Senior Cyber Security Engineer (IAM/PAM - DevSecOps)
Job Summary
Job Description
Rackspace Technology is looking for a Senior Cybersecurity & DevSecOps Engineer with expertise in Privileged Access Management (PAM), Identity and Access Management (IAM), and Vulnerability and Patch Management. This role involves designing, implementing, and maintaining security architecture, integrating security into the software development lifecycle, and securing privileged accounts and digital identities. The engineer will embed security controls into CI/CD pipelines, manage PAM/IAM solutions like CyberArk and ForgeRock, and ensure strong overall security posture. Responsibilities include automating security processes, implementing least privilege access, conducting security assessments, and collaborating with various teams to embed identity security throughout the SDLC.
Must have:
- Design, implement, and maintain PAM solutions (e.g. CyberArk)
- Architect and manage IAM solutions, including SSO, MFA, and directory services (e.g. ForgeRock)
- Configure and manage Vulnerability/Patch Management solutions (e.g. Qualys)
- Develop and maintain secure authentication and authorization workflows
- Create automated PAM/IAM processes to integrate with CI/CD pipelines
- Implement privileged session management, recording, and monitoring capabilities
- Design and manage secrets management solutions
- Develop secure coding practices and security requirements for identity-related components
- Create CI/CD pipeline integrations that automate security testing and credential management
- Implement least privilege access models
- Configure and maintain Just-In-Time (JIT) access
- Conduct regular security assessments of PAM/IAM infrastructure
- Automate security controls for identity lifecycle management
- Develop API security governance for identity-related services
- Create and maintain system documentation and security architecture diagrams
- Monitor security events related to privileged access and identity systems
- Collaborate with development, operations, and security teams
- Implement risk-based authentication and authorization mechanisms
- Lead security platforms incident response
- Participate on after-hours On-Call support
Good to have:
- Proficiency in scripting and programming languages (PowerShell, Python, Bash, etc.)
- Experience with other PAM solutions (BeyondTrust, Delinea, etc.)
- Knowledge of Zero Trust architecture implementation
- Familiarity with OAuth 2.0, OIDC, SAML, and SCIM protocols
- Experience with SIEM integration for identity-related events
- Background in security architecture and framework development
- Experience with secrets management solutions (e.g. HashiCorp Vault)
- Knowledge of advanced encryption implementation and key management
- Understanding of biometric authentication technologies
- Experience with web application firewalls (WAF) and API gateways
- Familiarity with GitOps security principles
- Background in identity governance and administration (IGA)
- Experience with user behavior analytics and identity threat detection
- Knowledge of PKI infrastructure and certificate management
- CISSP, CISM, or other advanced security certifications
- Experience with machine identity management and non-human identities
14 skills required
Job Details
Rackspace Technology is a leading provider of expertise and managed services across all the major public and private cloud technologies. We’ve evolved Fanatical Support to encompass the entire customer journey — providing Fanatical Experience™ from first consultation to daily operations. Our passionate experts combine the power of proactive, always-on service and expertise with best-in-class tools and automation to deliver technology when and how our customers need it.
We are seeking a highly skilled Senior Cybersecurity & DevSecOps Engineer with specialized expertise in Privileged Access Management (PAM), Identity and Access Management (IAM) and Vulnerability and Patch Management solutions. In this role, you will be responsible for designing, implementing, and maintaining security architecture while integrating security practices throughout our software development lifecycle. The ideal candidate will bring deep knowledge of PAM/IAM technologies along with DevSecOps principles to help secure the privileged accounts, manage digital identities, and embed security controls into CI/CD pipelines to strengthen the overall security posture.
Responsibilities
- Design, implement, and maintain PAM solutions (e.g. CyberArk)
- Architect and manage IAM solutions, including SSO, MFA, and directory services (e.g. ForgeRock)
- Configure and manage Vulnerability/Patch Management solutions (e.g. Qualys)
- Develop and maintain secure authentication and authorization workflows across enterprise applications
- Create automated PAM/IAM processes to integrate with DevOps workflows and CI/CD pipelines
- Implement privileged session management, recording, and monitoring capabilities
- Design and manage secrets management solutions for application and infrastructure credentials
- Develop secure coding practices and security requirements for identity-related components
- Create CI/CD pipeline integrations that automate security testing and credential management
- Implement least privilege access models throughout infrastructure and applications
- Configure and maintain Just-In-Time (JIT) access and ephemeral privilege solutions
- Conduct regular security assessments of PAM/IAM infrastructure and implementation
- Automate security controls for onboarding/offboarding identity lifecycle management
- Develop API security governance for identity-related services
- Create and maintain system documentation and security architecture diagrams
- Monitor security events related to privileged access and identity systems
- Collaborate with development, operations, and security teams to embed identity security throughout SDLC
- Implement risk-based authentication and authorization mechanisms
- Lead security platforms incident response and participate in security incident handling
- Participate on after-hours On-Call support for security-related incidents
Requirements
- Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or related field
- 7+ years of experience in information security or cybersecurity roles
- Minimum 3+ years of hands-on experience with PAM solutions (CyberArk preferred)
- Minimum 3+ years of experience with IAM/MFA/SSO platforms (ForgeRock preferred)
- Minimum 2+ years of experience with Vulnerability and Patch Management platforms (Qualys preferred)
- Experience implementing DevSecOps methodologies and embedding security in CI/CD pipelines
- Strong knowledge of secure access models, authorization frameworks, and federation protocols
- Experience with security automation and API-driven security controls
- Knowledge of cloud IAM services and integration patterns
- Experience with infrastructure as code tools (Terraform, CloudFormation, Ansible, etc.)
- Understanding of container security and orchestration platforms (Docker, Kubernetes)
- Familiarity with compliance frameworks requiring strong identity controls
- Strong analytical and problem-solving abilities
- Excellent communication skills and ability to collaborate across technical teams
Additional Skills (Good to have)
- Proficiency in scripting and programming languages (PowerShell, Python, Bash, etc.)
- Experience with other PAM solutions (BeyondTrust, Delinea, etc.)
- Knowledge of Zero Trust architecture implementation
- Familiarity with OAuth 2.0, OIDC, SAML, and SCIM protocols
- Experience with SIEM integration for identity-related events
- Background in security architecture and framework development
- Experience with secrets management solutions (e.g. HashiCorp Vault)
- Knowledge of advanced encryption implementation and key management
- Understanding of biometric authentication technologies
- Experience with web application firewalls (WAF) and API gateways
- Familiarity with GitOps security principles
- Background in identity governance and administration (IGA)
- Experience with user behavior analytics and identity threat detection
- Knowledge of PKI infrastructure and certificate management
- CISSP, CISM, or other advanced security certifications
- Experience with machine identity management and non-human identities
#LI-LP2
Similar Jobs
HCL Tech
Ohio, United States (On-Site)
• 1 Month ago
Epic Games
Cary, North Carolina, United States (On-Site)
• 4 Months ago
Apple
Cupertino, California, United States (On-Site)
• 1 Month ago
Rocket studio
Warsaw, Masovian Voivodeship, Poland (Hybrid)
• 1 Month ago
Get notifed when new similar jobs are uploaded
Similar Skill Jobs
Roblox
San Mateo, California, United States (On-Site)
• 1 Week ago
USE Insider
Istanbul, İstanbul, Türkiye (On-Site)
• 8 Months ago
Get notifed when new similar jobs are uploaded
Jobs in Riyadh, Riyadh Province, Saudi Arabia
Qualcomm
Riyadh, Riyadh Province, Saudi Arabia (On-Site)
• 4 Weeks ago
Sandsoft Games
Riyadh, Riyadh Province, Saudi Arabia (On-Site)
• 4 Months ago
Rackspace Technology
Riyadh, Riyadh Province, Saudi Arabia (On-Site)
• 3 Weeks ago
Get notifed when new similar jobs are uploaded
Cyber Security Jobs
bytedance
San Jose, California, United States (On-Site)
• 8 Months ago
Epic Games
Cary, North Carolina, United States (On-Site)
• 4 Months ago
Wind River
Boston, Massachusetts, United States (Hybrid)
• 1 Month ago
London stock Exchange
London, England, United Kingdom (On-Site)
• 1 Month ago
bytedance
San Jose, California, United States (On-Site)
• 2 Months ago
Get notifed when new similar jobs are uploaded
