Nortal LLC

Nortal LLC

IAM Senior Engineer

Offer parameters
home office work
valid for 16 days
(until 16 Apr)
Набір відкритий для українців
Recruitment open to Ukrainians
Kraków, Lesser Poland (Poland)

Technologies we use


Ping Identity
Guard Duty

Operating system


About the project

The IAM product team is part of the Colleague Compute domain and has a strong link with the Security Domain. The team is a multi-disciplinary team of experts across Architecture, Engineering, DevOps and Agile Delivery providing services across the group ex. UK, Ireland, Sweden, Norway, Denmark, Finland, Germany, Belgium and The Netherlands.
The IAM product team has as goal to deliver IAM as a product. This means that all functions/services within IAM can be received with just a click on button. The business and development teams do not need to worry about IAM tasks and just focus on their delivery. Being able to plugin IAM as a product will reduce their burden and increase IAM security for TUI as a group.

Your responsibilities

  • Designing, implementing, integrating, and managing Identity Directory Providers / Stores and identity services
  • Integrate and manage applications in cloud federation
  • Identify, analyze and resolve system design weaknesses. Troubleshoot and manage the resolution of issues related identities, systems, access, accounts, authentication, authorization, entitlements, and permissions. Determine and recommend the most appropriate response to identified more complex problems, issues and/or defects by assessing impact and prioritization
  • Ensure the maintenance and monitor IAM systems. Troubleshoot, support and resolve system incidents, problems and changes, as required
  • Implement and monitor the Key Performance Indicators for the Access Management Service
  • Design reusable strategies, decisions, service components, libraries and frameworks to support enterprise-level IAM services
  • Provide level 2 and level 3 support for clients and coordinate as needed with the technology vendors
  • Produce IAM technical documentation such IAM detailed design, configuration guides etc.
  • Support on business development (bids) including defining scope of work and interacting with clients and the vendors as required during the proposal development as a part of project and developer teams
  • Implementing technologies to centrally integrate identity systems across the organization and ensure audit and privacy compliance
  • Streamlining and improving customer experiences
  • Implementing access controls to applications and maintaining and updating roles in the directory
  • Managing access and permissions where necessary and implementing automated solutions
  • Collaborating with key engineering stakeholders to help tackle challenges within the IAM space
  • Participate in the IAM strategy definition and evolution
  • Conduct IAM assessments and identify gaps between the AS-IS situation and the envisioned future state for the organization
  • Contribute to various long-term projects to consolidate the IAM tools and the overall security environment
  • Coach other members of the organization on the best practices that should be followed in identity and access management

Our requirements

  • Higher education in computer science/technical field
  • Minimum of 5 years' experience as IAM engineer
  • Comprehensive knowledge and experience with authentication standards and technologies
  • Extensive hands-on knowledge of identity and access management best practices, procedures, and software solutions
  • Extensive knowledge and experience with identity and access management technology, such as single sign-on (SSO), two-factor authentication, Conditional Access, privileged access management, etc. in Azure and AWS
  • Experience with Windows, Linux, scripting (Bash, Powershell, or Perl), LDAP, SQL, and web services
  • Experience in one of IAM solutions such as: CyberArk, Oracle, ForgeRock, Radius, RSA, PKI, SailPoint, Thycotic, BeyondTrust, Ping Identity
  • Experience of working with O365 and AWS security capabilities (e.g. Guard Duty…)
  • Upper-intermediate or higher level of spoken and written English

About the vacancy

Nortal is looking for an experienced IAM Senior Engineer for long term and full-time employment!

About our client

Our client, TUI, is a global business with over 70 000 people on board, great history and challenging plans for building a digital future. TUI is the largest leisure, travel and tourism company globally, and it owns travel agencies, hotels, airlines, cruise ships and retail shops.
Company Image

What we offer

  • “Benefit Café with various categories like sport, leisure, books, fuel, etc.
  • Family-like environment and personal attention to each specialist
  • Interesting projects with innovative products
  • Competitive salary and regular reviews
  • The work-life balance you deserve. Flexible working hours
  • Educational support, funded language classes
  • Luxmed private healthcare packages
  • Cozy workplace.
  • Fresh fruits Mondays
  • WFH opportunities
  • Exciting events and lovely gifts for your family


  • private medical care
  • sharing the costs of foreign language classes
  • remote work opportunities
  • flexible working time
  • fruits
  • integration events
  • no dress code
  • coffee / tea
  • parking space for employees
  • leisure zone
  • family picnics

This is how we work

I apply to:
Nortal LLC
Nortal LLC
Kraków, Lesser Poland (Poland)
Pracodawca zbiera zgłoszenia przez swój system. Przejdziesz na jego formularz.

Klikając w przycisk „Aplikuj” potwierdzasz, że zapoznałeś(-łaś) się i akceptujesz Regulamin serwisu.

Grupa Pracuj S.A. jest administratorem Twoich danych dla celów świadczenia Ci usług w the:protocol oraz w celach analitycznych i marketingowych. Jeżeli masz pytania lub chcesz skorzystać ze swoich praw (dostępu do danych, ich sprostowania, usunięcia, ograniczenia przetwarzania, przeniesienia, sprzeciwu lub skargi do PUODO), skontaktuj się z nami: [email protected] lub z naszym inspektorem ochrony danych: [email protected]. Więcej informacji w Polityce Prywatności.

Need more information?

You can ask the recruiter a casual question. You will receive a reply within three business days.

Check first if the answer to your question is not already in the body of the offer.
An employer may not respond to your question, particularly if there are less than 3 business days remaining before the offer ends.