IDAM Engineer
AVEVA • United States of America, Philadelphia, Pennsylvania, United States of America, Lake Forest, California, United States of America
Posted: May 12, 2026
Job Description
AVEVA is creating software trusted by over 90% of leading industrial companies.
Salary Range:
$92,100.00 - $192,500.00This pay range represents the minimum and maximum compensation that the position offers, and final compensation can vary within the range depending on work location, job experience, skills, and relevant educational attainment and/or training.
Job Title: IDAM Engineer
Location: Philadelphia, PA/ Lake Forest, CA
Employment Type :Full time
The job
AVEVA is looking for an Identity & Access Management (IAM) Engineer with a strong automation mindset to join our global IT team. This role focuses on engineering scalable, automated IAM services for workforce identities, using SailPoint as the enterprise Identity Governance (IGA) platform.
The successful candidate will be expected to reduce manual IAM operations, automate identity lifecycle processes, and build repeatable, code‑driven solutions for access management in a complex hybrid environment.
You will work closely with Security, Infrastructure, HR, and Service Management teams to deliver reliable, efficient, and secure identity services.
Key Responsibilities
Engineer and operate automated IAM solutions for workforce identities
Support and enhance SailPoint with a focus on automation, scalability, and governance
Design, implement, and optimise automated Joiner‑Mover‑Leaver (JML) processes
Automate IAM access request fulfilment via ServiceNow.
Develop code‑driven workflows and integrations to eliminate manual IAM tasks
Support and maintain Active Directory and Entra ID (Azure AD) environments
Manage authentication, authorisation, roles, and entitlements
Automate access certifications, reviews, and compliance reporting
Respond to IAM‑related incidents with a focus on root cause fixes through automation
Produce and maintain documentation, diagrams, and operational runbooks
Collaborate with Security teams to strengthen identity controls
Leverage scripting and AI‑assisted tools to improve efficiency and reporting
Essential Skills and Experience
Hands‑on experience in Identity & Access Management engineering
Hands‑on SailPoint experience is required (IdentityIQ, IdentityNow, or similar)
Strong experience engineering automated identity lifecycle processes
Experience automating IAM workflows using PowerShell, APIs, or orchestration tools
Solid understanding of SSO and authentication protocols (SAML, OAuth2, OpenID Connect, Kerberos, LDAP)
Experience supporting Active Directory and Entra ID in hybrid environments
Experience producing automated reports for audit and compliance
Strong analytical, problem‑solving, and communication skills
Desirable Skills and Experience
Experience working with ServiceNow and/or Jira for workflow automation or integrations
Exposure to broader information security or identity security domains
Familiarity with DevOps or CI/CD environments, including identity controls
Bachelor’s degree in Computer Science, Engineering, Mathematics, or related field, or equivalent experience
Relevant IAM or security certifications (e.g. SailPoint, Microsoft Identity)
Strong written and verbal communication skills
Customer‑focused mindset, delivering secure and user‑friendly IAM services
Growth mindset, passionate about learning new tools and technologies
Ability to work independently while contributing to a global team
Digital Security at AVEVA
Our Digital Security team is responsible for protecting AVEVA’s digital assets and keeping the company’s data and IP secure. We’re also playing a critical role in AVEVA’s move to the cloud.
As cyber threats grow and more and more data moves into the cloud, the importance of our role is only going to grow. If you’re a collaborative problem solver that’s passionate about cybersecurity, you’ll find fulfilment and opportunity in our team.
Find out more: https://www.aveva.com/en/about/careers/
USA Benefits include:
Flex work hours, 20 days PTO rising to 25 with service, three paid volunteering days, primary and secondary parental leave, well-being support, medical, dental, vision, and 401K.
It’s possible we’re hiring for this position in multiple countries, in which case the above benefits apply to the primary location. Specific benefits vary by country, but our packages are similarly comprehensive.
Find out more: aveva.com/en/about/careers/benefits/
Hybrid working
By default, employees are expected to be in their local AVEVA office three days a week, but some positions are fully office-based. Roles supporting particular customers or markets are sometimes remote.
Hiring process
Interested? Great! Get started by submitting your cover letter and CV through our application portal. AVEVA is committed to recruiting and retaining people with disabilities. Please let us know in advance if you need reasonable support during your application process.
Find out more: aveva.com/en/about/careers/hiring-process
About AVEVA
AVEVA is a global leader in industrial software with more than 6,500 employees in over 40 countries. Our cutting-edge solutions are used by thousands of enterprises to deliver the essentials of life – such as energy, infrastructure, chemicals, and minerals – safely, efficiently, and more sustainably.
We are committed to embedding sustainability and inclusion into our operations, our culture, and our core business strategy. Learn more about how we are progressing against our ambitious 2030 targets: sustainability-report.aveva.com/
Find out more: aveva.com/en/about/careers/
AVEVA requires all successful applicants to undergo and pass a drug screening and comprehensive background check before they start employment. Background checks will be conducted in accordance with local laws and may, subject to those laws, include proof of educational attainment, employment history verification, proof of work authorization, criminal records, identity verification, credit check. Certain positions dealing with sensitive and/or third-party personal data may involve additional background check criteria.
AVEVA is an Equal Opportunity Employer. We are committed to being an exemplary employer with an inclusive culture, developing a workplace environment where all our employees are treated with dignity and respect. We value diversity and the expertise that people from different backgrounds bring to our business. AVEVA provides reasonable accommodation to applicants with disabilities where appropriate. If you need reasonable accommodation for any part of the application and hiring process, please notify your recruiter. Determinations on requests for reasonable accommodation will be made on a case-by-case basis.
Additional Content
AVEVA is creating software trusted by over 90% of leading industrial companies.
Salary Range:
$92,100.00 - $192,500.00This pay range represents the minimum and maximum compensation that the position offers, and final compensation can vary within the range depending on work location, job experience, skills, and relevant educational attainment and/or training.
Job Title: IDAM Engineer
Location: Philadelphia, PA/ Lake Forest, CA
Employment Type :Full time
The job
AVEVA is looking for an Identity & Access Management (IAM) Engineer with a strong automation mindset to join our global IT team. This role focuses on engineering scalable, automated IAM services for workforce identities, using SailPoint as the enterprise Identity Governance (IGA) platform.
The successful candidate will be expected to reduce manual IAM operations, automate identity lifecycle processes, and build repeatable, code‑driven solutions for access management in a complex hybrid environment.
You will work closely with Security, Infrastructure, HR, and Service Management teams to deliver reliable, efficient, and secure identity services.
Key Responsibilities
Engineer and operate automated IAM solutions for workforce identities
Support and enhance SailPoint with a focus on automation, scalability, and governance
Design, implement, and optimise automated Joiner‑Mover‑Leaver (JML) processes
Automate IAM access request fulfilment via ServiceNow.
Develop code‑driven workflows and integrations to eliminate manual IAM tasks
Support and maintain Active Directory and Entra ID (Azure AD) environments
Manage authentication, authorisation, roles, and entitlements
Automate access certifications, reviews, and compliance reporting
Respond to IAM‑related incidents with a focus on root cause fixes through automation
Produce and maintain documentation, diagrams, and operational runbooks
Collaborate with Security teams to strengthen identity controls
Leverage scripting and AI‑assisted tools to improve efficiency and reporting
Essential Skills and Experience
Hands‑on experience in Identity & Access Management engineering
Hands‑on SailPoint experience is required (IdentityIQ, IdentityNow, or similar)
Strong experience engineering automated identity lifecycle processes
Experience automating IAM workflows using PowerShell, APIs, or orchestration tools
Solid understanding of SSO and authentication protocols (SAML, OAuth2, OpenID Connect, Kerberos, LDAP)
Experience supporting Active Directory and Entra ID in hybrid environments
Experience producing automated reports for audit and compliance
Strong analytical, problem‑solving, and communication skills
Desirable Skills and Experience
Experience working with ServiceNow and/or Jira for workflow automation or integrations
Exposure to broader information security or identity security domains
Familiarity with DevOps or CI/CD environments, including identity controls
Bachelor’s degree in Computer Science, Engineering, Mathematics, or related field, or equivalent experience
Relevant IAM or security certifications (e.g. SailPoint, Microsoft Identity)
Strong written and verbal communication skills
Customer‑focused mindset, delivering secure and user‑friendly IAM services
Growth mindset, passionate about learning new tools and technologies
Ability to work independently while contributing to a global team
Digital Security at AVEVA
Our Digital Security team is responsible for protecting AVEVA’s digital assets and keeping the company’s data and IP secure. We’re also playing a critical role in AVEVA’s move to the cloud.
As cyber threats grow and more and more data moves into the cloud, the importance of our role is only going to grow. If you’re a collaborative problem solver that’s passionate about cybersecurity, you’ll find fulfilment and opportunity in our team.
Find out more: https://www.aveva.com/en/about/careers/
USA Benefits include:
Flex work hours, 20 days PTO rising to 25 with service, three paid volunteering days, primary and secondary parental leave, well-being support, medical, dental, vision, and 401K.
It’s possible we’re hiring for this position in multiple countries, in which case the above benefits apply to the primary location. Specific benefits vary by country, but our packages are similarly comprehensive.
Find out more: aveva.com/en/about/careers/benefits/
Hybrid working
By default, employees are expected to be in their local AVEVA office three days a week, but some positions are fully office-based. Roles supporting particular customers or markets are sometimes remote.
Hiring process
Interested? Great! Get started by submitting your cover letter and CV through our application portal. AVEVA is committed to recruiting and retaining people with disabilities. Please let us know in advance if you need reasonable support during your application process.
Find out more: aveva.com/en/about/careers/hiring-process
About AVEVA
AVEVA is a global leader in industrial software with more than 6,500 employees in over 40 countries. Our cutting-edge solutions are used by thousands of enterprises to deliver the essentials of life – such as energy, infrastructure, chemicals, and minerals – safely, efficiently, and more sustainably.
We are committed to embedding sustainability and inclusion into our operations, our culture, and our core business strategy. Learn more about how we are progressing against our ambitious 2030 targets: sustainability-report.aveva.com/
Find out more: aveva.com/en/about/careers/
AVEVA requires all successful applicants to undergo and pass a drug screening and comprehensive background check before they start employment. Background checks will be conducted in accordance with local laws and may, subject to those laws, include proof of educational attainment, employment history verification, proof of work authorization, criminal records, identity verification, credit check. Certain positions dealing with sensitive and/or third-party personal data may involve additional background check criteria.
AVEVA is an Equal Opportunity Employer. We are committed to being an exemplary employer with an inclusive culture, developing a workplace environment where all our employees are treated with dignity and respect. We value diversity and the expertise that people from different backgrounds bring to our business. AVEVA provides reasonable accommodation to applicants with disabilities where appropriate. If you need reasonable accommodation for any part of the application and hiring process, please notify your recruiter. Determinations on requests for reasonable accommodation will be made on a case-by-case basis.