IT Engineer

Thiruvarur, Tamil Nadu (Onsite) Function: Security Engineering / Platform (Identity & Access Management) Why this role matters We’re working on a secure, multi-tenant SaaS platform and need a hands-on IAM engineer to own the end-to-end identity lifecycle and authorization model—down to table/row/column-level policies. Design, develop, and standardize identity lifecycle workflows for employee and service accounts (JML, break-glass, access reviews). Configure and maintain automated workflows for provisioning, de-provisioning, and access changes using IdP workflows and APIs to eliminate manual effort and reduce MTTR. partner with stakeholders to set/enforce policy. Engineer data-layer RBAC: Design and enforce fine-grained authorization at the schema/table/column/row level (e.g., Implement policy-as-code (e.g., Keep clear runbooks, diagrams, and standards for core applications, policies, and processes. Establish IAM policies and guardrails that foster a least-privilege culture across engineering, IT, and business teams. Have subject-matter expertise in IdP implementation, JML automation , and integrating SaaS apps using APIs, SCIM, OIDC/SAML . Have led or played a key role in large-scale access-controls/RBAC deployments with cross-functional change management. Identity: Okta (or similar IdP), Okta Workflows, Lifecycle/JML, adaptive MFA, SCIM directories, groups & claims mapping. AuthZ (product & data): RBAC/ABAC design; PostgreSQL GRANTs & Row-Level Security ; Snowflake/Trino/ClickHouse RBAC a plus. Scripting ( Python/Go/Bash ), Terraform (incl. Okta/AWS providers), CI/CD, GitOps for policy changes. APIs & Integrations: REST/JSON, webhooks, SCIM servers/clients, service