Job Description

This is an excellent opportunity for an Identity & Access Management (IAM) Engineer to automate and secure cloud identity and access for South Africa's top financial group.
Based in Cape Town (hybrid), this Identity & Access Management (IAM) Engineer role is paying R700K PA.
THE COMPANY:
One of SA's biggest financial services & investment managers that offers client-focused investment solutions to individuals, intermediaries, and larger institutional investors alike. Being client-centric requires adaptability and dynamism of IT processes and solutions, they require IT Resources who can take initiative and drive deliverables in a high-pressure setting.
They are dedicated to empowering clients with the tools needed for lifetime of financial wellness, this financial services company has been the industry leader for over 100 years.
THE ROLE:
As Identity & Access Management (IAM) Engineer, you'll play a crucial role in securing and modernising the identity and privileged access architecture of one of South Africa's largest financial services and investment groups.
You'll design, implement, and maintain platforms such as Entra ID (Azure AD) and BeyondTrust PAM, ensuring authentication, federation, and privileged access operate securely, efficiently, and in line with enterprise compliance standards. Through automation with PowerShell, Python, and Terraform, you'll streamline how access is provisioned, governed, and audited across Azure, AWS, and on-prem environments reducing complexity and improving control at enterprise scale.
Collaborating with IAM, Security Architecture, and Cloud Platform teams, you'll deliver authentication and access management as a service, integrating SSO, MFA, and federation standards (SAML, OAuth, OpenID Connect) to provide secure, consistent access for thousands of users and systems across the organisation.
THE REQUIREMENTS:
4+ years' experience in Identity & Access Management or Privileged Access Engineering within enterprise environments.
Cloud certification (AWS preferred; Azure beneficial) with strong understanding of IAM, automation, and security controls.
Experience designing and supporting directory and access solutions across Active Directory, Entra ID, Entra Connect, and BeyondTrust PAM.
Skilled in authentication and federation technologies including SSO, MFA, SAML, OAuth, and OpenID Connect.
Proficient in automation and Infrastructure-as-Code, using PowerShell, Python, and Terraform.
Solid understanding of RBAC, least privilege, and hybrid integrations across Azure, AWS, and on-prem systems.

Skills Required