×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Systems Engineer Data Security

Identity and Access Management; IAM Engineer

Job in Nashville, Davidson County, Tennessee, 37247, USA
Listing for: Universal Music Group
Full Time position
Listed on 2025-11-12
Job specializations:
  • IT/Tech
    Cybersecurity, Systems Engineer, Data Security
Salary/Wage Range or Industry Benchmark: 80000 - 100000 USD Yearly USD 80000.00 100000.00 YEAR
Job Description & How to Apply Below
Position: Identity and Access Management (IAM) Engineer

Identity and Access Management (IAM) Engineer

Join to apply for the Identity and Access Management (IAM) Engineer role at Universal Music Group
.

We are UMG, the Universal Music Group. We are the world’s leading music company. In everything we do, we are committed to artistry, innovation and entrepreneurship. We own and operate a broad array of businesses engaged in recorded music, music publishing, merchandising, and audiovisual content in more than 60 countries. We identify and develop recording artists and songwriters, and we produce, distribute and promote the most critically acclaimed and commercially successful music to delight and entertain fans around the world.

We are currently seeking an IAM Engineer to join our global Tech Security team. The ideal candidate will have hands‑on experience across the entire Identity & Access Management (IAM) stack, with a strong focus on engineering, automation, and AI‑driven optimization of identity services. This includes delivering and maintaining enterprise‑grade solutions across Privileged Access Management (PAM), Identity Governance and Administration (IGA), Public Key Infrastructure (PKI), Directory Services, Federation, and more.

This role requires a combination of strong technical skills, an automation‑first mindset, and the ability to work effectively with business stakeholders, infrastructure partners, and application teams.

Job Functions
  • Engineer, deploy, and maintain IAM tools across the enterprise including Cyber Ark, Ping DaVinci, Microsoft Entra

    ID (formerly Azure AD), Hashi Corp Vault, Digicert, and Saviynt.
  • Lead and support the implementation and enhancement of IAM services including:
    • SSO/Federation (SAML, OIDC, WS‑Fed)
    • MFA/Passwordless
    • Privileged Access Management (PAM)
    • Identity Governance (IGA)
    • PKI and certificate lifecycle automation
    • Directory services (AD, Entra

      ID)
  • Build automation scripts and integrations for IAM workflows using tools such as Power Shell, Python, or Terraform.
  • Design and implement access controls and policies that align with security and compliance standards (SOX, GDPR, etc.).
  • Evaluate and deploy AI‑powered tools and methodologies to improve identity lifecycle efficiency, risk detection, and operational decision‑making.
  • Participate in lifecycle management processes for accounts, credentials, roles, and policies across systems and applications.
  • Collaborate with Info Sec, Infrastructure, and App teams to ensure secure identity architecture for on‑prem and cloud environments.
  • Maintain high‑quality documentation and architectural diagrams.
  • Monitor and report metrics on IAM system performance, adoption, and audit readiness.
Job Requirements Essential Qualifications
  • 5+ years of hands‑on experience in IAM engineering roles
  • Deep technical expertise in one or more of the following:
    Cyber Ark, Ping Identity, Microsoft Entra

    ID, Saviynt, Hashi Corp Vault, Digicert, Onfido
  • Solid understanding of IAM protocols and standards: SAML, OIDC, OAuth2, LDAP, Kerberos, SCIM, JIT
  • Experience with automation tools and scripting (e.g., Power Shell, Python, Terraform)
  • Familiarity with cloud platforms (Azure, AWS, GCP) and IAM integrations
  • Strong understanding of IAM‑related compliance frameworks and controls (e.g., SOX, ISO 27001, NIST)
  • Proven ability to work independently and cross‑functionally in a global team
  • Strong troubleshooting, documentation, and communication skills
Desirable
  • Bachelor’s Degree in Computer Science, Engineering, or a related technical field
  • Professional certifications such as CISSP, Security+, Microsoft Certified:
    Identity and Access Administrator, Cyber Ark Defender, Ping Identity Certified Professional
  • Experience with AI/ML integration into IAM workflows or security analytics
  • Experience supporting IAM functions in media or entertainment industry environments
  • Experience working on a global team covering multiple timezones
Perks Playlist
  • Be part of an entrepreneurial, global organization that values authenticity, drive, creativity, relationships, and a competitive spirit
  • Comprehensive medical, dental, vision, and FSA options, including:
    • 100% coverage for out‑patient mental health services
    • Wellbeing reimbursements for fitness classes, spa treatments,…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search