S&P Global

Lead IAM Engineer – Resilience, Risk & Compliance

S&P Global

full-time

Posted on:

Location Type: Office

Location: HyderabadIndia

Visit company website

Explore more

AI Apply
Apply

Job Level

Senior

Tech Stack

AzurePythonTerraform

About the role

  • Architect and test High Availability (HA) and Disaster Recovery (DR) patterns for critical services (e.g., Active Directory, Okta, CyberArk).
  • Design "Active-Active" or "Warm Standby" failover strategies to ensure 99.99% uptime.
  • Own the backup and recovery strategy for Identity data. This includes immutable backups for Active Directory (preventing ransomware lockouts), restoring IGA databases, and managing "Configuration as Code" backups for SaaS configurations (Okta/Entra ID).
  • Lead the technical response for external and internal audits (SOX, SOC2, ISO).
  • Automate the collection of evidence for access controls, ensuring we are "audit-ready" 365 days a year.
  • Serve as a Subject Matter Expert (SME) across all IAM domains. Troubleshooting complex issues that span across SSO (Okta), Directory Services (AD/LDAP), Governance (SailPoint/Saviynt), and PAM.
  • Implement advanced monitoring to detect configuration drift, unauthorized changes, or replication failures.
  • Ensure that the "Identity Data" is consistent across HR feeds, Directories, and downstream apps.
  • Act as the Major Incident Commander for identity-related outages. Lead Root Cause Analysis (RCA) processes and drive the implementation of preventative fixes.

Requirements

  • 10+ years of total IT experience, with 7+ years specialized in Identity & Access Management.
  • You must be a "Full Stack" Identity Engineer with hands-on experience in at least three of the following areas: Directory Services: Deep expert-level knowledge of Active Directory (Forest/Domain architecture, replication, GPOs) and LDAP.
  • Strong familiarity with Okta or Microsoft Entra ID (Azure AD).
  • Experience with SailPoint or Saviynt (Identity Governance & Administration).
  • Familiarity with CyberArk or BeyondTrust.
  • Proven experience performing Forest Recoveries in Active Directory or architecting DR failovers for global IAM platforms.
  • Strong understanding of regulatory requirements such as SOX, NIST 800-53, and GDPR.
  • Experience automating Access Reviews (UAR) and control testing.
  • Proficiency in PowerShell, Python, or Terraform to automate backups, evidence gathering, and configuration recovery.
Benefits
  • Health & Wellness: Health care coverage designed for the mind and body.
  • Flexible Downtime: Generous time off helps keep you energized for your time on.
  • Continuous Learning: Access a wealth of resources to grow your career and learn valuable new skills.
  • Invest in Your Future: Secure your financial future through competitive pay, retirement planning, a continuing education program with a company-matched student loan contribution, and financial wellness programs.
  • Family Friendly Perks: It’s not just about you. S&P Global has perks for your partners and little ones, too, with some best-in class benefits for families.
  • Beyond the Basics: From retail discounts to referral incentive awards—small perks can make a big difference.
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
High Availability (HA)Disaster Recovery (DR)Active DirectoryOktaCyberArkSailPointSaviyntPowerShellPythonTerraform
Soft Skills
leadershiptroubleshootingincident managementroot cause analysiscommunicationaudit readinessproblem-solvingcollaborationorganizational skillssubject matter expertise