Job Description
Company: frontendnode-production.up.railway.app
About arenaflex – Pioneering Secure Retail Innovation
arenaflex is a global technology leader that powers the world’s largest retail ecosystem. With a relentless focus on innovation, data‑driven decision making, and customer‑centric security, arenaflex delivers the digital backbone that keeps millions of shoppers safe and satisfied every day. Our mission is to create a secure, seamless shopping experience while enabling rapid business growth through cutting‑edge technology. As part of arenaflex’s expanding security portfolio, we are building a world‑class Identity & Access Management (IAM) team that safeguards critical data, protects customer privacy, and drives compliance across a multi‑cloud environment.
Why This Role Matters
In today’s hyper‑connected retail landscape, identity is the new perimeter. The Senior IAM Engineer you will become is the architect of secure provisioning, access certification, and lifecycle management for millions of users—employees, partners, and customers alike. Your work will directly influence arenaflex’s ability to prevent fraud, mitigate cyber‑risk, and support rapid cloud transformation. If you thrive on solving complex security challenges, love designing scalable automation, and want to see the impact of your code on a global audience, this is the opportunity for you.
Role Overview
As a Senior IAM Engineer at arenaflex, you will lead the design, development, and deployment of custom identity workflows, integration packages, and security controls within the arenaflex IdentityIQ (IIQ) platform. You will collaborate with cross‑functional software, platform, and security teams to deliver robust, compliant, and highly available IAM solutions that align with business objectives and industry best practices.
Key Responsibilities
• Design, build, and launch custom provisioning workflows for Joiner, Mover, and Leaver (JML) processes, ensuring seamless onboarding and off‑boarding across cloud and on‑premise applications.
• Develop and maintain correlation rules, access certification campaigns, and role‑based access control (RBAC) models that meet regulatory and internal compliance standards.
• Integrate external SaaS and legacy systems using REST, SCIM, SOAP, and custom Web Services connectors, extending the arenaflex IIQ platform to support a diverse application portfolio.
• Lead installation, configuration, and troubleshooting of IAM solutions in enterprise‑scale environments, providing tier‑2 support for production incidents.
• Collaborate with security operations, risk, and audit teams to define and enforce identity governance policies, including segregation of duties (SoD) and privileged access management.
• Drive continuous improvement by automating manual processes, optimizing performance, and implementing best‑in‑class IAM practices.
• Mentor junior engineers and act as a technical subject‑matter expert for identity governance across the organization.
• Participate in release management cycles, ensuring smooth deployment of new features, patches, and security updates.
• Document architecture, design decisions, and operational procedures to maintain knowledge continuity and support audit readiness.
Essential Qualifications
• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field (or equivalent practical experience).
• Minimum 3 years of hands‑on experience implementing IAM solutions in large‑scale, enterprise environments, preferably within retail or data‑driven organizations.
• Demonstrated expertise with arenaflex IdentityIQ (or comparable IAM platforms) including workflow development, provisioning, and certification.
• Strong knowledge of identity concepts such as authentication, authorization, RBAC, role mining, access aggregation, and federation.
• Proficiency in Java, JavaScript, XML, DSML, and scripting languages for custom connector development.
• Experience with RESTful APIs, SCIM, SOAP, and Web Services integration patterns.
• Solid understanding of Linux/Unix administration, Tomcat, Oracle, and SQL Server environments.
• Excellent problem‑solving mindset, strong communication skills, and the ability to work collaboratively across distributed teams.
Preferred Qualifications
• Professional certifications such as Certified Identity and Access Manager (CIAM), Certified Information Systems Security Professional (CISSP), or similar.
• Hands‑on experience with cloud platforms (AWS, Azure, GCP) and cloud‑native IAM services.
• Familiarity with DevOps practices, CI/CD pipelines, and automated testing framew
Source: Frontendnode-Production.up.railway.app – Railway