SR. IDENTITY ENGINEER
Hybrid · Mexico City, Mexico City, Mexico
Job Summary
Senior SR. Identity Engineer responsible for designing, implementing, and managing enterprise IAM solutions using Microsoft Entra ID, including IAM governance (IGA/JML), Entra ID Protection, Conditional Access, MFA, SSO, and CyberArk. Own JML lifecycle management with Entra ID Governance, configure and manage access packages and entitlement management, design and enforce Conditional Access and risk-based policies, lead SSO/multi-factor authentication integrations across cloud and on-prem apps, administer and support Active Directory, Entra ID, Identity Governance, Identity Protection, and CyberArk, troubleshoot complex authentication/access issues, maintain CyberArk CPM/PSM for privileged access, conduct access reviews and RBAC certifications, monitor IAM incidents within SLAs, and drive automation, SOPs, cross-team collaboration, and ongoing IAM best practices. Preferred qualifications include advanced knowledge of AD/Azure AD/CyberArk, IAM governance, RBAC, ISO27001/SOX/GDPR, and CyberArk certifications; healthcare experience is a plus. Hybrid policy requires 2 days in the office per week.
Required Qualifications
- 13–15+ years of hands-on IAM/PAM experience in enterprise environments
- Strong experience with Microsoft Entra ID, CyberArk, Azure SSO
- Scripting and automation with PowerShell and/or Python
- Experience with Active Directory, LDAP, SAML, OAuth 2.0, OpenID Connect
- Hybrid policy: 2 days office work per week (mandatory)
- Strong communication and stakeholder collaboration skills
Apply with one swipe on Sorce. We auto-fill applications and apply on your behalf — no cover letters, no 40-minute forms.
Hiring someone like this?
Get your role in front of qualified candidates on Sorce.