Security Engineer - IAM
Job Role : Security Engineer - IAM
Experience : 3- 6 years
About Netradyne
Netradyne is a leader in cutting-edge AI-powered safety and fleet management technology. We strive to enhance driver safety, operational efficiency, and overall user experience. As an innovative and rapidly growing company, we are committed to securing a connected future for the transportation industry through technological advancements.
Role Overview
We are seeking an experienced Security Engineer with a strong focus on Identity and Access Management (IAM) along with Cloud Security. This role offers the opportunity to design, implement, and manage enterprise-level IAM solutions across Microsoft and AWS environments. You will work with cutting-edge IAM technologies including Microsoft Entra ID (formerly Azure AD), AWS IAM, and Privileged Access Management (PAM) solutions. We welcome applicants with 3-5 years of IAM experience, and we are open to considering senior-level candidates with broader security expertise.
Key Responsibilities
- Design, implement, and maintain identity governance frameworks using Microsoft Entra ID, including user provisioning, authentication policies, and conditional access strategies
- Strong understanding of cloud security concepts including cloud architecture security, shared responsibility models, and cloud-native security best practices
- Manage AWS IAM policies, roles, and user provisioning across multiple AWS accounts, ensuring least privilege access principles
- Implement and maintain Privileged Access Management (PAM) solutions to monitor, control, and audit privileged user activities
- Configure and manage multi-factor authentication (MFA), single sign-on (SSO), and federation mechanisms across hybrid environments
- Conduct security audits and access reviews to ensure compliance with regulatory standards and internal security policies
- Integrate IAM solutions with enterprise applications and SaaS platforms
- Develop and maintain IAM documentation, runbooks, and disaster recovery procedures
- Manage identity and access controls for AI agents, including Copilot Studio agents and automated workflows
- Implement security frameworks for Model Context Protocol (MCP) integrations and agent-to-service authentication
- Design and implement granular access controls for AI agents, including scope limitations, token management, and service principal governance
- Design and maintain Role-Based Access Control (RBAC) models across enterprise applications, ensuring appropriate permission hierarchies and least privilege principles
- Build and automate access provisioning and deprovisioning workflows using identity governance tools, reducing manual errors and improving compliance
- Implement lifecycle management and access certification processes for both human and non-human identities
- Respond to security incidents related to identity compromise and unauthorized access
Required Qualifications
- 3-5 years of hands-on experience with IAM technologies and solutions
- Demonstrated expertise in Microsoft Entra ID, including administration and configuration
- Solid understanding of AWS IAM including identity federation, cross-account access, and policy management
- Experience with at least one PAM solution (Delinea Secret Server, BeyondTrust, CyberArk, or similar)
- Strong understanding of authentication and authorization protocols (OAuth, SAML, LDAP, Kerberos)
- Knowledge of compliance frameworks (Zero Trust, NIST, SOC 2, ISO 27001)
- Excellent communication and documentation skills
Preferred Qualifications
- 3+ years of IAM experience or senior-level security background
- Microsoft Certified: Identity and Access Administrator Associate (SC-300) or similar certification
- Experience designing and securing AI agent architectures and autonomous workflows
- Hands-on experience with Copilot Studio and Copilot agents security configurations
- Knowledge of Model Context Protocol (MCP) and agent-to-service authentication patterns
- Experience designing and implementing RBAC models across complex application ecosystems
- Expertise in automating access provisioning and deprovisioning workflows using platforms like Okta, ServiceNow, or Microsoft Identity Manager
- Experience implementing access controls specifically for AI agents, service principals, and automated workflows
- Knowledge of identity governance and lifecycle management (ILM) solutions
- Experience with multiple cloud providers (Azure, AWS, GCP)
- Experience implementing Zero Trust security architecture
- Familiarity with scripting languages (PowerShell, Python, Bash) for automation
- Experience with identity-first security incident response
Key Technical Skills
Category |
Technologies & Skills |
Microsoft |
Entra ID (Azure AD), Active Directory, Microsoft 365, Azure, Graph API |
AWS |
IAM, AWS SSO, Cognito, AWS Organizations, STS, CloudTrail |
PAM Solutions |
CyberArk, BeyondTrust, Delinea Secret Server, HashiCorp Vault |
Protocols |
OAuth 2.0, SAML, LDAP, Kerberos, OpenID Connect |
Scripting |
PowerShell, Python, Bash, REST APIs |
AI & Agents |
Copilot Studio, AI Agents, Model Context Protocol (MCP), Agent authentication, Agentic workflows |
RBAC & Governance |
Role design, Application RBAC, Access certification, Identity lifecycle management, Segregation of duties |
Provisioning & Automation |
Okta, ServiceNow, Microsoft Identity Manager, Automated workflows, Deprovisioning automation, System integration |