Senior Security Engineer (IAM)

Company: Blue Yonder
Company: Blue Yonder
Location: Monterrey
Commitment: Full time
Posted on: 2025-10-22 05:01
Location: Monterrey, MexicoRole: Sr. Security Engineer, IAMBlue Yonder Job Profile: Sr. Security EngineerOverview:Blue Yonder is a global leader in digital supply chain transformation, empowering the world’s most recognized brands with AI-driven platforms and end-to-end visibility. As we continue strengthening our global security posture, we are investing heavily in modern identity-first defense strategies—and this role will play a key part in that mission.We are seeking a Senior Security Engineer, Identity & Access Management (IAM) who will drive our enterprise Identity Governance and Administration (IGA) program and influence identity strategy across the organization. In this role, you will architect and engineer secure identity solutions that scale, reduce risk, and support business agility across hybrid and multi-cloud environments. You will work hands-on with leading IGA and IAM technologies—shaping identity lifecycle management, modern access control models, and governance workflows that protect users, applications, and data globally.This is a high-impact opportunity for someone who enjoys building, automating, and improving IAM capabilities at scale. You will collaborate across security, engineering, cloud, and application teams to standardize identity integrations, enforce policy, advance Zero Trust principles, and help mature identity security as a cornerstone of Blue Yonder’s cybersecurity strategy.What You’ll Be Doing:Design, implement, and maintain Identity Governance and Administration (IGA) solutions, including user lifecycle management, access certification workflows, and automated provisioning/deprovisioning processesSupport mentorship of more junior team members and upleveling the overall technical skill of the identity and access management teamIdentify strategic gaps in identity governance capabilities, analyzing current state and recommending improvements to IAM roadmaps and organizational identity strategyCollaborate with cross-functional teams to integrate IAM best practices into application development, cloud deployments, and system architecture, ensuring secure identity integration across environmentsDevelop and maintain IAM automation tools for identity lifecycle management, access reviews, policy enforcement, and continuous identity risk assessmentMonitor and remediate identity-related vulnerabilities, excessive privileges, and policy violations from IGA platforms, identity scanners, and access analytics toolsStay current with emerging IAM technologies, identity standards (SAML, OAuth, OIDC), and governance frameworks, influencing organizational identity architecture with industry best practicesSupport the detection, investigation, and resolution of identity-related security incidents, including compromised accounts and unauthorized access eventsConfigure and optimize identity management platforms, directory services, privileged access management solutions, and identity analytics toolsSupport compliance efforts (SOX, PCI-DSS, ISO 27001, SOC 2) by implementing identity controls, access governance reporting, and audit capabilities for regulatory requirementsDocument IAM policies, identity governance processes, access standards, and identity architecture diagramsSecurity Tech Stack/Tools:Cloud & Identity PlatformsAzure AD / Entra ID, AWS IAM, GCP IAM, Oracle IAMFederation & SSO: SAML, OAuth, OIDC, SCIMIGA / IAM / PAM: Saviynt, Delinea,Security & MonitoringSIEM/EDR/XDR (Splunk, Sentinel, CrowdStrike, etc.)Identity threat analytics and access risk toolingAutomation & Dev IntegrationPowerShell, Python, REST / SCIM / Graph / SOAP APIsCI/CD & automated identity workflows (provisioning, access certs, lifecycle)Architecture & GovernanceRBAC / ABAC, SoD, Zero Trust, MFA, Conditional Access, Access CertificationWhat We Are Looking For:Required Skills:5+ years of experience in Identity and Access Management, Security Engineering, or IAM-focused technical roles with hands-on IGA platform experienceExpert knowledge of Identity Governance and Administration platforms (e.g., SailPoint, Saviynt, Oracle IGM, Microsoft Identity Manager) and their implementation across enterprise environmentsDeep understanding of IAM fundamentals including identity lifecycle management, access certification, role-based access control (RBAC), attribute-based access control (ABAC), and segregation of duties (SoD) enforcementStrong experience with cloud IAM services across AWS, Azure, and GCP, including identity federation, directory integration, and cross-platform identity governanceProficient with identity-related scripting and automation (e.g., PowerShell, Python, REST APIs) for IGA workflows, identity connectors, and access provisioning processesExperience implementing IAM solutions in fast-paced or highly regulated environments (finance, healthcare, SaaS, etc.) with demonstrated ability to manage complex identity governance requirements and regulatory compliance at enterprise scale.Preferred Skills:Hands-on experience with any of the following:Saviynt IGA PlatformIAM Lifecycle AutomationAPI Integrations (REST, SOAP, GraphQL, Webhooks)AI-integrated workflowsExperience leading organization wide initiatives and driving security outcomes that empower business goals.#LI-MH1Our ValuesIf you want to know the heart of a company, take a look at their values. Ours unite us. They are what drive our success – and the success of our customers. Does your heart beat like ours? Find out here: Core ValuesAll qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status.
View Original Job Posting