentication mechanisms.
- Maintain technical documentation, standards, and runbooks for access management platforms and integrations.
- Continuously improve access security and user experience through platform enhancements, automation, and adoption of modern authentication patterns.
Identity & Access Management Engineer (Single Sign-On) employer: Deepstreamtech
At UMG, we pride ourselves on being an exceptional employer, offering a dynamic work culture that fosters innovation and collaboration. As an Identity & Access Management Engineer, you will have the opportunity to work with cutting-edge technologies in a global environment, while benefiting from continuous professional development and a strong emphasis on work-life balance. Our commitment to employee growth, coupled with our focus on security and user experience, makes UMG a rewarding place to advance your career in tech security.
StudySmarter Expert Advice🤫
We think this is how you could land Identity & Access Management Engineer (Single Sign-On)
✨Tip Number 1
Network like a pro! Attend industry meetups, webinars, or conferences related to Identity & Access Management. It's a great way to connect with potential employers and learn about job openings that might not be advertised.
✨Tip Number 2
Show off your skills! Create a portfolio or GitHub repository showcasing your projects related to access management platforms, scripting, or automation. This gives you a chance to demonstrate your hands-on experience and technical prowess.
✨Tip Number 3
Don’t just apply anywhere; apply through our website! We love seeing candidates who are genuinely interested in joining our team. Tailor your application to highlight your experience with SSO, MFA, and the specific tools mentioned in the job description.
✨Tip Number 4
Prepare for interviews by brushing up on your troubleshooting skills. Be ready to discuss real-world scenarios where you've resolved complex authentication issues. This will show your ability to operate access services effectively in a global environment.
We think you need these skills to ace Identity & Access Management Engineer (Single Sign-On)
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the Identity & Access Management Engineer role. Highlight your experience with access management platforms and protocols, and don’t forget to mention any relevant projects or achievements that showcase your skills.
Showcase Your Skills:In your application, be sure to emphasise your hands-on experience with identity protocols like SAML and OAuth 2.0. We want to see how you’ve integrated identity platforms with cloud applications, so share specific examples!
Be Clear and Concise:When writing your cover letter, keep it clear and concise. We appreciate straightforward communication, so get to the point about why you’re a great fit for the role and how your background aligns with our needs.
Apply Through Our Website:Don’t forget to apply through our website! It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it shows you’re keen on joining our team at StudySmarter!
How to prepare for a job interview at Deepstreamtech
✨Know Your Protocols
Make sure you brush up on your knowledge of identity protocols like SAML, OAuth 2.0, and OpenID Connect. Be ready to discuss how you've implemented these in past roles, as well as any challenges you faced and how you overcame them.
✨Showcase Your Hands-On Experience
Prepare to share specific examples from your 5+ years in Identity & Access Management. Highlight your experience with platforms like Ping Identity or Okta, and be ready to explain how you’ve operated access services at an enterprise scale.
✨Demonstrate Your Troubleshooting Skills
Think of a few complex authentication or authorization issues you've resolved in the past. Be prepared to walk the interviewer through your thought process and the steps you took to troubleshoot and fix the problem.
✨Emphasise Collaboration
This role involves working closely with various teams, so be ready to discuss how you've collaborated with application owners and platform teams in previous positions. Share examples of how you ensured secure access while maintaining a great user experience.
