Ingénieur Sécurité Senior IAM SIEM
Identity & Access Management (IAM)|Security Information & Event Management (SIEM)
Position Summary :
The Senior Security Engineer – IAM & SIEM is responsible for the design, implementation, and operational management of the organization’s identity governance infrastructure and security monitoring capabilities. The role operates at the intersection of preventive control (IAM) and detective control (SIEM), requiring deep technical expertise, cross-functional leadership, and a strong understanding of regulatory frameworks applicable to the financial sector.
The incumbent acts as a subject-matter expert across the full IAM lifecycle and SIEM pipeline, from architecture design to incident triage, and is expected to autonomously drive projects from initiation to delivery with minimal supervision.
Key Responsibilities
· Identity & Access Management
o Design, deploy, and maintain enterprise IAM platforms (e.g., CyberArk, SailPoint, Microsoft Entra ID, Okta), including PAM, IGA, and federation services.
o Define and enforce access governance policies: RBAC, ABAC, SoD controls, and privileged access workflows.
o Lead IAM integration projects with critical systems (, cloud platforms, LDAP/AD, …) using standards such as SCIM, SAML 2.0, OAuth 2.0, and OpenID Connect.
o Conduct IAM risk assessments and remediate audit findings related to access control deficiencies.
· SIEM & Security Monitoring
o Architect, tune, and operate SIEM platforms (e.g.,Splunk,) including data ingestion, normalization, and correlation rule engineering.
o Develop and maintain detection content aligned with MITRE ATT&CK: use-case catalogue, detection logic, false-positive suppression, and alert lifecycle management.
o Define SIEM KPIs and ensure log coverage across critical assets (endpoints, network perimeter, IAM stack, cloud workloads).
o Lead SIEM-driven investigations and provide L3 support during major incidents; participate in post-incident reviews and lessons-learned.
o Collaborate with the SOC to improve SOAR playbook automation and reduce mean-time-to-detect (MTTD) and mean-time-to-respond (MTTR).
o Monitor and integrate threat intelligence feeds to enrich detection use cases.
Cross-Functional & Governance
· Contribute to the security architecture review for new projects and technology changes.
· Participate in the development and maintenance of security policies, standards, and procedures within the scope of IAM and monitoring.
Experience Requirements :
· Minimum 8 years in cybersecurity, with at least 5 years in a hands-on senior security engineering role.
· Minimum 5 years of proven operational experience with enterprise IAM/PAM platforms. Demonstrated delivery of IGA or PAM programs at scale.
· Minimum 4 years of SIEM engineering experience including content development, correlation rule authoring, and integration architecture
· Experience in a regulated environment (banking, insurance, fintech) is strongly preferred.
Certifications
· CISSP (Certified Information Systems Security Professional) – active and in good standing.
· Splunk Certified Architect
· SailPoint IdentityNow Certified Engineer or CyberArk Defender / Sentry
Technical Skills
· CyberArk PAM, SailPoint IIQ/IdentityNow, Microsoft Entra ID (Azure AD) or Okta,
· Splunk Enterprise Security
· SAML 2.0, OAuth 2.0, OpenID Connect, SCIM, LDAP, Kerberos, PKI/x.509
· AWS IAM
· MITRE ATT&CK, Cyber Kill Chain, NIST CSF
· ISO 27001, NIST SP 800-53, DORA, NIS2, CIS Controls
Behavioral Competencies
· Autonomous and delivery-oriented: capable of owning technical programs end-to-end with limited supervision.
· Strong analytical mindset: able to decompose complex security problems into structured, actionable solutions.
· Clear and concise communicator: comfortable presenting technical risks to non-technical stakeholders.
· Collaborative: works effectively across Security, IT, Risk, Compliance, and external audit teams.
· English and French (mandatory – working language for documentation and group reporting).
Description société
Europ-IT group provides IT services and engineering to corporate clients, small to medium sized business and other various companies throughout Europe.
Il n'y a pas d'offres.
All rights reserved © FreelanceDay 2026
FeelanceDay, date création entreprise 12-05-2017 - Il y a 9 ans, forme juridique : SARL unipersonnelle, noms commerciaux REESK DIGITAL SOLUTION, adresse postale 28 RUE DE LONDRES 75009 PARIS, numéro SIREN : 829739622, numéro SIRET (siège) : 2973962200019, numéro TVA Intracommunautaire : FR28829739622, numéro RCS Paris B 829 739 622, activité (Code NAF ou APE), edition de logiciels applicatifs (5829C)