Lead Information Security Engineer
Vista
AWSAzureCloudGoogle Cloud PlatformPython
Senior IAM Specialist – Enterprise Security Team
Semrush
full-time
Posted on:
Location Type: Remote
Location: Remote • 🇪🇸 Spain
Visit company websiteJob Level
Senior
Tech Stack
Python
About the role
- Define and own the IAM strategy, develop the roadmap with clear milestones, metrics, and timelines
- Support recruitment activities, assist in onboarding new IAM specialists, and contribute to team planning
- Design and implement end-to-end processes for account provisioning, modification, and deprovisioning
- Analyze requirements, select, design, and maintain privileged access management tools
- Build and optimize workflows for automated provisioning, entitlement management, and de-provisioning; support policy configuration for the Okta administration team
- Lead presentations and align requirements and procedures with business and technical teams (e.g., IT Support, Security Operations, Security Compliance)
- Create and maintain up-to-date IAM process guidelines and SOPs; develop access security policies (password policies, MFA configurations, etc.); produce detailed user/Admin guides and checklists for account lifecycle and access reviews; version-control all documentation; collaborate closely with the Compliance team to incorporate regulatory requirements and support internal/external audits.
Requirements
- 3+ years of practical experience in IAM or broader Information Security roles with substantial involvement in IAM-related responsibilities (e.g., identity lifecycle, access control, authentication systems)
- Strong understanding of all IAM domains: account lifecycle, authentication & authorization, roles & permissions, access reviews, certificate & secret management, PAM
- Familiarity with industry standards and regulations such as GDPR, SOC 2, or PCI DSS, or the ability to quickly learn and apply them
- Excellent presentation and persuasion skills with both technical and business stakeholders
- English proficiency at Upper-Intermediate or higher; Not required, but a plus
- Hands-on experience with Okta and Google Workspace (process development or administration)
- Relevant certifications: Okta Certified Administrator, CISSP, CISM, or equivalent
- Scripting for automation (Bash, PowerShell, Python)
- Experience ingesting IAM logs/events into SIEM solutions
- Understanding of DevOps practices and integrating IAM into CI/CD pipelines
- Familiarity with PAM platforms (e.g., CyberArk, BeyondTrust)
- Strategic mindset with a track record of developing long-term IT strategies
Benefits
- Flexible working hours
- Unlimited PTO
- Flexi Benefit for your hobby
- Employee Support Program
- Loss of family member financial aid
- Employee Resource Groups
- Meals, snacks, and drinks at the office
- Corporate events
- Teambuilding
- Training, courses, conferences
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
IAM strategyaccount provisioningprivileged access managementautomated provisioningentitlement managementscriptingDevOps practicesIAM logs ingestionCI/CD integrationPAM platforms
Soft skills
presentation skillspersuasion skillscollaborationstrategic mindset
Certifications
Okta Certified AdministratorCISSPCISM
