About Us

At ANZ, we're applying new ways technology and data can be harnessed as we work towards a common goal: to improve the financial wellbeing and sustainability of our millions of customers.

Our community of over 5,000 engineers is key to making this happen, because technology underpins every part of our business - from delivering tools, apps and services for our customers, to building a bank for the future.

About the Role

As a Staff Software Engineer specialising in SailPoint IdentityIQ (IIQ), you will be a technical leader in our IAM (Identity & Access Management) team in our Group Cyber Security Operations Domain. You'll architect, build, and maintain scalable IAM systems on AWS leveraging SailPoint IIQ. You will mentor junior engineers, drive engineering best practices, ensure secure and reliable identity operations, and work cross-functionally to enforce identity governance, lifecycle, and compliance capabilities.

Banking is changing and we’re changing with it, giving our people great opportunities to try new things, learn and grow. Whatever your role at ANZ, you’ll be building your future, while helping to build ours.

Role Type: Permanent
Role Location: Acacia - Manyata Tech Park, Bengaluru
Work Hours: 7:00 AM – 4:00 PM  OR  8:00 Am to 5:00 PM

About Identity and Access Management

We improve ANZ’s Identity & Access Management experience by enabling people to be operational on Day 1, with the right access to the right systems at the right time.

Identity & Access Management are responsible for:

• Identity Establishment; On-boarding, Identity & Lifecycle Management
• Identity Reporting & Risk Management; Reporting, Identity Risk Management
• Access Management Integration
• Role Governance & Access Enablement; Enterprise Role & Lifecycle Management, Reconciliation & Identity Analytics
• User Access Review; User Access Review Execution
• Privileged Access Management; On-boarding, Event On-boarding, Event monitoring
• Access Self Servicing and Self Service Password Resets capabilities to all core platforms
• SSO, MFA and Secure Token Servicing

We work closely with all teams across ANZ to simplify Identity and Access Management (IAM) processes, controls, systems and governance. All our team members play an essential role in ensuring ANZ proactively improves, secures and de-risks the Identity & Access Management experience, keeping the bank safe for our customers and our people.

What will your day look like?

As a Staff Software Engineer, you are expected to:

Architecture & Design

• Lead the design and architecture of IIQ deployments on AWS, ensuring high availability, scalability, and security.
• Define and evolve identity data models, role models, governance workflows, certification campaigns, lifecycle management flows, and access request processes.
• Design integrations between IIQ and other systems (HR systems, cloud apps, on-prem systems, ticketing systems, etc.).
• Own technical decisions on infrastructure components (databases, connectors, APIs).

Development & Customization

• Develop and maintain custom IIQ components: rules, workflows, forms, connectors, task definitions, reports.
• Write complex BeanShell or JavaScript code for rule logic, provisioning tasks, and identity transformations.
• Build and maintain REST or SOAP integrations to external services (e.g., SCIM, REST APIs).
• Implement custom certifications, access request forms, approval workflows, and notification mechanisms.

AWS specific Engineering

• Deploy and manage IIQ in AWS (EC2, containers, or serverless), working with infrastructure teams or own IaC (Infrastructure as Code) frameworks like Terraform.
• Design monitoring, alerting, logging, and telemetry for IIQ on AWS. Use AWS-native tools (CloudWatch, CloudTrail) and/or third-party tools.
• Ensure secure configuration of AWS services (VPC, security groups, IAM permissions) for IIQ components.

Operations & Reliability

• Establish processes for upgrades, patching, backups, and disaster recovery for IIQ in AWS.
• Define and maintain runbooks, operational playbooks, and incident response procedures.
• Drive 24×7 support readiness (on-call rotations), and participate in triaging & resolving production incidents.
• Instrument health checks, application monitoring, and performance dashboards.

Governance, Compliance & Security

• Implement and enforce identity governance policies (SOD – separation of duties, role-based access, least privilege).
• Design certification campaigns, policy violations, access reviews, and attestation workflows.
• Work with Security / GRC teams to ensure IIQ architecture and operations comply with internal and external audit requirements.
• Collaborate with security teams on risk assessment, threat modelling, and vulnerability management relevant to identity systems.

Mentoring and Leadership

• Guide and mentor IIQ developers / engineers (mid-to-junior level) in best practices, code reviews, and design reviews.
• Evangelize IIQ best practices and identity engineering across the broader engineering organization.
• Participate in recruiting, interviewing, and establishing standards for the IAM team.
• Communicate architecture, roadmap, and technical decisions to leadership, stakeholders, and cross-functional teams.

Process Improvement & Automation

• Identify areas for automation in provisioning, certification, and role lifecycle. o Drive continuous improvements in development processes (CI/CD, testing frameworks, automated deployments).
• Promote reusable identity engineering patterns (connector templates, rule libraries, workflows).

Documentation

• Create and maintain technical architecture diagrams, design documents, runbooks, and standard operating procedures.
• Maintain detailed documentation of custom IIQ modules (connectors, rules, lifecycle definitions).
• Document AWS infrastructure setup and IAM governance components.

What will you bring?

To grow and be successful in this role, you will ideally bring the following:

Required Skills & Qualifications

• Experience: 8+ to 12+ years of software development / identity engineering experience (or relevant).
• IIQ Expertise: Deep hands-on experience with SailPoint IdentityIQ rules, workflows, connectors, certification, lifecycle, compliance.
• Programming Languages: Strong Java, BeanShell / JavaScript skills.
• APIs / Integration: Experience integrating via REST, SOAP, SCIM, or other identity protocols.
• IAM Domain Knowledge: Strong understanding of IAM concepts – roles, RBAC, SOD, provisioning, entitlements, governance.
• Databases: Experience with relational databases (Oracle, MSSQL, MySQL) and possibly NoSQL.
• AWS Experience: Hands-on experience deploying, operating, and securing applications on AWS (EC2, VPC, IAM, possibly containers or serverless).
• Monitoring / Operations: Experience with monitoring/logging tools, alerting, on-call support.
• Architecture Experience: Ability to design scalable, reliable systems, microservices, or modular architectures.
• DevOps / Automation: Experience with CI/CD, Infrastructure-as-Code, automated deployments for identity systems.
• Soft Skills: Good communication, mentoring, leadership, stakeholder management.
• Education: Bachelor’s in computer science, Engineering, or related (or equivalent practical experience).

Good to have Qualifications:

• SailPoint IIQ certification (Engineer / Architect).
• Experience with cloud-native identity governance (SaaS models).
• Experience working in regulated environments (financial services, healthcare, compliance-heavy).
• Familiarity with monitoring/visualization tools: Prometheus, Grafana, Splunk, Dynatrace etc.
• Experience with message queues or event-driven architectures (Kafka, etc.).
• Experience in on-call rotations and maintaining high-availability systems.
• Experience in performance tuning, capacity planning, and cost optimization in AWS.

You’re not expected to have 100% of these skills. At ANZ a growth mindset is at the heart of our culture, so if you have most of these things in your toolbox, we’d love to hear from you.

So why join us?

ANZ is a place where big things happen as we work together to provide banking and financial services across more than 30 markets. With more than 7,500 people, our Bengaluru team is the bank's largest technology, data and operations centre outside Australia. In operation for over 33 years, the centre is critical in delivering the bank's strategy and making an impact for our millions of customers around the world. Our Bengaluru team not only drives the transformation initiatives of the bank, it also drives a culture that makes ANZ a great place to be. We're proud that people feel they can be themselves at ANZ and 90 percent of our people feel they belong. 

We know our people need different things to be great in their role, so we offer a range of flexible working options, including hybrid work (where the role allows it). Our people also enjoy a range of benefits including access to health and wellbeing services.

We want to continue building a diverse workplace and welcome applications from everyone. Please talk to us about any adjustments you may require to our recruitment process or the role itself. If you are a candidate with a disability or access requirements, let us know how we can provide you with additional support.

To find out more about working at ANZ visit https://www.anz.com/careers/. You can apply for this role by visiting ANZ Careers and searching for reference number 106461.

Job Posting End Date

01/12/2025 , 11.59pm, (Melbourne Australia)