At Bayer we’re visionaries, driven to solve the world’s toughest challenges and striving for a world where ,Health for all, Hunger for none’ is no longer a dream, but a real possibility. We’re doing it with energy, curiosity and sheer dedication, always learning from unique perspectives of those around us, expanding our thinking, growing our capabilities and redefining ‘impossible’. There are so many reasons to join us. If you’re hungry to build a varied and meaningful career in a community of brilliant and diverse minds to make a real difference, there’s only one choice.

 

IAM Engineer 

 

For Digital Hub Warsaw, we are looking for:

 

IAM Engineer

The Identity and Access Management (IAM) Engineer in the Identity Platforms Engineering team will play a critical role in defining security IAM strategy, setting direction, project consulting, policy and standards creation, and providing secure IAM solutions to protect Bayer’s applications, infrastructure, and intellectual property across the global IT environment. The scope of this position covers identity lifecycle management while incorporating security into all decisions and daily job responsibilities.

 

Key Tasks & Responsibilities:

• Design and implement IAM solutions leveraging SailPoint IdentityNow and Microsoft Entra ID to secure systems and data.

• Collaborate with various teams to define requirements, design solutions, and integrate IAM systems with existing applications.

• Manage user identities, roles, and access permissions across multiple platforms.

• Develop and enforce IAM policies and procedures to meet security and compliance standards.

• Perform access reviews, audits, and risk assessments to maintain security integrity.

• Monitor IAM systems for security issues and respond to incidents proactively.

• Automate IAM processes to enhance efficiency using scripting and automation tools.

• Provide expert guidance on IAM issues and lead IAM initiatives.

• Keep abreast of new IAM technologies and security trends to continually refine our practices.

• Work closely with security teams during incident responses to mitigate threats.

• Ensure IAM solutions are aligned with overall IT architecture through cooperation with enterprise architecture teams.

• Maintain effective communication across teams regarding project status, timelines, and changes.

 

Qualifications & Competencies (education, skills, experience):

• Bachelor’s degree in Computer Science, Information Systems, or a related field.

• 5 years of experience in IT with a focus on identity lifecycle, access management, system integration, and entitlements management.

• 5 years of experience in two or more of the following areas:

Identity LifecycleAccess GovernanceAuthenticationCloud Identity ManagementCustomer IAMPrivileged Access Management

• 3 years of experience with cloud automation tools like AWS CloudFormation or HashiCorp Terraform.

• Proficiency in IAM integration patterns and standards (e.g., SAML, OAuth, OpenID Connect).

• Strong problem-solving abilities with a knack for complex systems.

• Excellent communication skills and ability to convey technical details to a non-technical audience.

• Preferred certifications: CISSP, CISM, CIAM.

• Familiarity with IAM governance frameworks (NIST, ISO 27001, GDPR) is beneficial.

 

Preferred:

• Experience with one or more IAM platforms (e.g., SailPoint, Savyint, Okta, CyberArk, HashiCorp).

• Solid background in Web Access Management architecture and implementation.

• Certifications: Microsoft SC-, AZ-, SailPoint IdentityNow Engineer.

• Understanding of DevOps practices and tools for IAM operations.

• Skilled in scripting languages like Python and PowerShell for automation.

• Experience with containerization and orchestration tools (Amazon ECS, EKS, Docker, Kubernetes).

• Independent worker and collaborative team player in a dynamic setting.

• Strong leadership and mentoring skills with the ability to manage multiple projects and priorities effectively. 

 

What do We offer:

• A flexible, remote-hybrid work model

• Great workplace in a new modern office in Warsaw

• Career development, 360° Feedback & Mentoring programme

• Wide access to professional development tools, trainings, & conferences

• Company Bonus & Reward Structure

• VIP Medical Care Package (including Dental & Mental health)

• Holiday allowance (“Wczasy pod gruszą”)

• Life & Travel Insurance

• Pension plan

• Co-financed sport card - FitProfit

• Meals Subsidy in Office

• Additional days off

• Budget for Home Office Setup & Maintenance

• Access to Company Game Room equipped with table tennis, soccer table, Sony PlayStation 5 and Xbox Series X consoles setup with premium game passes, and massage chairs

• Tailored-made support in relocation to Warsaw when needed

• Please send your CV in English

  YOUR APPLICATION   

Bayer welcomes applications from all individuals, regardless of race, national origin, gender, age, physical characteristics, social origin, disability, union membership, religion, family status, pregnancy, sexual orientation, gender identity, gender expression or any unlawful criterion under applicable law. We are committed to treating all applicants fairly and avoiding discrimination.

Bayer is committed to providing access and reasonable accommodations in its application process for individuals with disabilities and encourages applicants with disabilities to request any needed accommodation(s) using the contact information below. 

Bayer offers the possibility of working in a hybrid model. We know how important work-life balance is, so our employees can work from home, from the office or combine both work environments. The possibilities of using the hybrid model are each time discussed with the manager.
 

     Location:Poland : Mazowieckie : Warszawa    Division:CSRM Reference Code:819532   

 

 

Location:

Poland : Mazowieckie : Warszawa  

 

Division:

CSRM

 

Reference Code:

819532