Identity & Access Management (IAM) Engineer
2025-07-04T10:22:34+00:00
World Vision Kenya
https://cdn.greatkenyanjobs.com/jsjobsdata/data/employer/comp_8131/logo/wv.png
https://www.wvi.org/kenya
FULL_TIME
Nairobi
Nairobi
00100
Kenya
Nonprofit, and NGO
Computer & IT
2025-05-17T17:00:00+00:00
Kenya
8
Key Responsibilities:
- Solution Implementation & Integration
- Work alongside the Enterprise Architect to translate IAM blueprints into scalable, production-grade deployments across Azure AD, OneLogin, or equivalent platforms.
- Configure authentication flows (e.g. SAML, OAuth2, OpenID Connect, LDAP) to realize single sign-on (SSO), multi-factor authentication (MFA), and zero-trust access models.
- Integrate on-premises Active Directory and cloud directory services, ensuring seamless synchronization and failover resilience.
- Operational Support & Administration
- Own day-to-day administration of IAM platforms: user provisioning/deprovisioning, group management, entitlement changes, and password self-service workflows.
- Monitor system health and performance, respond to alerts, and troubleshoot authentication or directory synchronization issues.
- Develop and maintain automation scripts (PowerShell, Python, Terraform) to streamline access lifecycle tasks and reduce manual effort.
- Access Governance & Compliance Support
- Execute periodic access reviews and attestation campaigns under guidance from Architecture and Risk teams.
- Assist in remediation of segregation-of-duties conflicts, unauthorized access, and other compliance findings.
- Maintain documentation of access policies, runbooks, and change logs in alignment with audit requirements.
- Incident Response & Continuous Improvement
- Serve as the primary support engineer for IAM-related incidents, conducting root-cause analysis and driving corrective actions.
- Capture service metrics (uptime, incident volume, resolution times) and collaborate with Architecture to enhance system reliability and user experience.
- Contribute to knowledge-based articles, shared runbooks, and training materials for IT operations and support teams.
- Stakeholder Collaboration
- Liaise with application owners, security operations, and infrastructure teams to onboard new applications and integrate their identity requirements.
- Provide Level 2/3 support and guidance to regional IT teams, ensuring consistent execution of IAM processes and rapid resolution of escalated issues.
Key Skills and Competencies:
- Bachelor’s degree in Computer Science, Information Technology, or related field.
- ITIL Foundation certification or equivalent IT service management experience.
- Hands-on expertise with Azure Active Directory, Active Directory Federation Services (AD FS), and commercial IAM platforms (e.g. OneLogin, Okta, Ping, SailPoint).
- Strong scripting/automation skills (PowerShell, Python, Terraform) and familiarity with CI/CD pipelines.
- Proficient in authentication protocols (SAML, OAuth2, OpenID Connect) and directory services (LDAP, Kerberos).
- Excellent communicator capable of bridging architectural vision and operational execution.
- Certifications such as Microsoft Certified: Identity and Access Administrator, CISSP, or CIAM are advantageous.
KEY RESPONSIBILITIES: Provide support, guidance, and collaboration to field office IT staff across all regions to ensure consistent service delivery and alignment with global standards. Manage and maintain cloud-based databases (e.g., Azure SQL, Amazon RDS, PostgreSQL, MySQL) across production and non-production environments. Implement and monitor backup, high availability, and disaster recovery strategies. Optimize database performance through indexing, tuning, and automation. Ensure database security and compliance with organizational and regulatory requirements. Collaborate with developers, architects, and infrastructure teams to support application performance and scalability. Implement Infrastructure as Code (IaC) practices for consistent and automated database deployments. Conduct proactive monitoring and capacity planning using ITOM tools. Work collaboratively within Agile teams, embracing iterative delivery, continuous improvement, and adaptive planning as part of the organization's new ways of working.
KNOWLEDGE/QUALIFICATIONS FOR THE ROLE: Bachelor’s degree in programming/systems, computer science, information systems, or mathematics, specialized training, certification or equivalent work experience. Has a broad level of understanding surrounding information systems and application and/or web standards. Preference will be given to candidates with experience in Terraform and Azure DevOps. Familiarity with GitHub Actions, Ansible, or scripting tools such as PowerShell or Python is highly desirable. Security-first mindset is essential in all aspects of cloud infrastructure and operations. Strong understanding of IT Operations Management (ITOM) and database observability. Experience with public cloud platforms (Azure, AWS) and cloud-native database services. Problem-solving skills with a value-driven mindset, focusing on service optimization and reliability. Customer-centric approach—understanding how database performance impacts end-user experience and business outcomes. Strong scripting and automation skills (e.g., PowerShell, Terraform, Python) for DevOps integration.
KNOWLEDGE/QUALIFICATIONS FOR THE ROLE: Bachelor’s degree in programming/systems, computer science, information systems, or mathematics, specialized training, certification or equivalent work experience. Has a broad level of understanding surrounding information systems and application and/or web standards. Preference will be given to candidates with experience in Terraform and Azure DevOps. Familiarity with GitHub Actions, Ansible, or scripting tools such as PowerShell or Python is highly desirable. Security-first mindset is essential in all aspects of cloud infrastructure and operations. Strong understanding of IT Operations Management (ITOM) and database observability. Experience with public cloud platforms (Azure, AWS) and cloud-native database services. Problem-solving skills with a value-driven mindset, focusing on service optimization and reliability. Customer-centric approach—understanding how database performance impacts end-user experience and business outcomes. Strong scripting and automation skills (e.g., PowerShell, Terraform, Python) for DevOps integration.
No Requirements
JOB-6867ab6a795fd
Vacancy title:
Identity & Access Management (IAM) Engineer
[Type: FULL_TIME, Industry: Nonprofit, and NGO, Category: Computer & IT]
Jobs at:
World Vision Kenya
Deadline of this Job:
Saturday, May 17 2025
Duty Station:
Nairobi | Nairobi | Kenya
Summary
Date Posted: Friday, July 4 2025, Base Salary: Not Disclosed
Similar Jobs in Kenya
Learn more about World Vision Kenya
World Vision Kenya jobs in Kenya
JOB DETAILS:
Key Responsibilities:
- Solution Implementation & Integration
- Work alongside the Enterprise Architect to translate IAM blueprints into scalable, production-grade deployments across Azure AD, OneLogin, or equivalent platforms.
- Configure authentication flows (e.g. SAML, OAuth2, OpenID Connect, LDAP) to realize single sign-on (SSO), multi-factor authentication (MFA), and zero-trust access models.
- Integrate on-premises Active Directory and cloud directory services, ensuring seamless synchronization and failover resilience.
- Operational Support & Administration
- Own day-to-day administration of IAM platforms: user provisioning/deprovisioning, group management, entitlement changes, and password self-service workflows.
- Monitor system health and performance, respond to alerts, and troubleshoot authentication or directory synchronization issues.
- Develop and maintain automation scripts (PowerShell, Python, Terraform) to streamline access lifecycle tasks and reduce manual effort.
- Access Governance & Compliance Support
- Execute periodic access reviews and attestation campaigns under guidance from Architecture and Risk teams.
- Assist in remediation of segregation-of-duties conflicts, unauthorized access, and other compliance findings.
- Maintain documentation of access policies, runbooks, and change logs in alignment with audit requirements.
- Incident Response & Continuous Improvement
- Serve as the primary support engineer for IAM-related incidents, conducting root-cause analysis and driving corrective actions.
- Capture service metrics (uptime, incident volume, resolution times) and collaborate with Architecture to enhance system reliability and user experience.
- Contribute to knowledge-based articles, shared runbooks, and training materials for IT operations and support teams.
- Stakeholder Collaboration
- Liaise with application owners, security operations, and infrastructure teams to onboard new applications and integrate their identity requirements.
- Provide Level 2/3 support and guidance to regional IT teams, ensuring consistent execution of IAM processes and rapid resolution of escalated issues.
Key Skills and Competencies:
- Bachelor’s degree in Computer Science, Information Technology, or related field.
- ITIL Foundation certification or equivalent IT service management experience.
- Hands-on expertise with Azure Active Directory, Active Directory Federation Services (AD FS), and commercial IAM platforms (e.g. OneLogin, Okta, Ping, SailPoint).
- Strong scripting/automation skills (PowerShell, Python, Terraform) and familiarity with CI/CD pipelines.
- Proficient in authentication protocols (SAML, OAuth2, OpenID Connect) and directory services (LDAP, Kerberos).
- Excellent communicator capable of bridging architectural vision and operational execution.
- Certifications such as Microsoft Certified: Identity and Access Administrator, CISSP, or CIAM are advantageous.
Work Hours: 8
Experience: No Requirements
Level of Education: bachelor degree
Job application procedure
Interested and qualified? Click here to apply
All Jobs | QUICK ALERT SUBSCRIPTION
