Senior Identity and Access Management (IAM) Engineer

Описание вакансии

Qube Research & Technologies (QRT) is a global quantitative and systematic investment manager, operating in all liquid asset classes across the world. We are a technology- and data-driven group implementing a scientific approach to investing. Combining data, research, technology, and trading expertise has shaped our collaborative mindset, which enables us to solve the most complex challenges. QRT’s culture of innovation continuously drives our ambition to deliver high-quality returns for our investors.

You will join the Security team, responsible for protecting systems, data, and access across the organisation. The team works closely with application owners, IT Engineering, HR, and Security stakeholders to design and operate secure, automated identity and access management processes across enterprise platforms.

Your Future Role within QRT

• Identity Lifecycle Management

+ Design, implement, and maintain automated processes for user provisioning, modification, and deprovisioning.

+ Ensure alignment between identity lifecycle policies and organisational access control requirements.

+ Integrate IAM solutions with HR systems, directories, cloud platforms, and enterprise applications.

+ Drive automation to eliminate manual identity and access management processes.

• Application Integration & Identity Engineering

+ Design, develop, and maintain custom identity integrations, including SCIM 2.0 provisioning bridges.

+ Build and maintain connectors between IAM platforms and enterprise applications (cloud and on premises).

+ Engineer integration solutions for applications that do not natively support modern identity standards (SCIM, SAML, OIDC, REST APIs).

+ Facilitate redesign or refactoring of legacy or non-integrated applications to enable automated lifecycle management.

+ Develop middleware, APIs, or automation services to ensure secure identity data exchange.

+ Contribute to application architecture discussions to ensure identity and access integration requirements are embedded by design.

+ Troubleshoot and optimise identity integrations across the enterprise.

• IAM Platform & Tooling Management

+ Configure, maintain, and enhance IAM platforms (SailPoint ISC).

+ Develop custom rules, workflows, connectors, and extensions within the IAM platform.

+ Monitor platform performance and proactively resolve system issues.

+ Collaborate with vendors and internal engineering teams to optimise IAM capabilities.

• Security and Risk Management

+ Support risk assessments related to identity governance and application access.

+ Contribute to identity management policies, standards, and architectural guidelines.

+ Respond to identity-related incidents and support root cause analysis.

+ Ensure secure coding and integration practices are followed across identity engineering work.

• Continuous Improvement & Innovation

+ Stay informed on industry trends, identity standards, and emerging IAM technologies.

+ Recommend enhancements to improve governance maturity and reduce operational overhead.

+ Participate in cross-functional engineering initiatives to expand identity automation capabilities.

+ Promote identity-as-code and infrastructure-as-code approaches where appropriate.

Your Present Skillset

• Bachelor’s degree in computer science, Information Security, Software Engineering, or related field.
• 5+ years of experience in IAM Engineering or Application Integration Engineering.
• Strong software engineering background with experience building production-grade integrations.
• Hands-on experience with IAM platforms such as SailPoint (IIQ or ISC) or similar.
• Proven experience developing SCIM 2.0 integrations and custom provisioning connectors.
• Strong experience working with REST APIs, JSON, OAuth2, SAML, OIDC, and modern authentication protocols.Experience integrating identity solutions with cloud and on-prem enterprise applications.
• Experience redesigning or enabling identity integration for non-integrated or legacy applications.
• Strong scripting and automation skills (e.g., Python, PowerShell).
• Experience with version control systems (e.g., Git) and CI/CD pipelines.
• Solid understanding of RBAC, ABAC, SSO, MFA, and directory services (AD/Azure AD).
• Familiarity with security and compliance standards (ISO 27001, SOX, GDPR).
• Excellent problem-solving, analytical, and communication skills.
• Preferred

+ Experience contributing to application codebases to enable identity integration.

+ Experience building middleware or identity proxy services.

+ Knowledge of containerisation (Docker/Kubernetes) and cloud-native integration patterns.

+ Exposure to DevSecOps practices.

+ Financial services industry experience.

+ CISSP, CISM, or equivalent security certification.

+ IAM-specific certifications (e.g., CIAM, SailPoint Certified Implementation Engineer).

+ SailPoint certifications (IIQ or ISC).

QRT is an equal opportunity employer. We welcome diversity as essential to our success. QRT empowers employees to work openly and respectfully to achieve collective success. In addition to professional achievement, we are offering initiatives and programs to enable employees achieve a healthy work-life balance.