Business Objectives and % breakdown of what they will be doing
They are actively building out the Cloud environment in GCP and using mostly code via Terraform for the IAM work.
Mainly working with the GCP environment and CyberArk initially.
Required Skills
GCP or other Cloud (Azure/AWS) Identity experience
IAM provisioning
role definition and assignment
management of service accounts
identity policies for all the above
Experience with CyberArk
Need someone who has strategic thinking versus just a doer
Ned the adaptability to learn Terraform coding.
Preferred Skills
Master's Degree in IT or Cybersecurity
Experience with Industrial Control Systems in the gas/oil Energy Sector.
Experience with SailPoint
What You Get to Do:
Analysis, design, planning and support of cloud identity solutions.
Create IAM as code leveraging tools such as Terraform to provision in GCP
Translate business needs into workable technology solutions that meet the requirements of internal customers.
Analyze existing environments to identify both technical and operational challenges while making recommendations and developing solutions for improvement.
Lead complex or high severity troubleshooting and incident/problem resolutions with other security and/or infrastructure teams
Maintain knowledge of current developments in identity and cybersecurity, evaluating emerging identity products and technologies, and maintaining awareness threats to IT and OT environments.
Review and manage application lifecycle deliverables to ensure compliance with identity management policies.
Perform various functions and duties in support of audit and compliance deliverables including verification/remittance of evidence.
What You Bring to the Table:
Bachelor's degree in IT, Cybersecurity, or related field of study from an accredited college or university; will consider a combination of experience and/or education.
Ideally, 5+ years of experience in Information Security/Systems with 4+ years of experience in Identity and Access Management.
Ideally, 3+ years of Cloud IAM and Security Experience.
Strong knowledge of Google Cloud Platform and Azure Active Directory.
Experience with RESTful APIs
Advanced scripting experience and capabilities (JSON, PowerShell, etc.)
Experience with HashiCorp Vault or similar Secrets Management solution.
Advanced knowledge of Identity Security concepts, least-privilege, separation of duties, and Zero Trust design principles.
Understanding of federation technologies (WS-Fed, OAuth, SAML, etc.) and of encryption technologies (both encryption types and protocols/standards.