Identity and Access Engineer (f/m/d), 100%

To drive our continuous organic growth, we are seeking an experienced IAM & Access Control Engineer to strengthen our team in the Global IT, Security and Compliance department. The role will focus on identity governance and platform engineering, operating, extending and optimizing the One Identity platform, and contributing to access control enforcement and the evolution of our identity security model.

Requirements

• Bachelor's or Master's degree in Information Security, Computer Science, or Engineering
• Hands-on experience with Identity Governance platforms (preferably One Identity Manager)
• Strong experience designing workflows, role models and integrations in IGA environments
• Experience with Microsoft Entra ID and Conditional Access is a strong advantage
• Experience implementing or supporting Privileged Access / PIM programs
• Strong understanding of identity security risks (privilege escalation, legacy authentication, service account exposure)
• Knowledge of security frameworks and standards (ISO 27001, NIST, CIS, MITRE ATT&CK)
• Ability to work in complex identity environments and progressively expand into adjacent domains such as access control enforcement and privileged access
• Excellent communication skills to collaborate with IT, OT, and business stakeholders
• Analytical mindset with problem-solving ability

Benefits

• Flexible working hours with home office days and an option for obtaining additional vacation days through workload reduction
• Employee development through numerous internal and external training opportunities
• 60% coverage of pension fund contributions by Bachem AG as well as option for extra-mandatory pension provision with our Pension Plan Plus
• Access to the Swibeco benefits platform with discounts from external partners
• Fresh, healthy and varied food in our staff restaurant
• A wide range of free sports activities on the Bachem Campus