Principal Cybersecurity Engineer

We are seeking a Principal Cybersecurity Engineer specializing in Identity & Access Management (IAM) to serve as the enterprise authority for identity security governance and architecture. This role defines the long-term IAM strategy, establishes enterprise-wide standards, and ensures identity risks are managed consistently across the organization. This position provides strategic leadership and architectural oversight, rather than operational provisioning or day-to-day platform administration.

Responsibilities

• Own the enterprise IAM governance and architecture strategy.
• Define a multi-year IAM roadmap aligned to Zero Trust and business priorities.
• Influence funding, prioritization, and sequencing of IAM initiatives.
• Represent identity risk and posture to senior leadership and governance forums.
• Establish enterprise identity reference architectures and guardrails.
• Act as the final design authority for identity integrations and access models.
• Define authentication, authorization, and privilege models across platforms.
• Ensure consistency across workforce, application, and privileged identities.
• Guide the adoption of password-less authentication, Just-In-Time (JIT) access, and adaptive authentication.
• Define enterprise IAM policies, standards, and control frameworks.
• Oversee access governance methodologies, including reviews, certifications, and exceptions.
• Establish IAM risk metrics and maturity assessments.
• Drive remediation of systemic identity risks.
• Provide executive-level support for audits and regulatory inquiries.
• Partner with IT, HR, Legal, Compliance, and Engineering teams to influence identity operating models.
• Lead working groups and design councils related to identity.
• Evaluate IAM, IGA, and PAM technologies from a strategic perspective and define success criteria for tooling and integrations.
• Stay current with identity threat trends and evolving best practices.

Requirements

• Bachelor’s degree in Information Technology, Information Security, Computer Science, Engineering, or a related field (or equivalent combination of education and experience).
• 6-8 years of experience in cybersecurity, identity security, or security engineering.
• Deep expertise in IAM governance, architecture, and risk management.
• Proven experience leading enterprise-scale IAM initiatives.
• Strong understanding of Zero Trust identity architectures, RBAC/ABAC, role governance, and privileged access management.
• Experience influencing architecture and security outcomes across large organizations.
• Excellent executive communication and stakeholder management skills.

Preferred Qualifications

• Experience operating as a principal engineer, lead architect, or enterprise security architect.
• Identity platform experience across multiple vendors such as Entra ID, Okta, SailPoint, or CyberArk.
• Experience working in regulated or complex enterprise environments.
• Professional certifications such as CISSP, CCSP, SABSA, or identity-focused credentials.

Benefits

• Generous remuneration package and Employee Stock Purchase Plan enrollment.
• 30 days of paid annual vacation plus an extra day off for your birthday.
• 2 additional days off for volunteering.
• Premium healthcare and dental care coverage.
• Additional pension insurance.
• Flexible working hours.
• On-site gym with CrossFit equipment and a climbing wall.
• Co-funded Multisport card.
• Free underground parking with designated spaces for bikes, motorbikes, and electric scooters.