Identity & PAM Security Engineer

About the role This team is responsible for the security, stability, and scalability of the company's software systems and infrastructure. We monitor system performance, identify and mitigate risks, and ensure our platforms remain secure, resilient, and capable of supporting continued growth. As an Identity & PAM Security Engineer, you will be responsible for designing, implementing, and managing identity security controls across the enterprise. Your focus will include privileged access management, identity governance, service account security, and conditional access controls. Working closely with Security, Infrastructure, and Engineering teams, you will help ensure that access to critical systems and resources is secure, appropriately governed, and aligned with least-privilege principles. What you'll be doing Manage privileged access controls, including Privileged Identity Management (PIM), just-in-time (JIT) access, approval workflows, and privileged role assignments. Define and maintain administrative access processes for high-risk roles, privileged sessions, and break-glass accounts. Lead and support access review processes, track remediation activities, and ensure access rights remain aligned with least-privilege principles. Manage the lifecycle of service and machine accounts, including ownership, permissions, credential rotation, monitoring, and decommissioning. Configur