Senior Identity And Access Management

Senior Identity And Access Management IAM Engineer

Posted 1 day ago

InformationSecurityEngineerIII

ExperienceLevel: 5+ years

About the Role

We're looking for a highly skilled Information Security Engineer to strengthen and scale security across cloud, application, and enterprise environments. In this role, you'll:

• Lead secure SDLC practices and embed security into every stage of the development lifecycle.
• Drive threat modeling, vulnerability management, and detection engineering.
• Operate and optimize key security platforms (EDR, DLP, SIEM, Email Security).
• Strengthen cloud and Microsoft 365 security, while ensuring enterprise resilience.

Key Responsibilities

• Integrate security into design, development, and deployment workflows.
• Conduct threat modeling and architecture reviews.
• Secure cloud platforms (AWS, Azure, Microsoft 365) through identity controls, hardening, and policy enforcement.

Security Platform Operations

• Operate and monitor EDR/XDR, DLP, SIEM, and email security platforms.
• Ensure tools are tuned, integrated, and delivering actionable insights.

Security Monitoring & Response

• Support day-to-day monitoring and incident investigations.
• Lead triage, containment, and remediation of threats.
• Contribute to detection tuning, post-incident reviews, and process improvements.

Threat & Vulnerability Management

• Identify, assess, and remediate vulnerabilities across endpoints, infrastructure, and cloud.
• Support patching strategy, scanning, and threat intel correlation.
• Implement secure configurations for Windows/Linux endpoints, servers, and network appliances.
• Align with CIS benchmarks and industry best practices.
• Build and tune detection logic in SIEM/XDR platforms.
• Collaborate across teams to reduce false positives and improve fidelity.
• Contribute to business continuity and disaster recovery planning.

Qualifications

• 5+ years in information security (application, cloud, infrastructure).
• Strong experience managing and securing cloud platforms (AWS, Azure, Microsoft 365).
• Hands-on with security tools: EDR/XDR, DLP, SIEM, email security, vulnerability scanners.
• Knowledge of secure SDLC, application security testing, and DevSecOps.
• Familiarity with IAM, zero trust, and conditional access.
• Exposure to threat modeling methodologies (STRIDE, MITRE ATT&CK).
• Knowledge of standards (NIST, ISO27001, GDPR, SOC2, PCI-DSS).
• Excellent communication and collaboration skills.

Privacy Note

By applying, you consent to the use of your personal data for recruitment purposes. Data may be shared with third-party services and our parent company, ETS London, for recruitment assessment purposes.

Information Security Engineer

Posted today

Job Title: Information Security Engineer III

Experience Level: 5+ years

About the Role

We are seeking a highly skilled Information Security Engineer to lead security controls across cloud, application, and enterprise environments, driving secure SDLC practices, threat modeling, detection and response capabilities, and security for cloud and Microsoft 365 platforms. The ideal candidate is hands-on, technically broad, and proactive.

Key Responsibilities

1. Application & Cloud Security: Implement secure SDLC, conduct threat modeling, secure cloud platforms, and review architecture for financial web apps hosted in AWS.
2. Security Platform Operations: Operate and monitor EDR/XDR, DLP, and email security; ensure integration and actionable insights.
3. Security Monitoring & Response: Participate in monitoring, tuning, incident response, post-incident reviews, and continuous improvement.
4. Threat & Vulnerability Management: Identify and remediate vulnerabilities; support patching and threat intel; enforce hardened configurations.
5. Endpoint & Infrastructure Hardening: Align with CIS benchmarks.
6. Detection Engineering: Tune detections in SIEM/XDR; improve alert fidelity.
7. Business Continuity & Risk: Contribute to BCP/DR planning and secure critical processes.

Qualifications

• 5+ years in information security; cloud exposure preferred.
• Bachelor’s degree in CS/IT/Engineering or related field.
• Hands-on with security tools (EDR, DLP, SIEM, vulnerability scanners).
• Secure SDLC, DevSecOps experience; IAM and zero trust knowledge.
• Detection engineering, incident response, threat modeling experience.
• Regulatory familiarity (NIST, ISO 27001, GDPR, SOC2, PCI-DSS).

Privacy

By applying to this job, you consent to use of personal data for recruitment purposes. Data may be shared with third parties and ETS London for recruitment assessments.

Other postings in this stream describe roles for Information Security Engineer III, Penetration Tester, Senior Information Security Engineer, and related positions with similar structure. The descriptions include responsibilities across security monitoring, threat management, incident response, vulnerability management, risk, and compliance; qualifications typically require 5+ years for senior roles and 1–3 years for entry-level security testing roles, with certifications and cloud security experience preferred.