Security Engineer - IAM

Job Role : Security Engineer – IAM

Experience : 3- 6 years

About Netradyne

Netradyne is a leader in cutting-edge AI-powered safety and fleet management technology. We strive to enhance driver safety, operational efficiency, and overall user experience. As an innovative and rapidly growing company, we are committed to securing a connected future for the transportation industry through technological advancements.

Role Overview

We are seeking an experienced Security Engineer with a strong focus on Identity and Access Management (IAM) along with Cloud Security. This role offers the opportunity to design, implement, and manage enterprise-level IAM solutions across Microsoft and AWS environments. You will work with cutting-edge IAM technologies including Microsoft Entra ID (formerly Azure AD), AWS IAM, and Privileged Access Management (PAM) solutions. We welcome applicants with 3-5 years of IAM experience, and we are open to considering senior-level candidates with broader security expertise.

Key Responsibilities

• Design, implement, and maintain identity governance frameworks using Microsoft Entra ID, including user provisioning, authentication policies, and conditional access strategies
• Strong understanding of cloud security concepts including cloud architecture security, shared responsibility models, and cloud-native security best practices
• Manage AWS IAM policies, roles, and user provisioning across multiple AWS accounts, ensuring least privilege access principles
• Implement and maintain Privileged Access Management (PAM) solutions to monitor, control, and audit privileged user activities
• Configure and manage multi-factor authentication (MFA), single sign-on (SSO), and federation mechanisms across hybrid environments
• Conduct security audits and access reviews to ensure compliance with regulatory standards and internal security policies
• Integrate IAM solutions with enterprise applications and SaaS platforms
• Develop and maintain IAM documentation, runbooks, and disaster recovery procedures
• Manage identity and access controls for AI agents, including Copilot Studio agents and automated workflows
• Implement security frameworks for Model Context Protocol (MCP) integrations and agent-to-service authentication
• Design and implement granular access controls for AI agents, including scope limitations, token management, and service principal governance
• Design and maintain Role-Based Access Control (RBAC) models across enterprise applications, ensuring appropriate permission hierarchies and least privilege principles
• Build and automate access provisioning and deprovisioning workflows using identity governance tools, reducing manual errors and improving compliance
• Implement lifecycle management and access certification processes for both human and non-human identities
• Respond to security incidents related to identity compromise and unauthorized access

Required Qualifications

• 3-5 years of hands-on experience with IAM technologies and solutions
• Demonstrated expertise in Microsoft Entra ID, including administration and configuration
• Solid understanding of AWS IAM including identity federation, cross-account access, and policy management
• Experience with at least one PAM solution (Delinea Secret Server, BeyondTrust, CyberArk, or similar)
• Strong understanding of authentication and authorization protocols (OAuth, SAML, LDAP, Kerberos)
• Knowledge of compliance frameworks (Zero Trust, NIST, SOC 2, ISO 27001)
• Excellent communication and documentation skills

Preferred Qualifications

• 3+ years of IAM experience or senior-level security background
• Microsoft Certified: Identity and Access Administrator Associate (SC-300) or similar certification
• Experience designing and securing AI agent architectures and autonomous workflows
• Hands-on experience with Copilot Studio and Copilot agents security configurations
• Knowledge of Model Context Protocol (MCP) and agent-to-service authentication patterns
• Experience designing and implementing RBAC models across complex application ecosystems
• Expertise in automating access provisioning and deprovisioning workflows using platforms like Okta, ServiceNow, or Microsoft Identity Manager
• Experience implementing access controls specifically for AI agents, service principals, and automated workflows
• Knowledge of identity governance and lifecycle management (ILM) solutions
• Experience with multiple cloud providers (Azure, AWS, GCP)
• Experience implementing Zero Trust security architecture
• Familiarity with scripting languages (PowerShell, Python, Bash) for automation
• Experience with identity-first security incident response

 

Key Technical Skills

Category

Technologies & Skills

Microsoft

Entra ID (Azure AD), Active Directory, Microsoft 365, Azure, Graph API

AWS

IAM, AWS SSO, Cognito, AWS Organizations, STS, CloudTrail

PAM Solutions

CyberArk, BeyondTrust, Delinea Secret Server, HashiCorp Vault

Protocols

OAuth 2.0, SAML, LDAP, Kerberos, OpenID Connect

Scripting

PowerShell, Python, Bash, REST APIs

AI & Agents

Copilot Studio, AI Agents, Model Context Protocol (MCP), Agent authentication, Agentic workflows

RBAC & Governance

Role design, Application RBAC, Access certification, Identity lifecycle management, Segregation of duties

Provisioning & Automation

Okta, ServiceNow, Microsoft Identity Manager, Automated workflows, Deprovisioning automation, System integration