The Identity & Access Management Engineer II will have a deep understanding of IAM technologies, protocols, and best practices, with the ability to design, implement, and manage IAM solutions that ensure secure access across the enterprise. This is a key position for ensuring the integrity, security, and availability of our organization's identity and access management systems.
WHAT YOU WILL DO
IAM System Design & Implementation: Assist in the deployment, and management of IAM solutions, ensuring they align with the institution's security policies, industry best practices, and compliance requirements.
Identity Management: Oversee the lifecycle of identities, including creation, maintenance, and deactivation, ensuring efficient processes for provisioning, de-provisioning, and role-based access controls (RBAC).
Access Control: Implement and manage access policies and enforce multi-factor authentication (MFA), single sign-on (SSO), and other authentication technologies to safeguard the organization's resources.
Security & Compliance: Ensure compliance with security policies, regulatory requirements, and internal audit controls related to IAM processes, providing recommendations for improvements where necessary.
Incident Response & Troubleshooting: Provide advanced troubleshooting and resolution for IAM-related incidents, including user access issues, system errors, and security vulnerabilities.
Automation & Optimization: Identify opportunities for automating IAM processes to improve efficiency and reduce manual intervention while maintaining high security standards.
Collaboration & Support: Collaborate with network, security, and application teams to ensure smooth integration of IAM systems with business applications and resources.
IAM Tools & Technologies: Stay up to date with the latest IAM tools, technologies, and trends. Lead the evaluation, selection, and implementation of new IAM solutions that support the organization's strategic goals.
Documentation & Reporting: Maintain thorough documentation for IAM systems, processes, and workflows, as well as create reports for management and auditors.
Training & Mentorship: Provide cross-training to other IT teams and end-users on IAM systems and security best practices.
Assume additional responsibilities as required.
YOUR TEAM WILL INCLUDE
N/A
WHAT EDUCATION AND SKILLS YOU WILL NEED
Bachelor's degree (in computer science, information technology, or cybersecurity preferred).
Must have 3-5 years of experience in Identity and Access Management, with a proven track record of managing IAM systems and security solutions in a complex enterprise environment.
Strong knowledge of IAM protocols such as SAML, OAuth, OpenID Connect, LDAP, and Kerberos.
Hands-on experience with IAM and directory platforms such as Okta, Active Directory, Microsoft Entra ID, or similar.
Experience with MFA, SSO, and role-based access management.
Knowledge of cloud-based IAM solutions and hybrid environments.
Familiarity with enterprise security frameworks and compliance standards.
Strong understanding of IT security best practices and methodologies.
Ability to troubleshoot complex IAM issues and incidents.
Must have excellent problem-solving and analytical skills.
Strong communication and interpersonal skills, with the ability to work effectively with cross-functional teams.
Ability to envision and propose new methods to perform tasks that support ET&A; take thoughtful risks; and accept new and ongoing initiatives, objectives, and solutions to gain sought-after results.
Ability to anticipate and embracechange; demonstrate willingness to achieve, acquire, and utilize new skills and challenging tasks; and is flexible in changing conditions.
HOW AND WHERE YOU WILL WORK
May require some evening/weekend work.
Participate in on-call rotation.
Requires work onsite a minimum of 1 day a week (Wednesdays); the on-campus requirement is subject to modification based on organizational need.
ADDITIONAL SKILLS YOU MAY HAVE
Experience in automation and scripting (e.g., PowerShell, Python, etc.) is a plus.
Experience with IAM in hybrid cloud environments.
Exposure to Zero Trust security models.
Familiarity with Privileged Access Management (PAM) solutions.
Experience in working with service-oriented architectures (SOA) and microservices.
Higher Education experience preferred.
Experience in leading a cloud transition effort from planning, through execution and support preferred.
Familiarity with database technology and authentication services a plus.