Senior IAM Engineer

Senior IAM Engineer

Fynity is supporting a rapidly scaling SaaS company headquartered in Barcelona in the search for a technically adept and security-minded Senior IAM Engineer.       

This is a key technical role with end-to-end ownership of identity and access management platforms in a fast-scaling environment.

You will design, implement, and optimise identity and access management solutions, drive automation and ensure operational excellence, whilst also mentoring others in the team.

Working closely with Security, Compliance, Product, Support, Procurement and Legal, you will balance user experience, risk and cost while maintaining robust security standards.

Fluency in English and Spanish is essential.

Key responsibilities include:

Azure and Microsoft Entra ID

Administration of Azure Resource Groups, policies, tagging and cost management frameworks
Ownership of least privilege standards and RBAC models
Management of Entra ID including Conditional Access, PIM, dynamic groups, roles, access reviews and licence optimisation
Implementation of SSO using SAML and OIDC, MFA enforcement and security baselines
Definition of hardening standards and compliance controlsIdentity and Access Management

End-to-end management of the joiner, mover and leaver lifecycle using SCIM provisioning and deprovisioning
Development and maintenance of API and GraphQL integrations for identity workflows and auditability
Continuous improvement of identity governance processesGoogle Workspace

Administration of organisational units, groups and security controls
Management of DLP, Vault and SSO configurations
Alignment and synchronisation of identity attributes with Entra ID and SCIM where appropriateReliability and Automation

Implementation of monitoring, logging, alerting, backup and disaster recovery processes
Driving automation using scripting languages such as PowerShell, Bash or Python
Use of Infrastructure as Code tools such as Terraform and Git where appropriate
Clear documentation of systems, standards and processes 

To be considered for this exciting Senior IAM Engineer role, you will need:

Strong experience in administering corporate platforms, with at least 3 years focused on IAM and cloud environments
Deep expertise in Azure and Microsoft Entra ID, including Conditional Access, PIM and RBAC
Strong IAM knowledge, including SCIM, SSO, SAML, OIDC, APIs and GraphQL
Experience administering Google Workspace including security, directory services, DLP and SSO
Strong understanding of licensing models and operational optimisation
A track record of ownership, sound judgement and the ability to prioritise effectively
Strong communication skills with experience mentoring and upskilling colleagues 

Desirable skills:

Experience with Jamf, Intune or other MDM platforms
Knowledge of security and compliance frameworks such as ISO 27001, SOC 2 and GDPR
Experience in high-growth or scaling environments 

The engineering team operates a hybrid model, working on site in the modern Barcelona office 4 days per week to collaborate and align, with 1 day remote to support focused delivery.

On offer is an excellent package, including:

Salary between €50,000 and €65,000, depending on knowledge and technical capability
Private health insurance
Wellbeing and fitness support
Flexible benefits platform
Ongoing learning and development
Collaborative, international working environment with strong growth potential 

This is an opportunity to shape and mature identity and infrastructure practices within a scaling technology business, with genuine ownership and impact.  If you are looking for the next step in your IAM career, then apply now!

If you are interested please apply ASAP. The People Network is an employment agency and will respond to all applicants within three - five working days. If you do not hear within these timescales please feel free to get in touch