IAM Engineer (Nexus Smart ID Specialist)

Role Level: L2+ / Senior

Location: Bangalore

Focus: SSO Administration, Solution Integration, and Platform Ownership

Role Overview

We are seeking a highly skilled and autonomous IAM (Identity and Access Management)

Engineer to take full ownership of our identity ecosystem centered around Nexus Smart ID. As

the primary engineer for this solution, you will be responsible for the end-to-end lifecycle of

digital identities, seamless SSO integrations, and the maintenance of secure access protocols.

While direct experience with Nexus Smart ID is a plus, we are looking for a powerhouse IAM

professional with deep experience in other major OEM solutions (such as Ping Identity, Okta,

ForgeRock, or SailPoint) who possesses the technical agility to master and manage the Nexus

suite.

Key Responsibilities

● Solution Ownership: Single-handedly manage, configure, and optimize the Nexus

Smart ID platform, including Digital ID management and Certificate Management (PKI).

● SSO & Federation: Lead the integration of internal and third-party applications using

SAML 2.0, OpenID Connect (OIDC), and OAuth 2.0.

● Integration Engineering: Develop and maintain connectors between the IAM solution

and target systems (Active Directory, Cloud Service Providers).

● Infrastructure) and Certificate-Based Authentication (CBA) within the Nexus suite.

● Bridge Integration: Configure and maintain identity providers (IdP) and service

providers (SP) using SAML, OIDC, and OAuth.

● Administration: Manage the day-to-day operations of the IDAM infrastructure, including

user provisioning, access certification, and troubleshooting complex authentication

issues.

● Security Alignment: Ensure the platform adheres to the Principle of Least Privilege

(PoLP) and supports a Zero Trust architecture.

● Documentation: Create and maintain technical architecture diagrams, integration

guides, and standard operating procedures (SOPs).

Technical Requirements

● Core IAM Expertise: 4+ years of experience in Identity & Access Management at an L2

or Senior level.

● Protocol Mastery: Deep understanding of SAML, OIDC, OAuth, LDAP, and Kerberos.

● PKI Knowledge: Strong understanding of Certificate-Based Authentication (CBA) and

Public Key Infrastructure (PKI)—this is critical for the Nexus environment.

● OEM Tooling: Proven experience with at least one major IAM platform (Nexus, Okta,

Ping, ForgeRock, Microsoft Entra ID/Azure AD).

● Scripting: Proficiency in PowerShell, Python, or Bash for automating routine identity

tasks and API integrations.

● Infrastructure: Familiarity with Web Servers (IIS/Apache/Tomcat) and Windows/Linux

server administration.

Soft Skills

● Autonomy: Ability to work independently as the sole point of contact for the identity

solution.

● Problem-Solving: A "root-cause" mindset when troubleshooting integration failures.

● Adaptability: Proven ability to learn new software suites (like Nexus) rapidly based on

prior experience with similar tools.

Preferred Qualifications

● Experience specifically with Nexus Smart ID or Nexus Certificate Manager.

● Relevant certifications: CIAM, or vendor-specific certs (Okta Certified Professional, Ping

• Identity Certified, etc.).