Engineer, Global Identity and Access Management at Colliers International EMEA

Madrid, Community of Madrid, Spain -

Full Time

Start Date

Immediate

Expiry Date

15 Jun, 26

Salary

0.0

Posted On

17 Mar, 26

Experience

5 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

Skills

Saviynt IGA, Identity Lifecycle Management, Access Requests, Certifications, Policy Enforcement, Active Directory, Entra ID, JML Workflows, Access Review Campaigns, SoD Policies, Provisioning, REST APIs, PowerShell, Java, SAML, OIDC

Industry

Real Estate

Description

Company Description Colliers is a leading diversified professional services and investment management company. With operations in 68 countries, our 22,000 enterprising people work collaboratively to provide expert advice to maximize the potential of property and real assets to accelerate the success of our clients, our investors and our people. We are at the forefront of the real estate industry, leading the way and backed by an exceptional record of success. We are building for our future – and yours. We strive to build our business at a competitive pace by augmenting internal growth with smart strategic acquisitions that increase market share, expand service offerings and extend our geographic reach for the benefit of our clients and shareholders. For more than 29 years, Colliers has created value for shareholders that has resulted in superior returns and industry growth. Our people also own significant equity in our business, which brings pride of ownership to everything we do. We are passionate, take personal responsibility and always do what's right for our clients, people and communities. Job Description Responsibilities Design, configure, and deploy Saviynt IGA solutions to support identity lifecycle management, application onboarding, access requests, certifications, and policy enforcement. Onboard human and machine identities, applications, and directories (e.g., Active Directory, Entra ID) into Saviynt. Develop and maintain joiner-mover-leaver workflows, access review campaigns, and SoD policies. Troubleshoot and resolve provisioning, access, and entitlement issues; provide L2/L3 support and coordinate with vendors as needed. Collaborate with internal teams (Security, HR, IT Ops, Application Owners) to align IAM solutions with business needs. Good communication skills and experience working with internal teams and partners. Document technical designs, configuration guides, and runbooks for IAM processes. Identify opportunities for automation and continuous improvement within the IAM ecosystem. Qualifications Knowledge, Skills & Abilities 5–7 years of experience in IAM engineering, with at least 3 years hands-on with Saviynt. Strong understanding of identity lifecycle, RBAC, and access governance principles. Experience integrating Saviynt with AD/Azure AD, HR systems, and cloud applications. Familiarity with SSO protocols (SAML, OIDC), REST APIs, and connector frameworks. Proficiency in scripting (PowerShell, Java) and troubleshooting IAM workflows. Excellent communication skills and experience working in global, cross-functional teams. Requirements 3+ years hands-on experience with Saviynt. Familiarity with PAM tools such as CPAM, Thycotic, BeyondTrust, CyberArk. Proficiency with cloud platforms (Azure, AWS, GCP). 5–7 years of relevant IAM experience. Saviynt Certified IGA Professional preferred. Experience with AD, EntraID, Google Cloud, PKI. Background in compliance frameworks (SOX, GDPR, etc.).

Responsibilities

The role involves designing, configuring, and deploying Saviynt IGA solutions for identity lifecycle management, application onboarding, and access governance, including developing and maintaining workflows and policies.