IAM Engineer
Crypto.com
Other Engineering
hong kong
Posted on Apr 20, 2026
At Crypto.com, our dedication to user security is led by our highly experienced Security Team. Comprising an international roster of seasoned cybersecurity experts, our team leads the company's Security, Privacy, and Security Compliance endeavors.
The team includes holders of international patents for technologies integrated in our security architecture. Under the stewardship of a distinguished CISO recognized by the Forbes Technology Council and among the Global Top 100 CISOs, our team has consistently championed industry standards, acquiring certifications like ISO27001, ISO27701, ISO22301, PCI:DSS 3.2.1 (Level 1), NIST Tier 4, and SOC 2 Type II, in addition to the MPI License from Singapore MAS. Our Chief Information Security Officer reports directly to the CEO, underscoring the prioritization of security in our organization's hierarchy.
Our Security Team not only places great emphasis on credentials and expertise but also deeply values hands-on experience, rapid cognition, and dynamic learning. The challenges in the world of crypto are ever-evolving, and as such, our team prides itself on quick adaptability and robust teamwork, ensuring that we stay ahead of potential threats and always safeguard our user base.
We are seeking a pro-active Mid-Level IAM Engineer with a focus on Agentic AI management in a cloud native environment to join our Identity Security Team.
In this role, you will be responsible for the design and management of a diverse identity ecosystem of Human and Non-Human Identities to ensure our company has a secure and seamless protection of our cloud-native environment.
You will act as a technical owner for various Identity Management platforms, balancing high-level automation with robust security controls. We are looking for an engineer who is not only interested in being technically deep but also efficiency-minded, leveraging modern tools and AI-augmented workflows to deliver security at scale.
Responsibilities
- Identity Ecosystem Management: Manage and optimize a suite of core identity platforms (including Okta and Microsoft Entra ID), driving the end-to-end lifecycle for users and services
- Automation & Scripting: Build and maintain scripts (Python, Bash) to automate complex identity workflows, eliminate manual provisioning, and enhance operational efficiency
- Modern Workflow: Integrate AI technologies and LLMs into your daily process to accelerate development, analyze security logs, and maintain high-quality technical documentation
- Infrastructure Access Governance: Define and manage access patterns for infrastructure-level assets. This includes governing access to servers, databases, and clusters using tools like Teleport and AWS-native IAM
- Secure Access Engineering: Partner with DevOps to implement the principle of least privilege, focusing on the use of short-lived credentials and Just-in-Time (JIT) access for infrastructure environments
- Governance Enablement: Support the Governance team by automating and optimizing the access review process; you will build the technical workflows and reporting tools that enable efficient, data-driven compliance campaigns
- Compliance Standards: Ensure technical configurations across all tools adhere to SOC2/ISO27001 standards and assist in technical evidence collection for audits
Technical Requirements
- 3–5 years of progressive experience managing enterprise-scale identity solutions
- Proven ability to manage and integrate multiple security tools simultaneously (e.g., Identity Providers, Access Management platforms, and Secrets Management solutions)
- Hands-on experience governing access and building automations within AWS. You should be familiar with AWS IAM, cross-account access patterns, and leveraging AWS services (e.g., Lambda, EventBridge) for security workflows
- Strong proficiency in Python or Bash with a track record of using APIs to automate security tasks
- Deep understanding of SAML, OAuth2, OIDC, and SCIM
- Strong troubleshooting skills and the ability to solve complex, systemic identity and access issues
Preferred Qualifications
- Experience with modern Privileged Access Management (PAM) platforms (e.g., Teleport) or Secrets Management solutions (e.g., AWS Secrets Manager)
- Practical experience using AI tools (e.g., GitHub Copilot, ChatGPT/LLMs) to enhance productivity and code quality
- Familiarity with Terraform or AWS CloudFormation for managing identity-related infrastructure
- Ability to articulate technical security requirements to stakeholders and engineering teams
#LI-CW1
#LI-Hybrid
#LI-Hybrid
Life @ Crypto.com
Empowered to think big. Try new opportunities while working with a talented, ambitious and supportive team.
Transformational and proactive working environment. Elevate employees to find thoughtful and innovative solutions.
Growth from within. We help to develop new skill-sets that would impact the shaping of your personal and professional growth.
Work Culture. Our colleagues are some of the best in the industry; we are all here to help and support one another.
One cohesive team. Engage stakeholders to achieve our ultimate goal - Cryptocurrency in every wallet.
Are you ready to kickstart your future with us?
Benefits
Competitive salary
Medical insurance package with extended coverage to dependents
Attractive annual leave entitlement including: birthday, work anniversary
Work Flexibility Adoption. Flexi-work hour and hybrid or remote set-up
Aspire career alternatives through us. Our internal mobility program can offer employees a diverse scope.
Our Crypto.com benefits packages vary depending on region requirements, you can learn more from our talent acquisition team.
About Crypto.com:
Founded in 2016, Crypto.com serves more than 80 million customers and is the world's fastest growing global cryptocurrency platform. Our vision is simple: Cryptocurrency in Every Wallet™. Built on a foundation of security, privacy, and compliance, Crypto.com is committed to accelerating the adoption of cryptocurrency through innovation and empowering the next generation of builders, creators, and entrepreneurs to develop a fairer and more equitable digital ecosystem.
Crypto.com is an equal opportunities employer and we are committed to creating an environment where opportunities are presented to everyone in a fair and transparent way. Crypto.com values diversity and inclusion, seeking candidates with a variety of backgrounds, perspectives, and skills that complement and strengthen our team.
Personal data provided by applicants will be used for recruitment purposes only.
Please note that only shortlisted candidates will be contacted.