IAM Quality Engineer

• Develop and execute comprehensive test plans and test cases for IAM systems including authentication (MFA, SSO), authorization, role-based access control (RBAC), provisioning/de-provisioning, and audit logging.
• Collaborate with IAM architects, security engineers, and application teams to validate end-to-end access flows.
• Design and implement automated test scripts using tools such as Selenium, Postman, ReadyAPI, or custom frameworks for web, mobile, and API-based IAM flows.
• Perform negative, edge-case, and regression testing on login, identity federation (SAML/OIDC), user management, and permission-based access controls.
• Support and validate integrations with third-party identity providers (e.g., Okta, Azure AD, Auth0).
• Conduct security validation testing for IAM-related vulnerabilities such as insecure redirects, session hijacking, token leakage, and privilege escalation.
• Ensure test environments mimic production IAM configurations and manage test identities across environments.
• Review and maintain traceability matrices, test documentation, and compliance-aligned quality artifacts.
• Participate in Agile ceremonies and collaborate with cross-functional teams to embed quality early in the SDLC.
• Support performance and load testing of login/auth flows and analyze IAM-related metrics from logs and monitoring tools.

• 5+ years of experience in Quality Engineering or Test Automation, with 2+ years focused specifically on IAM systems.
• Strong understanding of IAM protocols and concepts: SAML, OAuth2, OIDC, MFA, RBAC, SCIM, JWT, and session/token handling.
• Proficient in testing and automating web, API, and mobile flows using tools like Selenium, Postman, ReadyAPI, Katalon, or similar.
• Experience working with identity providers (IdPs) such as Okta, Azure AD, Auth0, or custom SSO systems.
• Familiarity with security testing best practices and tools (e.g., OWASP ZAP, Burp Suite, Snyk, etc.).
• Strong scripting skills (e.g., Python, JavaScript, or Java) for test automation and utilities.
• Comfortable working in Agile environments and using CI/CD tools like GitHub Actions, Jenkins, or CircleCI.
• Excellent problem-solving skills, attention to detail, and a security-first mindset.
• Experience in regulated industries (e.g., healthcare, finance) is a strong plus.

• Experience with IAM auditing and compliance testing (e.g., SOX, HIPAA, HITRUST).
• Familiarity with IAM platforms like ForgeRock, Ping Identity, or Keycloak.
• Exposure to infrastructure-as-code or configuration automation for IAM systems (e.g., Terraform for Okta).
• Performance testing experience with tools like k6 or JMeter targeting login and token workflows.

Salary Range: 120,000 - 140,000