IT IAM Engineer

About the role

We are looking for an experienced Identity and Access Management (IAM) Engineer with a strong focus on Microsoft identity technologies to contribute to the design, implementation, and continuous improvement of our identity landscape. In this role, you will build and operate secure, scalable, and well-governed identity and access solutions across cloud and on-premises environments. You will act as a technical expert and trusted advisor for internal stakeholders, enabling secure collaboration, enforcing access governance, and ensuring that identity remains a strong foundation of trust across the organisation. You actively contribute to the evolution, automation, and governance of IAM capabilities, ensuring alignment with security principles, business requirements, and compliance standards. How you'll make an impact You design, implement, and operate identity and access management solutions across Microsoft Entra ID and Active Directory in a hybrid environment. You contribute to identity lifecycle management (Joiner-Mover-Leaver), ensuring accurate, automated, and auditable provisioning and deprovisioning processes. You implement and maintain authentication and access control mechanisms such as Single Sign-On, Multi-Factor Authentication, Conditional Access, and workload identity authentication. You design and manage authorisation models based on role-based and attribute-driven principles (RBAC/ABAC), leveraging group-based access control to ensure least privilege and effective access governance. You support Privileged Identity Management (PIM) and just-in-time access concepts to reduce standing privileges and strengthen security. You contribute to the automation of IAM processes using PowerShell, Microsoft Graph API, or similar technologies, improving efficiency, consistency, and scalability. You contribute to identity governance practices such as access reviews, lifecycle policies, and compliance controls. You ensure stable IAM operations and provide 2nd and 3rd level support for identity-related services and integrations. You collaborate with People & Culture, security, and internal IT teams to integrate and continuously improve identity processes within the broader IT landscape. You contribute to the continuous improvement of IAM architecture, standards, and processes, aligning with principles such as Zero Trust and identity-centric security. What's important to us You have several years of experience in Identity and Access Management or a closely related field. You have hands-on experience with Microsoft identity technologies, especially Microsoft Entra ID and Active Directory in hybrid environments. You understand core IAM concepts such as identity lifecycle management (Joiner-Mover-Leaver), authentication, access control, and authorisation. You are familiar with authentication technologies and standards such as Single Sign-On, Multi-Factor Authentication, and modern identity protocols (e.g. SAML, OAuth2, OpenID Connect). You have a solid understanding of access control models and governance principles, including least privilege, role-based access, and access reviews. Experience with identity lifecycle integrations (e.g. HR systems, SCIM provisioning, or directory synchronisation) is a plus. Experience in automating IAM processes using PowerShell, Microsoft Graph API, or similar technologies is considered a plus. You understand security and compliance principles in the context of identity (e.g. Zero Trust, auditability, data protection). You work in a structured, reliable, and solution-oriented way, with a strong sense of accountability for your work. You are team-oriented and value collaboration, knowledge sharing, and joint problem-solving You bring analytical thinking and can clearly explain complex technical topics to different stakeholders. You communicate openly and effectively with stakeholders and team members, aligning on solutions and delivering results together. Fluent in English If you feel you don't meet all the requirements, we are still happy to get to know you, learn more about your ambitions and idea

Benefits

Additional Information

Founded in Switzerland in 1968, Zühlke is owned by its partners and located across Europe and Asia. We are a global transformation partner, with engineering and innovation in our DNA. We're trusted to help clients envision and build their businesses for the future - to run smarter today while adapting for tomorrow's markets, customers, and communities. Our multidisciplinary teams specialise in tech strategy and business innovation, digital solutions and applications, and device and systems engineering. We excel in complex, regulated spaces including health and finance, connecting strategy, tech implementation, and operational services to help clients become more effective, resilient businesses. If you share our values and want to do the best work, for the right reasons, we can offer you the chance to do it on a global scale and play a real role in shaping our exciting journey.

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at zuehlke? Share your experience