Engineer, IAM

Join a dynamic and growing Identity and Access Management team, implementing the latest technologies to drive excellent experiences for our customers and internal workforce clients. 

The Identity Operations Engineer is a key member of the IAM team and reports to the Manager of Identity & Access Management, Operations.  You’ll never be bored, with opportunities to work on IAM application design and configuration, DevOps automation of IAM technologies across the cloud and fleet, and custom Java / scripting development.

As a combined engineering and operations team, we want people who think creatively about how to solve difficult Identity issues and how they can be run efficiently.  Our team offers the opportunity to grow and develop skills in new areas.

We want your experience and expertise, but most of all we want your enthusiasm to make our IAM solutions awesome!

________________________________________

ESSENTIAL DUTIES AND RESPONSIBILITIES:

• Manage and maintain ongoing operations of PAM solutions, ensuring system availability, performance, and compliance.
• Monitor and analyze privileged access activities to detect and mitigate risks using automated monitoring and alerting tools.
• Use “Configuration as Code” and DevOps methodologies to ensure rapid implementation and deployment of PAM solutions.
• Work with the IAM team to implement and automate PAM lifecycle management processes.
• Work to continuously improve the performance, reliability, and security of the IAM platform.

________________________________________

QUALIFICATIONS:

• An ideal candidate will have 3+ years of experience working within the information security and/or identity management disciplines. 
• A university degree in the field of computer science, IT, or Information Security is preferred, but equivalent work experience is acceptable
• Security industry certifications are a plus

________________________________________

KNOWLEDGE AND SKILLS:

We’re looking for people with the knowledge of and experience with:

• Software or systems engineering
• Linux / UNIX / Windows security
• DevOps tools for code deployment and management (Git, Jenkins, Ansible, Puppet, etc.)
• Experience with Java, JavaScript, C#, PowerShell, etc.
• Experience with SSO technologies (SAML, OAuth2, OIDC, Auth0, Kerberos, ADFS, etc. )
• Design, implementation, integration, and testing using one or more of the following technologies: Azure AD, LDAP, ForgeRock, OKTA, SailPoint, Saviynt, CyberArk, Centrify, CA PAM, Beyond Trust
• Implementing or maintaining large-scale identity and access management solutions
• RBAC and ABAC methodologies and implementation patterns
• Multi-factor authentication technologies
• FIDO UAF and FIDO2
• Databases, LDAP and directory services application servers, operating systems, and network infrastructure. 

We expect that you:

• Demonstrate strong organization and time management skills.
• Anticipate what needs to be done before being asked.
• Can easily manage multiple tasks / projects while ensuring deadlines are met.
• Possess excellent analytical, evaluative, and problem-solving abilities.
• Possess excellent written and oral communication skills including the ability to articulate requirements to both technical and non-technical audiences.
• Have good interpersonal skills.

________________________________________

Work Environment:

• Requires 24x7 operational support on a monthly rotation with the team.