Senior IAM Engineer, IBM Verify
We are seeking an experienced IBM Verify engineer who can architect, deploy, and operationalize enterprise identity and access management solutions across the full Verify platform. This role covers IBM Verify (SaaS), IBM Verify Identity Access for on-premises and hybrid access management, and integration with IBM Verify Identity Governance where lifecycle and certification are in scope.
This is not a support-only or console-administration role. The ideal candidate has designed and implemented Verify environments end-to-end, understands federation and access architecture, and can deploy and operate the containerized on-premises components reliably at scale.
This position is remote, but the candidate MUST be located in India.
Key Responsibilities
Platform Architecture and Deployment
Design and implement IBM Verify architecture across SaaS and hybrid enterprise environments
Stand up and configure IBM Verify Identity Access (v11), including reverse proxy, web and API gateways, and junction configuration
Deploy containerized Verify Identity Access on OpenShift or Kubernetes, including Helm-based configuration
Build multi-environment setups (DEV, QA, PROD) following platform best practices
Configure Verify SaaS tenants, application onboarding, and connectivity to enterprise systems
Implement secure configuration aligned with enterprise security standards
Authentication, Access, and Federation
Configure SSO across SAML, OIDC, and OAuth 2.0
Implement MFA, including passwordless, biometric, and one-time-passcode methods
Configure adaptive and risk-based access using the platform risk engine
Build identity orchestration and authentication flows using the no-code flow designer
Integrate consumer and workforce access use cases
Integration and Customization
Integrate IBM Verify with Active Directory, HR systems, and cloud directories
Onboard target applications using connectors, API-based provisioning, and SCIM
Configure provisioning policies, access governance, and certification campaigns where Verify Identity Governance is in scope
Implement role-based access control and segregation-of-duties controls
Develop custom adapters and API integrations where required
High Availability, Performance, and Resilience
Architect HA and failover for on-premises and containerized Verify Identity Access deployments
Design load balancing and failover strategies for hybrid components
Develop and test disaster recovery procedures for self-managed components
Tune performance, including connection pooling, session handling, and reconciliation throughput
Conduct capacity planning and resolve system bottlenecks
Note: HA, DR, and backup for the SaaS tier are managed by IBM. This work applies to the on-premises and containerized components the candidate owns.
Automation and DevOps
Automate builds and deployments using scripting (Shell, Python, Ansible)
Develop environment provisioning and configuration scripts
Support CI/CD integration for containerized Verify components
Maintain infrastructure-as-code where possible
Documentation and Knowledge Transfer
Create architecture diagrams and build documentation
Develop operational runbooks
Provide handover documentation to support teams
Required Qualifications
5+ years of hands-on IAM engineering experience, with significant time on IBM Verify (SaaS and Verify Identity Access / ISAM)
Proven experience designing and implementing Verify environments end-to-end
Strong experience with federation standards: SAML, OIDC, OAuth 2.0
Strong experience with SSO, MFA, passwordless, and adaptive access configuration
Experience deploying and operating Verify Identity Access, including reverse proxy and junction configuration
Experience with container orchestration (OpenShift or Kubernetes) for self-managed components
Experience integrating with Active Directory and enterprise systems
Strong understanding of identity governance concepts (IGA, RBAC, certification campaigns, SoD)
Linux system administration and strong scripting skills (Shell, Python)
Experience working in enterprise production environments
Preferred Qualifications
Experience migrating from ISAM or ISIM/ISVG to the current Verify platform
Familiarity with IBM Verify Identity Governance (v11) and hybrid SaaS plus on-premises governance use cases
Experience with API authorization and identity orchestration flows
Knowledge of enterprise load balancers (F5, Netscaler)
Experience in regulated industries (financial services, healthcare, government)
Security certifications (CISSP, CISM) or IAM-specific certifications
Key Competencies
Strong access and federation architecture skills
Strong troubleshooting and root cause analysis
Ability to design scalable and resilient hybrid architectures
Strong documentation and communication skills
Independent ownership of the platform lifecycle
What Success Looks Like
A fully operational Verify environment spanning SaaS and self-managed components
SSO, MFA, and adaptive access deployed and validated across target applications
Failover tested for self-managed components
Clean architecture documentation and operational handoff
A stable, scalable identity and access platform ready for enterprise production use