Identity and Access Management (IAM) Engineer at Mirion Technologies
Mirion Technologies · Atlanta, United States Of America · Remote
- Senior
Mirion is seeking a motivated and experienced Identity and Access Management (IAM) Engineer to lead the development and implementation of a comprehensive IAM program. This role reports directly to the Chief Information Security Officer and will play a pivotal role in securing Mirion’s digital identity infrastructure across the enterprise. This position is fully remote, reporting to the office of the Chief Information Security Officer.
Key Responsibilities
- Develop Mirion’s enterprise-wide IAM program, including tooling, policies, standards, and procedures.
- Perform analysis of alternatives (AoA) for IAM-related tools and technologies, including vendor evaluations and proof-of-concept testing.
- Deploy and manage Privileged Access Management (PAM) solutions to secure administrative access.
- Deploy and manage Identity Governance and Administration (IGA) capabilities to ensure compliance, visibility, and lifecycle automation.
- Implement and maintain PKI and strong authentication mechanisms (e.g., MFA, certificates).
- Oversee account lifecycle management, including provisioning, de-provisioning, and access reviews.
- Design and implement RBAC models aligned with business functions and least privilege principles.
- Collaborate with IT, HR, and business to integrate IAM processes with enterprise applications and workflows.
- Establish monitoring plans for IAM system, performance, availability, and security.
- Maintain documentation and provide training to stakeholders on IAM processes and tools.
Required Qualifications and Experience
- Bachelor’s degree in information technology, information security, or related field or equivalent practical experience.
- Experience: 8+ years in a cybersecurity-focused role, with significant exposure to identity and access management engineering and operations.
- Strong communications skills and a collaborative working style.
- Familiarity with cybersecurity frameworks such as ISO 27001, NIST 800-171, SOC 2, and Cyber Essentials.
- Familiarity with cyber industry regulations such as GDRP, NIS2, and CRA.
- Expert level understanding of cybersecurity concepts and best practices.
Desired Qualifications and Experience
- Experience with Active Directory, Azure Active Directory and EntraID.
- Experience with federation protocols such as SAML, OAuth, and OIDC.
- Experience with the deployment and maintenance process for multiple types of authenticators.
- Experience with automation of account lifecycle management functions,
- Experience with Public Key Infrastructure including device certificates, user certificates and code signing.
- Experience in developing role-based access control models.