PAM Engineer IAM Transformation [Interim]
- Hybrid
- Amsterdam
Job description
Position: IAM PAM Engineer – IAM Transformation
Location: Hybrid, Amsterdam
Employment Type: Interim Position
Start Date: Jan 2026
Duration: Dec 2026
Workload: Full-time
About the Company
Our client is a leading technology organization within the retail sector, delivering reliable and innovative solutions that drive continuous improvement, security, and business continuity.
They are currently undergoing a large-scale Identity and Access Management (IAM) Transformation Program — and are looking for an experienced professional to help make it a success.
Are you the PAM Engineer who can make an impact?
Do you have a passion for cloud security, privileged access, and automation?
Do you enjoy working with multidisciplinary teams to build a secure, future-ready IAM landscape?
Then this is your opportunity to join a high-impact IAM Transformation Program as a PAM Engineer.
We’re seeking a professional with expertise in Microsoft Entra ID, Azure PIM, CyberArk, and Terraform, experienced in implementing and managing secure, scalable PAM solutions within complex enterprise environments.
About the Role
As an IAM PAM Engineer, you’ll be responsible for designing, implementing, and managing Privileged Access Management (PAM) solutions as part of the broader IAM Transformation Program.
Your focus will be on strengthening privileged account security, automating access processes, and integrating PAM functionality across cloud and on-premises infrastructures. You’ll collaborate with enablement and platform teams to deliver modern PAM services across multiple brands and business units.
Key Responsibilities
Design, implement, and manage Privileged Access Management solutions using Microsoft Entra ID PIM and CyberArk.
Define and maintain PAM processes and workflows for privileged account lifecycle management, access elevation, approvals, and monitoring.
Build Infrastructure-as-Code (IaC) components with Terraform to automate and standardize PAM infrastructure and policies.
Develop CI/CD pipelines using GitHub Actions for deployment and configuration automation.
Integrate PAM with broader IAM services (Entra ID, SailPoint, Azure AD groups, RBAC).
Support application and infrastructure teams with onboarding, access modeling, role mapping, and policy configuration.
Configure Azure RBAC policies and Conditional Access scenarios for privileged identities.
Monitor PAM usage, report on security events, and contribute to audits and compliance activities.
Advise on continuous improvements to privileged access processes, with a strong focus on automation and security best practices.
Troubleshoot and optimize PAM functionality across hybrid environments.
What’s on Offer
A challenging interim role within a fast-evolving digital environment.
The opportunity to contribute to a business-critical transformation with visible impact.
Competitive market hourly rate, depending on experience.
Flexible working hours and hybrid setup.
A collaborative and forward-thinking technology culture.
Your Profile
Bachelor’s or Master’s degree in Computer Science, Cybersecurity, or a related field.
Minimum of 3 years’ experience as a PAM Engineer, Cloud Security Engineer, or IAM Engineer in enterprise environments.
Strong expertise in Microsoft Entra ID PIM and/or CyberArk.
Proficient with Terraform for building reusable IAM/PAM infrastructure.
Familiarity with Azure Cloud Services, including RBAC, Conditional Access, and Identity Governance.
Experience with CI/CD automation using GitHub and GitHub Actions.
Solid understanding of security principles, compliance standards, and identity lifecycle management.
Experience working within hybrid (on-prem and cloud) environments.
Excellent communication skills in English (Dutch is a plus).
Proactive, analytical, and results-oriented with a focus on quality and security.
or
All done!
Your application has been successfully submitted!
