Identity and Access Management Engineer

Job Summary

The Identity and Access Management Engineer is responsible for managing identity management environment, utilizing knowledge of access control modeling methodologies to manage identities. The role is responsible for building use cases and solutions based on complex business needs and participating in or leading low to medium complexity projects to optimize identity management functions. The role is involved in performing enterprise security work using individual judgment and initiative, providing technical analysis, design, and support, and making recommendations for various security applications, technologies, and products. The role is also responsible for ensuring backups are complete and restore activities can be completed when necessary and for formulating security architecture recommendations and designing security services. The role will be a go-to resource for IAM Analysts and contractors (vendors) and/or provider of oversight for access provisioning of our daily business as usual operations.

Job Responsibilities

• Performs requirements gathering, planning and implementation of technologies and processes that improve identity management security initiatives.
• Engineers, architects, and implements Identity and Access Management and Governance solutions at an enterprise level.
• Develops access control modeling methodologies (e.g., RBAC, ABAC, etc.), authorization policy management, and risk-based methods of access lifecycle management for applications and data.
• Builds use cases and solutions based on complex business needs spanning multiple user directories and application requirements for new IAM integrations.
• Participates in small to medium complexity projects that support current technology and implement new technologies to optimize or improve identity management functions.
• Maintains current Identity and Access Management industry knowledge, stays abreast of industry trends and emerging technologies through industry events, networking, and research.
• Develops, revises and documents appropriate standards, policies, and procedures relating to the management, security, maintenance, recovery, and utilization of the services provided by the Identity and Access Management team and evaluates and recommends changes to improve service levels.
• Works in partnership with Information Security, Architecture, and IT Leadership to develop and maintain appropriate IAM roadmap documentation.
• Maintains the environment according to company standards, industry best practices, and directives received from senior personnel and management.
• Conducts quality control and quality assurance activities, such as developing and executing test plans / scripts and resolving deviations or exceptions, for newly developed and/or enhanced access management solutions.

Job Qualifications

• Bachelor's degree in Computer Science, Information Technology or a related field and/or commensurate experience.
• 2+ years in building and maintaining Enterprise Operating Systems, Directory Services and Technical Innovation or a related field.
• Applicants must be currently authorized to work in the United States on a full time basis without employer sponsorship.

Location

Hybrid defined as three or more days per week in the office.

Licenses and Certifications

• Certified Information Systems Security Professional (CISSP) (Preferred)

Behavioral Competencies

• Collaborates
• Communicates Effectively
• Customer Focus
• Decision Quality
• Nimble Learning

Technical Skills

• Network Security
• Microsoft Active Directory
• Identity and Access Management
• Scripting
• Access Governance
• Programming Languages
• Regulatory Compliance
• Network Protocols
• Database Engineering
• API Development
• Identity Lifecycle
• Multi-Factor Authentication
• Scripting and programming capabilities (ex: Powershell, Python, Java, Beanshell etc.)
• Familiar with IAM tools (ex: SailPoint, Azure / Entra ID, etc.)
• Knowledge of security frameworks and standards (ex: NIST, CSF 2.0 etc.)

This job description describes the general nature and level of work performed in this role. It is not intended to be an exhaustive list of all duties, skills, responsibilities, knowledge, etc. These may be subject to change and additional functions may be assigned as needed by management.