Descripción de la oferta
Identity and Access Management Engineer
Location: Sant Just Desvern, Barcelona (ES), Spain (08960)
Requisition Number: 46142
Overview
The Identity and Access Management Engineer is part of the broader Bunge Global Identity and Access Management (IAM) team. You will be responsible for configuring, operating, and troubleshooting Bunge’s Identity Governance & Administration (IGA) solution to ensure secure, compliant, and efficient user access management across the enterprise. As a Subject Matter Expert (SME) in IGA, you will influence IAM design decisions and governance models. This position offers technical challenges and a dynamic environment for collaboration with diverse stakeholders across cybersecurity functions as well as with other business units, and continuous learning within a leading global organization.
Key Responsibilities
Manage IGA Platform:
Administer and enhance Bunge’s IGA platform.
Configure and maintain joiner–mover–leaver (JML) lifecycle processes, access request workflows, approval processes, access certification campaigns, role models (RBAC/ABAC) and Segregation of Duties (SoD) policies.
Analyze and optimize role mining activities.
Develop reports and dashboards to identify and track exceptions and KPIs.
Lead Application Integration:
Work with application owners to onboard applications into the IGA platform via APIs, connectors, and custom scripts.
Automate provisioning, deprovisioning, and review processes using IGA workflows.
Provide Operational Support:
Provide L2/L3 support for IGA platform-related issues.
Troubleshoot IGA platform issues such as provisioning, certification, and integration.
Collaborate with Stakeholders: Work effectively with Business Technology (BT) teams (Cybersecurity, IT Operations, Application Development) and HR to facilitate seamless IAM governance.
Drive Continuous Improvement: Contribute to the ongoing enhancement of Bunge's IAM program, processes, tools, and policies, influencing operational effectiveness.
AI for IAM: Identify and pilot opportunities for leveraging Artificial Intelligence within the scope of IAM.
Support and Mentorship: Provide technical leadership and mentorship to other IAM colleagues.
Support Audit and Compliance Efforts: Collaborate with internal and external auditors by providing requested information, explaining IAM processes, and assisting with issue validation.
Education, Experience and Certifications
10+ years in the IT field, with a minimum of 6 years in Identity and Access Management or cybersecurity-related functions.
Bachelor of Science degree in Computer Science, Information Systems, Engineering, or Programming.
Experience with IGA platforms such as SailPoint ISC (preferred) and/or other security-related certifications (e.g., CISSP, CISM, CIAM) is a plus.
In-depth knowledge of IAM concepts, technologies, and best practices such as identity lifecycle management, access certifications, role-based access control, and privileged access management.
Proficiency in configuring, managing, and troubleshooting IGA platforms (for example, SailPoint ISC/IQ, Saviynt, One Identity Manager).
Proficiency in integrating business applications (cloud vs. on-premises, market vs. internally developed) with IGA platforms using connectors, REST or SOAP APIs, web services, SCIM, or JDBC.
Experience with other IAM, security, or IT Service Management platforms (e.g., ServiceNow) is a plus.
Proficiency in scripting and coding languages such as PowerShell and JSON.
Working knowledge of cloud security principles and IAM integration with cloud platforms (Azure, AWS).
Strong understanding of security frameworks, compliance standards (SOX, NIST Cybersecurity Framework, GDPR, ISO 27001), and regulatory requirements impacting IAM.
Ability to collaborate effectively with stakeholders outside the IAM team, such as BT teams or business (HR, Audit).
Strong analytical, critical thinking, and problem‑solving skills with the ability to assess complex IAM and compliance challenges and design scalable solutions.
Excellent written and verbal communication skills, with the ability to articulate technical concepts clearly and concisely.
Ability to work independently with limited supervision in a fast‑paced, dynamic environment.
#J-18808-Ljbffr