IAM Engineer

Requirements:

• Hands-on experience with SailPoint IdentityNow (IDN): configuration, lifecycle management, and integration.
• Solid understanding of IAM standards and protocols: SAML, OAuth2/OIDC, SCIM, MFA.
• Experience with directory services and identity platforms such as Google Cloud Identity and Active Directory.
• Proficiency in one or more scripting or programming languages (e.g., Python, Go, PowerShell, JavaScript) for automation and integration.
• Experience with REST APIs to build and manage IAM integrations.
• Knowledge of IAM design principles, including RBAC, PAM, and policy-based access control.
• Familiarity with least privileged access models and supporting technologies (e.g., BeyondCorp).
• Experience working with cloud platforms (especially GCP or AWS) from an IAM and security perspective.
• Strong analytical and troubleshooting skills with a focus on resilient, scalable system design.

What you'll be doing:

• Implement and maintain Deliveroo’s Identity & Access Management services, including identity providers and identity governance platforms like SailPoint IdentityNow.
• Application onboarding:
  • Integrate new and existing SaaS and internal apps into the IAM ecosystem, with a focus on IGA and SSO (SAML/OIDC).
  • Define and enforce standard onboarding practices, including attribute mapping, role assignment, and policy alignment.
  • Work closely with application owners to ensure secure, efficient, and compliant access patterns.
  • Support development of user access reviews to meet governance and compliance requirements.
• Build automation to streamline identity workflows such as provisioning, deprovisioning, and access reviews, using both commercial tools and custom development.
• Own and operate core IAM services, including RBAC models, authentication/authorization workflows, entitlements, permissions, and account lifecycle operations.
• Collaborate closely with InfoSec and Engineering teams to design and implement secure-by-default identity solutions and to support incident response or troubleshooting.
• Contribute to documentation (playbooks and runbooks) and build enablement tooling or training for internal support teams.
• Apply IAM security best practices and ensure alignment with least privileged principles across systems and services.

Perks and Benefits:

• Benefits differ by country, including healthcare, well-being, parental leave, pensions, and generous annual leave allowances.
• Opportunity to support a charitable cause of your choice.
• Commitment to diversity, equity, and inclusion in the workplace.
• Fast-paced, technology-driven environment with opportunities for professional growth and impact.