Identity and Access Management (IAM) Engineer at Mirion Technologies

Mirion is seeking a motivated and experienced Identity and Access Management (IAM) Engineer to lead the development and implementation of a comprehensive IAM program. This role reports directly to the Chief Information Security Officer and will play a pivotal role in securing Mirion’s digital identity infrastructure across the enterprise. This position is fully remote, reporting to the office of the Chief Information Security Officer.

Key Responsibilities 

• Develop Mirion’s enterprise-wide IAM program, including tooling, policies, standards, and procedures.
• Perform analysis of alternatives (AoA) for IAM-related tools and technologies, including vendor evaluations and proof-of-concept testing.
• Deploy and manage Privileged Access Management (PAM) solutions to secure administrative access.
• Deploy and manage Identity Governance and Administration (IGA) capabilities to ensure compliance, visibility, and lifecycle automation.
• Implement and maintain PKI and strong authentication mechanisms (e.g., MFA, certificates).
• Oversee account lifecycle management, including provisioning, de-provisioning, and access reviews.
• Design and implement RBAC models aligned with business functions and least privilege principles.
• Collaborate with IT, HR, and business to integrate IAM processes with enterprise applications and workflows.
• Establish monitoring plans for IAM system, performance, availability, and security.
• Maintain documentation and provide training to stakeholders on IAM processes and tools.

Required Qualifications and Experience 

• Bachelor’s degree in information technology, information security, or related field or equivalent practical experience.
• Experience: 8+ years in a cybersecurity-focused role, with significant exposure to identity and access management engineering and operations.
• Strong communications skills and a collaborative working style.
• Familiarity with cybersecurity frameworks such as ISO 27001, NIST 800-171, SOC 2, and Cyber Essentials.
• Familiarity with cyber industry regulations such as GDRP, NIS2, and CRA.
• Expert level understanding of cybersecurity concepts and best practices.

Desired Qualifications and Experience 

• Experience with Active Directory, Azure Active Directory and EntraID.
• Experience with federation protocols such as SAML, OAuth, and OIDC.
• Experience with the deployment and maintenance process for multiple types of authenticators.
• Experience with automation of account lifecycle management functions,
• Experience with Public Key Infrastructure including device certificates, user certificates and code signing.
• Experience in developing role-based access control models.