Principal Consultant - Lead Identity & Access Engineer (IAM Lead)

Hyderabad, Telangana
Permanent
Full-time

24 days ago

Ready to build the future with AI?
At Genpact, we don’t just keep up with technology—we set the pace. AI and digital innovation are redefining industries, and we’re leading the charge. Genpact’s AI Gigafactory, our industry-first accelerator, is an example of how we’re scaling advanced technology solutions to help global enterprises work smarter, grow faster, and transform at scale. From large-scale models to agentic AI, our breakthrough solutions tackle companies’ most complex challenges.
If you thrive in a fast-moving, innovation-driven environment, love building and deploying cutting-edge AI solutions, and want to push the boundaries of what’s possible, this is your moment.
Genpact (NYSE: G) is an advanced technology services and solutions company that delivers lasting value for leading enterprises globally. Through our deep business knowledge, operational excellence, and cutting-edge solutions – we help companies across industries get ahead and stay ahead. Powered by curiosity, courage, and innovation, our teams implement data, technology, and AI to create tomorrow, today. Get to know us at genpact.com and on LinkedIn, X, YouTube, and Facebook.Inviting applications for the role of Principal Consultant - Lead Identity & Access Engineer (IAM Lead)
Responsibilities
Identity Platform Ownership (Operational & Engineering Execution)

Provide unified operational ownership of:

o Active Directory
o Entra ID
o MFA
o Conditional Access
o Saviynt IGA
o PKI / ADCS

Manage and maintain IAM platforms in accordance with Client policies and standards.
Perform platform (tool) security administration for IAM systems using approved privileged access mechanisms.

Identity Lifecycle & Access Governance

Operate and support identity lifecycle management processes (onboarding, offboarding, transfers).
Execute and monitor access request workflows and approvals within Saviynt.
Support and execute access certification campaigns and reviews.
Support RBAC model maintenance and access package administration.
Perform SoD operational support activities including:

o Identification of violations
o Routing for remediation
o Documentation of corrective actions
Conditional Access & Authentication Controls

Maintain and update Conditional Access policies per approved changes.
Monitor authentication health and respond to authentication-related incidents.
Support MFA configuration and operational troubleshooting.
Ensure alignment with least-privilege principles in IAM configurations as directed.

PKI & Certificate Management
Manage internal certificate issuance, renewal, and revocation via ADCS.

Monitor certificate expiration and support remediation.
Support PKI-related recovery scenarios where required.
Maintain certificate lifecycle documentation.

Audit, Logging & Compliance Support

Maintain sufficient IAM-related logs and artifacts to support regulatory and audit needs.
Support audit requests by producing required IAM evidence and documentation.
Support integration of IAM logs into Client’ SIEM (where directed).
Maintain IAM documentation, SOPs, escalation paths, and configuration records.

Incident, Change & Problem Management

Participate in major incident resolution related to IAM services.
Provide RCA inputs for IAM-related outages or repeat issues.
Execute approved IAM changes following Client change management procedures.
Support service continuity and restoration activities for IAM services.

Qualifications we seek in you!
Minimum Qualifications

Bachelor’s degree in computer science, Information Security, or equivalent.
Preferred certifications:

o Microsoft Identity certifications
o CISSP or equivalent
o Saviynt-related certification (preferred)

Demonstrated experience supporting regulated enterprise environments.

Preferred Qualifications/ Skills

Good Years of exp on enterprise IAM engineering and operations experience.
Deep hands-on expertise in:
Active Directory (multi-domain environments)
Microsoft Entra ID
MFA and Conditional Access policy administration
Saviynt IGA administration
PKI / ADCS certificate services
Experience supporting:
Identity lifecycle management (Joiner/Mover/Leaver)
Access requests and approvals workflows
Access certifications and reviews
Role-Based Access Control (RBAC)
Segregation of Duties (SoD) operational remediation support
Experience in privileged access support (where IAM-related), service account governance, and non-human identity oversight.
Strong understanding of audit and compliance requirements (SOX, ISO, NIST CSF where applicable).
Experience integrating IAM logs with enterprise SIEM platforms (operational support level).
Strong change management and documentation discipline.

Genpact is an Equal Opportunity Employer and considers applicants for all positions without regard to race, color, religion or belief, sex, age, national origin, citizenship status, marital status, military/veteran status, genetic information, sexual orientation, gender identity, physical or mental disability or any other characteristic protected by applicable laws. Genpact is committed to creating a dynamic work environment that values diversity and inclusion, respect and integrity, customer focus, and innovation. Get to know us at genpact.com and on LinkedIn, X, YouTube, and Facebook.
Furthermore, please do note that Genpact does not charge fees to process job applications and applicants are not required to pay to participate in our hiring process in any other way. Examples of such scams include purchasing a 'starter kit,' paying to apply, or purchasing equipment or training.

Genpact

Apply Now