IAM (Identity and Access Management) Engineer

Identity and Access Management (IAM) Engineer Job Description

KBS-Services is searching for an experienced Identity & Access Management Engineer to join our growing Cybersecurity Practice. A successful candidate will bring deep IAM solution expertise, strong business acumen, and judgment. Utilizing your experience with on-prem and cloud IAM services, you will work with the team to transition applications to IAM platforms (Okta and/or SailPoint preferred). You must also have experience and understanding of modern Identity & Access Management concepts and best practices.

In addition to having strong technical skills, you must be comfortable effectively communicating with technical IT teams, security professionals, and application owners while being sensitive to diverse cultural and technical backgrounds in a global business environment.

THIS IS A 100% REMOTE ROLE

SALARY RANGE - $100-125K

Essential Functions

• Convey knowledge and experience with information security, authorization and authentication systems, infrastructure, and implementation techniques.
• Configure IAM solution cloud/SaaS tenants in multiple environments (dev, test, QA, prod, etc.) to meet requirements and design specifications for data residency, performance, security, and functionality (Okta WIC, Okta CIC, SailPoint IDNOW).
• Analyze server-side and client logs to debug issues with IAM.
• Advise client stakeholders between infrastructure, application, and threat monitoring teams to ensure the timely and successful delivery of solutions.
• Maintain accurate documentation for proper transition of work to client stakeholders including operations and end users.
• May lead others in projects including architect, engineers, and customer personnel.

Required Skills/Abilities/Competencies

• Experience with working with applications to adopt IAM solutions leveraging IAM platforms, Okta WIC, Okta CIC / Auth0, SailPoint IDNOW preferred.
• Knowledge of other IAM products in the market.
• Knowledge of tenant, geographical, network, rate limiting, and other design challenges presented through the adoption of cloud-delivered IAM.
• Capable of adapting to new IAM technologies, exploring, and explaining them to others even if not a hands-on expert.
• Excellent technical writing skills, interpersonal, and customer service skills
• Ability to function well in a high-paced and at times stressful environment.

Experience:

• 5+ years of experience in IAM, RBAC, User Access Provisioning/Termination, Access Certification, Federation, Authentication, SSO, and similar technologies.
• Demonstrable experience with working with applications to adopt IAM solutions leveraging IAM platforms, Okta WIC, Okta CIC / Auth0, SailPoint IDNOW preferred.
• Strong hands-on experience with industry-standard provisioning and SSO technologies and protocols (SCIM, SAML/JIT, OAUTH2, FIDO2 WebAuthN, and OpenID Connect (OIDC)).
• Experience in extending or integrating on-premises AD with Azure-based AD.
• Experience in large-scale, global projects and programs.
• Familiarity with IT security and risk management practices.

Education:

• Bachelor's degree in Computer Science, Engineering, Network Security, or related field or equivalent experience.

Desirable:

• Okta Developer Certification
• Okta Consultant Certification
• SailPoint Certification
• Security Certifications (CISSP, CIAM, CCSK)
• Other vendor product certifications (Ping Identity, SailPoint, Microsoft, etc.)

What’s In It for You?

As a full-time KBS employee (30+ hours per week) you may qualify for benefits including medical, dental, vision, prescription drugs, and more!

• Paid Time Off
• Paid Holidays
• Sick Time
• Life Insurance
• Supplemental Health Insurance (E.G., Accident)
• 401k plan with a match or Non-qualified Deferred Compensation Plan
• Pet Insurance
• Perkspot Discount Program – discounts on travel, gyms, cell phones, restaurants, auto, apparel & electronics 

KBS considers all applicants for employment without regard to race, color, religion, gender, sexual orientation, national origin, age, disability, gender identity, and expression, marital or military status, or based on an individual's status in any group or class protected by applicable federal, state, or local law. KBS also provides reasonable accommodations to qualified individuals with disabilities in accordance with the Americans with Disabilities Act and applicable state and local law.