IAM Engineer

IAM Engineer

Position Description

At CGI, we help clients strengthen their cyber resilience through secure, scalable identity and access management solutions that protect critical systems and enable business transformation. As an IAM Engineer, you will play a key role in delivering privileged access and identity governance capabilities across complex hybrid environments, helping organisations adopt modern security models while improving operational efficiency and compliance. Working alongside experienced cyber professionals, you’ll have the opportunity to shape secure access strategies, contribute innovative ideas, and take ownership of high‑impact solutions using leading technologies including Cyber Ark, Microsoft Entra, and cloud‑based IAM platforms.

Due to the secure nature of the programme, you will need to hold UK Security Clearance or be eligible to go through this clearance. This is a hybrid position.

• Design, implement, support privileged access and identity governance solutions to strengthen security across enterprise environments.
• Work closely with security architects, infrastructure teams, and business stakeholders to deliver secure, scalable IAM capabilities that align with organisational and regulatory requirements.
• Leverage expertise in Cyber Ark and Microsoft Entra to modernise access controls, improve identity lifecycle management, and support Zero Trust security initiatives.
• Deliver innovative IAM solutions across hybrid and cloud environments, taking ownership of technical integrations, automation, and continuous improvement activities.
• Design & deliver secure privileged access management solutions using Cyber Ark PAS, EPV, PSM, and Privileged Cloud.
• Integrate and enhance IAM capabilities across enterprise platforms and cloud services.
• Support and optimise Microsoft Entra services including SSO, Conditional Access, and PIM.
• Develop and automate IAM workflows and integrations using Power Shell and APIs.
• Improve and govern identity lifecycle processes including Joiner/Mover/Leaver workflows and access certifications.
• Collaborate and advise on security architecture and modern access management strategies.
• Contribute and innovate within Zero Trust and cloud security transformation initiatives.
• Monitor and resolve IAM-related issues, ensuring secure and reliable service delivery.

• Strong hands‑on experience with Cyber Ark PAS, EPV, and PSM.
• Proven experience with Cyber Ark Privileged Cloud including SIA and SCA.
• Cyber Ark Certified Delivery Engineer (CDE) certification.
• Strong understanding of IAM principles including RBAC, least privilege, and JML processes.
• Experience integrating Cyber Ark with enterprise systems and applications.
• Expertise in security architecture and IAM solution design within complex environments.
• Strong experience with Microsoft Entra (Azure AD), including SSO, Conditional Access, and PIM.
• Experience with IGA platforms such as SailPoint or Saviynt.
• Strong scripting and automation capability using Power Shell and APIs.

• Knowledge of Zero Trust and modern access management models.
• Experience across cloud platforms including Azure, AWS, and GCP.
• Broader cyber security certifications such as CISSP or CCSP.

Competitive salary, excellent pension, private healthcare, plus a share scheme (3.5% + 3.5% matching) which makes you a CGI Partner not just an employee.