One Identity Safeguard Engineer

Reposted 8 Hours Ago
Be an Early Applicant
Makati City, Metro Manila, National Capital Region, PHL
Hybrid
Senior level
Information Technology • Consulting
The Role
The One Identity Safeguard Engineer is responsible for engineering, operating and enhancing PAM platforms, ensuring secure access and compliance across various systems. Responsibilities include integrating custom platforms, automating processes using Terraform and Ansible, and providing L2/L3 support.
Summary Generated by Built In
Company Description

Founded and headquartered in Switzerland, Avaloq is continuously expanding its global footprint with around 2,500 colleagues in 12 countries, and more than 170 clients in 35 countries. We are an industry-leading provider of wealth management technology and services for financial institutions around the world, including private banks and wealth managers, investment managers, as well as retail and neo banks. Our research led approach and continual innovation is powered by the passion and creativity of our colleagues.

We are always looking for talented people to join us on our mission to orchestrate the financial ecosystem and democratize access to wealth management. Avaloq offers the opportunity to work closely with some of the world’s leading financial institutions as we jointly develop and shape careers. Championing a collaborative, supportive and flexible work environment empowers our colleagues to reach their full potential.

Job Description

As a One Identity Safeguard Engineer, you will be part of Avaloq’s Identity & Access Management (IAM) function, with full accountability for Privileged Access Management (PAM) platforms. The role focuses on engineering, integrating, and operating One Identity Safeguard, ensuring secure privileged access, system hardening, and compliance across standard and custom platforms.

Responsibilities:

Privileged Access Management (PAM):

  • Engineer, operate, and enhance One Identity Safeguard (password vaulting, session management, access policies).
  • Define, enforce, and maintain privileged credential and password management standards.
  • Onboard enterprise, legacy, cloud, and custom-built platforms into Safeguard.
  • Design and implement custom PAM integrations, including:
  • Authoring and maintaining JSON-based platform definitions
  • API-based integrations and custom authentication mechanisms
  • Troubleshooting non-standard access flows
  • Integrate Safeguard with authentication services, monitoring, and logging solutions.
  • Ensure platform availability, performance monitoring, and incident resolution.

PAM Operations & Engineering

  • Execute platform upgrades, patching, and configuration changes for Safeguard components.
  • Perform health checks, log analysis, and advanced diagnostics.
  • Apply security hardening and PAM baselines in line with Avaloq security and audit requirements.
  • Monitor and manage PAM license usage and compliance.
  • Provide L2/L3 support for PAM-related incidents and problem management.

Automation & Tooling

  • Automate PAM onboarding, configuration, and reporting using Terraform and Ansible.
  • Develop and maintain PowerShell scripts supporting PAM operations and integrations.
  • Use SQL for troubleshooting, reporting, and customization where required.
  • Proactively identify opportunities to reduce manual operations through automation.

Documentation & Compliance

  • Create and maintain clear, audit-ready documentation, including SOPs and runbooks.
  • Support internal and external audits, security assessments, and control validations related to PAM.

Qualifications

  • Degree in Computer Science, IT Engineering, or equivalent professional experience.
  • 5+ years of hands-on experience in Privileged Access Management (PAM).
  • Strong, proven expertise with One Identity Safeguard (or equivalent enterprise PAM platforms such as CyberArk, BeyondTrust, Delinea).
  • Demonstrated experience integrating custom and non-standard platforms into PAM, including: Writing and maintaining JSON configurations
  • REST / API-based integrations
  • Solid knowledge of Active Directory, Azure AD / Entra ID, LDAP, and authentication protocols.
  • Practical experience with Terraform, Ansible, and PowerShell; SQL knowledge is an advantage.
  • Strong analytical mindset, documentation discipline, and security awareness.
  • Fluent English required.

Additional Information

We realize that managing work life balance is a challenge we all face in our daily lives and in order to support with this we are pleased to offer hybrid and flexible working for most of our Avaloqers to maintain work life balance and still continue our fantastic Avaloq culture in our global offices. 

In Avaloq we are proud to embrace diversity and understand the success of our business is built on the power of different opinions, we are whole heartedly committed to fostering an equal opportunity environment and inclusive culture where you can be your true authentic self. 

We hire, compensate and promote regardless of origin, age, gender identity, sexual orientation or any other fantastic traits that make us all unique, we have done our best to write this advert in an inclusive and neutral way. 

Please be aware that we will not accept speculative CV submissions for any of our roles from recruitment agencies, and any unsolicited candidate submissions will be exempt from any payment expectations.  

#LI-Hybrid

Skills Required

  • Degree in Computer Science, IT Engineering, or equivalent
  • 5+ years of hands-on experience in Privileged Access Management (PAM)
  • Strong expertise with One Identity Safeguard or equivalent enterprise PAM platforms
  • Experience with JSON configurations and REST/API-based integrations
  • Solid knowledge of Active Directory and authentication protocols
  • Practical experience with Terraform, Ansible, PowerShell; SQL knowledge is an advantage.
  • Fluent English required
Am I A Good Fit?
beta
Get Personalized Job Insights.
Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.

The Company
HQ: Zürich
2,397 Employees
Year Founded: 1985

What We Do

Avaloq is a premium provider of front-to-back software and services for over 160 financial institutions around the world. Our clients include private banks, wealth managers and investment managers, as well as retail and neo banks. We develop software that can be deployed flexibly through cloud-based Software as a Service (SaaS) or on-premises, and we offer Banking Operations outsourcing through our Business Process as a Service (BPaaS) model. Avaloq is a subsidiary of NEC Corporation, a global leader in the integration of IT and network technologies.

Similar Jobs

Remitly Logo Remitly

Treasury Analyst

eCommerce • Fintech • Payments • Software • Financial Services
In-Office
Manila, Metro Manila, National Capital Region, PHL
2800 Employees

Comcast Logo Comcast

Network Activation Engineer (Hybrid)

Digital Media • Information Technology • News + Entertainment
Hybrid
Pasig, Eastern Manila District, National Capital Region, PHL
115000 Employees

Remitly Logo Remitly

Senior Auditor, IT Audit

eCommerce • Fintech • Payments • Software • Financial Services
In-Office
2 Locations
2800 Employees

Optum Logo Optum

Instructional Designer

Artificial Intelligence • Big Data • Healthtech • Information Technology • Machine Learning • Software • Analytics
Hybrid
Makati City, Metro Manila, National Capital Region, PHL
160000 Employees

Similar Companies Hiring

Amplify Platform Thumbnail
Fintech • Financial Services • Consulting • Cloud • Business Intelligence • Big Data Analytics
Scottsdale, AZ
62 Employees
Standard Template Labs Thumbnail
Artificial Intelligence • Information Technology • Software
New York, NY
25 Employees
Golden Pet Brands Thumbnail
Digital Media • eCommerce • Information Technology • Marketing Tech • Pet • Retail • Social Media
El Segundo, California
178 Employees

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account