Senior Cyber Security Engineer (IAM/PAM - DevSecOps)
Rackspace Technology
Job Summary
Rackspace Technology is looking for a Senior Cybersecurity & DevSecOps Engineer with expertise in Privileged Access Management (PAM), Identity and Access Management (IAM), and Vulnerability and Patch Management. This role involves designing, implementing, and maintaining security architecture, integrating security into the software development lifecycle, and securing privileged accounts and digital identities. The engineer will embed security controls into CI/CD pipelines, manage PAM/IAM solutions like CyberArk and ForgeRock, and ensure strong overall security posture. Responsibilities include automating security processes, implementing least privilege access, conducting security assessments, and collaborating with various teams to embed identity security throughout the SDLC.
Must Have
- Design, implement, and maintain PAM solutions (e.g. CyberArk)
- Architect and manage IAM solutions, including SSO, MFA, and directory services (e.g. ForgeRock)
- Configure and manage Vulnerability/Patch Management solutions (e.g. Qualys)
- Develop and maintain secure authentication and authorization workflows
- Create automated PAM/IAM processes to integrate with CI/CD pipelines
- Implement privileged session management, recording, and monitoring capabilities
- Design and manage secrets management solutions
- Develop secure coding practices and security requirements for identity-related components
- Create CI/CD pipeline integrations that automate security testing and credential management
- Implement least privilege access models
- Configure and maintain Just-In-Time (JIT) access
- Conduct regular security assessments of PAM/IAM infrastructure
- Automate security controls for identity lifecycle management
- Develop API security governance for identity-related services
- Create and maintain system documentation and security architecture diagrams
- Monitor security events related to privileged access and identity systems
- Collaborate with development, operations, and security teams
- Implement risk-based authentication and authorization mechanisms
- Lead security platforms incident response
- Participate on after-hours On-Call support
Good to Have
- Proficiency in scripting and programming languages (PowerShell, Python, Bash, etc.)
- Experience with other PAM solutions (BeyondTrust, Delinea, etc.)
- Knowledge of Zero Trust architecture implementation
- Familiarity with OAuth 2.0, OIDC, SAML, and SCIM protocols
- Experience with SIEM integration for identity-related events
- Background in security architecture and framework development
- Experience with secrets management solutions (e.g. HashiCorp Vault)
- Knowledge of advanced encryption implementation and key management
- Understanding of biometric authentication technologies
- Experience with web application firewalls (WAF) and API gateways
- Familiarity with GitOps security principles
- Background in identity governance and administration (IGA)
- Experience with user behavior analytics and identity threat detection
- Knowledge of PKI infrastructure and certificate management
- CISSP, CISM, or other advanced security certifications
- Experience with machine identity management and non-human identities
Job Description
Rackspace Technology is a leading provider of expertise and managed services across all the major public and private cloud technologies. We’ve evolved Fanatical Support to encompass the entire customer journey — providing Fanatical Experience™ from first consultation to daily operations. Our passionate experts combine the power of proactive, always-on service and expertise with best-in-class tools and automation to deliver technology when and how our customers need it.
We are seeking a highly skilled Senior Cybersecurity & DevSecOps Engineer with specialized expertise in Privileged Access Management (PAM), Identity and Access Management (IAM) and Vulnerability and Patch Management solutions. In this role, you will be responsible for designing, implementing, and maintaining security architecture while integrating security practices throughout our software development lifecycle. The ideal candidate will bring deep knowledge of PAM/IAM technologies along with DevSecOps principles to help secure the privileged accounts, manage digital identities, and embed security controls into CI/CD pipelines to strengthen the overall security posture.
Responsibilities
- Design, implement, and maintain PAM solutions (e.g. CyberArk)
- Architect and manage IAM solutions, including SSO, MFA, and directory services (e.g. ForgeRock)
- Configure and manage Vulnerability/Patch Management solutions (e.g. Qualys)
- Develop and maintain secure authentication and authorization workflows across enterprise applications
- Create automated PAM/IAM processes to integrate with DevOps workflows and CI/CD pipelines
- Implement privileged session management, recording, and monitoring capabilities
- Design and manage secrets management solutions for application and infrastructure credentials
- Develop secure coding practices and security requirements for identity-related components
- Create CI/CD pipeline integrations that automate security testing and credential management
- Implement least privilege access models throughout infrastructure and applications
- Configure and maintain Just-In-Time (JIT) access and ephemeral privilege solutions
- Conduct regular security assessments of PAM/IAM infrastructure and implementation
- Automate security controls for onboarding/offboarding identity lifecycle management
- Develop API security governance for identity-related services
- Create and maintain system documentation and security architecture diagrams
- Monitor security events related to privileged access and identity systems
- Collaborate with development, operations, and security teams to embed identity security throughout SDLC
- Implement risk-based authentication and authorization mechanisms
- Lead security platforms incident response and participate in security incident handling
- Participate on after-hours On-Call support for security-related incidents
Requirements
- Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or related field
- 7+ years of experience in information security or cybersecurity roles
- Minimum 3+ years of hands-on experience with PAM solutions (CyberArk preferred)
- Minimum 3+ years of experience with IAM/MFA/SSO platforms (ForgeRock preferred)
- Minimum 2+ years of experience with Vulnerability and Patch Management platforms (Qualys preferred)
- Experience implementing DevSecOps methodologies and embedding security in CI/CD pipelines
- Strong knowledge of secure access models, authorization frameworks, and federation protocols
- Experience with security automation and API-driven security controls
- Knowledge of cloud IAM services and integration patterns
- Experience with infrastructure as code tools (Terraform, CloudFormation, Ansible, etc.)
- Understanding of container security and orchestration platforms (Docker, Kubernetes)
- Familiarity with compliance frameworks requiring strong identity controls
- Strong analytical and problem-solving abilities
- Excellent communication skills and ability to collaborate across technical teams
Additional Skills (Good to have)
- Proficiency in scripting and programming languages (PowerShell, Python, Bash, etc.)
- Experience with other PAM solutions (BeyondTrust, Delinea, etc.)
- Knowledge of Zero Trust architecture implementation
- Familiarity with OAuth 2.0, OIDC, SAML, and SCIM protocols
- Experience with SIEM integration for identity-related events
- Background in security architecture and framework development
- Experience with secrets management solutions (e.g. HashiCorp Vault)
- Knowledge of advanced encryption implementation and key management
- Understanding of biometric authentication technologies
- Experience with web application firewalls (WAF) and API gateways
- Familiarity with GitOps security principles
- Background in identity governance and administration (IGA)
- Experience with user behavior analytics and identity threat detection
- Knowledge of PKI infrastructure and certificate management
- CISSP, CISM, or other advanced security certifications
- Experience with machine identity management and non-human identities
#LI-LP2
14 Skills Required For This Role
Communication
Talent Acquisition
Software Development Lifecycle Sdlc
Security Testing
Oauth
Incident Response
Ansible
Terraform
Powershell
Ci Cd
Docker
Kubernetes
Python
Bash
Similar Jobs
Cyber Security
Senior Threat Intelligence Analyst, SEAR
1 day ago
Information Security Engineer 3
1 day ago
Summer 2026 Intern - Product Security Engineer
1 day ago
SOC Analyst Intern (2026 Summer Internship Program)
1 day ago
Engineering Manager - Email & Collaboration Security
1 day ago
Multi-Cloud Security Engineer
1 day ago
Security Services Engineer
1 day ago
Physical Security Specialist
2 days ago
Sr. Technical Support Engineer, Focused Services Cortex Cloud
2 days ago
Sr. Technical Support Engineer, Focused Services Cortex Cloud
2 days ago
IT & Infrastructure
Software, Cloud and Datacentre Solution Architect
1 day ago
IT Helpdesk Specialist
1 day ago
Senior Cloud Infrastructure Administrator (AWS + Azure + M365)
1 day ago
Associate IT Helpdesk Engineer
1 day ago
Director IT, Endpoint Configuration Management
1 day ago
Manager, Service Desk
1 day ago
Engineer - IT
1 day ago
Microsoft Infrastructure & Migration Manager
1 day ago
Systems Administrator / System Administrator (contract)
1 day ago
Network Security Engineer – Zscaler
1 day ago