IAM Governance & Automation Engineer

Posted 4 Hours Ago
Be an Early Applicant
Bangalore, Bengaluru Urban, Karnataka, IND
In-Office
Senior level
Other • Security
The Role
Design, operate, and enhance enterprise Identity and Access Management capabilities including lifecycle management, governance, SSO/MFA, PAM, federation, and automation. Integrate IAM platforms with HR, directories, and applications, run access certifications and SoD controls, troubleshoot auth/provisioning issues, maintain governance documentation, and partner across security, audit, HR, and application teams to align controls with business and regulatory requirements.
Summary Generated by Built In

Sr. Engineer - Identity Administration, Governance & Automation

Role Summary

The Sr. Engineer - Identity Administration, Governance & Automation will design, operate, and continuously improve enterprise Identity and Access Management capabilities across identity lifecycle, governance, federation, single sign-on, privileged access, and automation. This role will partner with HR, application, infrastructure, security, audit, and business teams to deliver secure, scalable, and well-documented IAM services.

What We Look For

  • 5+ years of experience implementing, operating, and improving enterprise IAM, IGA, SSO, and PAM solutions in large or complex environments.

  • Strong ability to design, build, operate, and automate security solutions and processes that protect the integrity of enterprise networks, systems, applications, and data.

  • Experience developing technical strategies, architectures, roadmaps, standards, and operational runbooks for IAM services.

  • Outstanding communication and presentation skills, with the ability to explain complex technical concepts to non-technical and leadership audiences.

  • Ability to respond to access-related incidents, authentication or authorization failures, audit findings, and control gaps through structured troubleshooting and cross-team coordination.

Key Responsibilities

  • Own and improve Joiner, Mover, Leaver lifecycle management processes, including user provisioning, transfers, terminations, birthright access, and exception handling.

  • Design and maintain workflow automation between IAM platforms, HR systems, directories, and business applications to reduce manual effort and improve control effectiveness.

  • Support identity governance processes including access certifications, Segregation of Duties (SoD), audit evidence collection, remediation tracking, and control reporting.

  • Design, operate, and enhance SSO and MFA capabilities using standards such as SAML, OAuth, and OpenID Connect (OIDC).

  • Troubleshoot authentication, authorization, directory synchronization, access provisioning, and entitlement issues across enterprise platforms.

  • Maintain high-quality documentation for governance policies, workflows, operational procedures, design decisions, and exception processes.

  • Partner with application owners, HR, audit, compliance, infrastructure, and security teams to onboard applications and align IAM controls with business and regulatory requirements.

Required Skills

Identity Administration

Experience in lifecycle management including Joiner, Mover, and Leaver processes; workflow automation; and integration of IAM platforms with HR systems and business applications.

Identity Governance

Strong understanding of Segregation of Duties (SoD), access certifications, audit processes, and remediation activities; ability to align governance practices with industry regulations and internal control expectations.

Single Sign-On (SSO)

Hands-on experience designing and managing SSO solutions; familiarity with authentication protocols including SAML, OAuth, and OpenID Connect (OIDC); knowledge of MFA implementation and adoption.

Technical Expertise

Hands-on experience with Active Directory, Microsoft Entra, and LDAP; experience with IGA vendors such as SailPoint, SoftwareIDM, and Saviynt; knowledge of IAM tools such as BeyondTrust, Okta, and Azure AD; openness to learning new tools and technologies.

Automation & Operations

Proficiency in scripting or programming languages such as PowerShell, Python, SQL, and Java; ability to automate IAM processes, troubleshoot authentication and authorization issues, and maintain documentation for governance policies and workflows.

Preferred Qualifications

  • Experience with IDaaS and IAM products such as Microsoft Entra, Okta, Ping Identity, Google Cloud Identity, SailPoint, Saviynt, SoftwareIDM, Omada, Microsoft Identity Manager, BeyondTrust, CyberArk, or equivalent solutions.

  • Experience with Microsoft 365, Active Directory, LDAP, SAML, OAuth, OIDC, MFA, APIs, and directory synchronization patterns.

  • Experience with cloud identity and access controls across Azure, AWS, or GCP.

  • Familiarity with Zero Trust architecture and access control models.

  • Familiarity with ServiceNow ticketing, CMDB, and operational request workflows.

  • Understanding of security and compliance frameworks such as NIST, PCI, GDPR, HIPAA-HITECH, or HITRUST.

  • Development or scripting experience with Python, Java, C#, .NET, PowerShell, Shell scripting, SQL, Web Services, SOAP/REST APIs, or RESTful integrations.

Certifications

  • CISSP, CISM, CISA, SANS, GIAC, CIMP, CEH, or equivalent security certification is a plus.

  • Okta Professional or Consultant certification is a plus.

  • Google, AWS, or Microsoft professional cloud architect certification is a plus.

Equal Employment Opportunity

Johnson Controls International plc. is an equal employment opportunity and affirmative action employer, and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, protected veteran status, genetic information, status as a qualified individual with a disability, or any other characteristic protected by law. If you are an individual with a disability and require accommodation during the application process, please visit johnsoncontrols.com/careers.

Skills Required

  • 5+ years implementing, operating, and improving enterprise IAM, IGA, SSO, and PAM solutions in large or complex environments
  • Design, build, operate, and automate security solutions and IAM processes to protect systems and data
  • Develop technical strategies, architectures, roadmaps, standards, and operational runbooks for IAM services
  • Respond to access-related incidents, authentication/authorization failures, and audit findings with structured troubleshooting and coordination
  • Hands-on experience with SSO and authentication protocols (SAML, OAuth, OpenID Connect) and MFA implementation
  • Experience with Active Directory, Microsoft Entra, and LDAP directory technologies
  • Experience with IGA vendors such as SailPoint, SoftwareIDM, or Saviynt and IAM tools like Okta, BeyondTrust, Azure AD
  • Proficiency in scripting/programming for automation (PowerShell, Python, SQL, Java)
  • Design and maintain workflow automation between IAM platforms, HR systems, directories, and business applications
  • Strong communication and presentation skills to explain technical concepts to non-technical and leadership audiences
  • Experience with IDaaS/IAM products (Microsoft Entra, Okta, Ping Identity, Google Cloud Identity, SailPoint, Saviynt, SoftwareIDM, Omada, Microsoft Identity Manager, BeyondTrust, CyberArk)
  • Experience with cloud identity and access controls across Azure, AWS, or GCP
  • Familiarity with Zero Trust architecture, ServiceNow ticketing/CMDB, and security/compliance frameworks (NIST, PCI, GDPR, HIPAA)
  • Additional development/scripting experience with C#, .NET, Shell scripting, Web Services, SOAP/REST APIs or RESTful integrations
  • Security certifications such as CISSP, CISM, CISA, GIAC, or Okta Professional (if held)

Johnson Controls Compensation & Benefits Highlights

The following summarizes recurring compensation and benefits themes identified from responses generated by popular LLMs to common candidate questions about Johnson Controls and has not been reviewed or approved by Johnson Controls.

  • Retirement Support Retirement support is positioned as a meaningful part of the package through employer 401(k) matching, repeatedly framed as a strong pillar of the overall rewards mix. The matching contribution is described with specific match levels in multiple places, reinforcing perceived value for long-term saving.
  • Leave & Time Off Breadth Time off is presented as comparatively robust, with multiple paid holiday categories, vacation time, and sick time described as generous or “amazing” in places. Paid time off breadth appears to be a consistent contributor to total rewards attractiveness beyond base pay.
  • Flexible Benefits Benefits are described as broad and customizable, spanning standard medical/dental/vision plus optional add-ons like pet insurance, identity protection, and legal support. Tuition reimbursement is repeatedly highlighted as a high-value option supporting professional development.

Johnson Controls Insights

Am I A Good Fit?
beta
Get Personalized Job Insights.
Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.

The Company
HQ: Chennai
100,000 Employees
Year Founded: 1885

What We Do

At Johnson Controls, we transform the environments where people live, work, learn and play. From optimizing building performance to improving safety and enhancing comfort, we drive the outcomes that matter most. Dedicated to protecting the environment, we deliver our promise in industries such as healthcare, education, data centers and manufacturing. With a global team of 100,000 experts in more than 150 countries and over 130 years of innovation, we are the power behind our customers’ mission. Our leading portfolio of building technology and solutions includes some of the most trusted names in the industry, such as Tyco®, York®, Metasys®, Ruskin®, Titus®, Frick®, Penn®, Sabroe®, Simplex®, Ansul® and Grinnell®.

Similar Jobs

CSC Logo CSC

Accountant

Fintech • Legal Tech • Software • Financial Services • Cybersecurity • Data Privacy
Hybrid
2 Locations
8500 Employees
In-Office
Bangalore, Bengaluru Urban, Karnataka, IND
2653 Employees

Celonis Logo Celonis

Applied Value Engineer

Big Data • Information Technology • Productivity • Software • Analytics • Business Intelligence • Consulting
Hybrid
Bangalore, Bengaluru Urban, Karnataka, IND
3000 Employees

Zscaler Logo Zscaler

Development Engineer

Cloud • Information Technology • Security • Software • Cybersecurity
Easy Apply
Hybrid
Bangalore, Bengaluru, Karnataka, IND
8697 Employees

Similar Companies Hiring

Closinglock Thumbnail
Software • Security • Real Estate • PropTech • Fintech • Financial Services • Cybersecurity
Austin, TX
100 Employees
Oso Thumbnail
Software • Security • Infrastructure as a Service (IaaS)
New York, New York
36 Employees
Credal.ai Thumbnail
Software • Security • Productivity • Machine Learning • Artificial Intelligence
Brooklyn, NY

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account