Senior Identity Security Engineer

Job Description:

Responsibilities

• Design and implement automated discovery mechanisms for non-human identities including service accounts, API tokens, cloud IAM roles, automation identities, and AI agents across hybrid and multi-cloud environments.
• Develop and maintain Python and PowerShell scripts to:
• Discover NHIDs from servers, cloud platforms, and applications
• Parse configuration files, logs, and APIs to identify embedded or hard-coded credentials
• Automate NHID hygiene tasks (ownership validation, metadata enrichment, reporting)
• Build automation workflows to support NHID onboarding, lifecycle updates, reviews, and decommissioning by integrating IAM, PAM, cloud IAM, and ITSM systems.
• Support governance of NHIDs by:
• Ensuring ownership and lifecycle state are captured correctly
• Assisting with access reviews and attestations for non-human identities
• Identifying orphaned, dormant, or over-privileged NHIDs and driving remediation
• Work closely with application and DevOps teams to analyse authentication flows and help refactor applications toward modern, secure, password-less NHID patterns (e.g., OAuth client credentials, managed identities, short-lived tokens).

Qualification & Experience

• 5+ years’ experience in IAM, Security Engineering, Cloud Security, or Platform Engineering
• Strong hands-on experience with Python and PowerShell
• Proven experience building automation workflows using scripts, APIs, or orchestration tools
• Understanding of non-human identities (service accounts, API tokens, cloud roles
• Experience with cloud IAM (AWS IAM, Azure/Entra, GCP – any two preferred)