Rolex Identity & Access Management (IAM) Engineer

About Rolex

Rolex is a globally recognised Swiss watchmaker renowned for its technical excellence, precision engineering and craftsmanship. As an independent luxury maison with headquarters in Geneva, Rolex operates integrated manufacturing and service activities and maintains a reputation for long-term employee development, operational rigour and discretion.

Role & Responsibilities

• Design, implement and operate enterprise identity and access management solutions covering provisioning, authentication, authorization, SSO and lifecycle management.
• Develop and maintain identity governance and administration processes (role model, access reviews, segregation of duties) to meet internal security and compliance requirements.
• Integrate IAM platforms with core systems (HRIS, Active Directory/LDAP, cloud directories, SaaS applications) using protocols such as SAML, OAuth2/OIDC and SCIM.
• Deploy and maintain privileged access management (PAM) controls and integrations with tools such as CyberArk or equivalent.
• Deliver automation and integration via REST APIs, scripts (PowerShell, Python) and CI/CD pipelines to accelerate onboarding and access changes.
• Collaborate with security, infrastructure, application and business teams to define access policies, fulfil access requests and resolve incidents.
• Support audits, produce technical documentation, run testing and perform regular health checks and monitoring of IAM services.

Qualifications

• Bachelor’s degree in Computer Science, Information Security, Engineering or equivalent professional experience.
• Proven hands-on experience with enterprise IAM technologies (identity provisioning, SSO, federation and PAM).
• Familiarity with identity standards and protocols: SAML, OAuth 2.0, OpenID Connect, SCIM and LDAP/Active Directory.
• Experience integrating IAM with cloud platforms and SaaS applications (Azure AD/Azure AD Connect, Okta, or comparable providers).
• Strong scripting and automation skills (PowerShell, Python, REST API consumption) and working knowledge of SQL/relational stores.
• Preferred certifications: CISSP, CISM, or vendor certifications (Okta, SailPoint, CyberArk) — advantageous but not mandatory.

Skills

Experience

Typically 3–5 years of professional experience in identity and access management, security engineering or closely related roles, with demonstrable project delivery across enterprise IAM lifecycles.

Education

Bachelor’s degree in Computer Science, Information Security, Software Engineering or equivalent; Master’s degree or specialised security/IAM training is advantageous.

Workplace

Culture

Rolex fosters a culture of technical excellence, precision and discretion, where engineering quality and craftsmanship are paramount. Teams operate in a collegial, performance-driven environment with an emphasis on long-term skill development and operational integrity.

About Cerulean

Cerulean is the definitive career portal for the global luxury industry. We match exceptional professionals with exclusive opportunities at the world's most prestigious brands. From haute couture and fine watchmaking to prestige beauty, hospitality, and boutique retail, Cerulean centralises luxury employment to help you find the career for which you were destined.