Sr IGA Engineer

Welcome to Warner Bros. Discovery… the stuff dreams are made of.

Who We Are…

When we say, “the stuff dreams are made of,” we’re not just referring to the world of wizards, dragons and superheroes, or even to the wonders of Planet Earth. Behind WBD’s vast portfolio of iconic content and beloved brands, are the storytellers bringing our characters to life, the creators bringing them to your living rooms and the dreamers creating what’s next…

From brilliant creatives, to technology trailblazers, across the globe, WBD offers career defining opportunities, thoughtfully curated benefits, and the tools to explore and grow into your best selves. Here you are supported, here you are celebrated, here you can thrive.

The Senior Identity Governance Administration (IGA) Engineer position requires technical knowledge and experience in implementing and supporting enterprise Identity Access Management platforms and systems. The role is responsible for the development and design of IGA system architecture, integrations and frameworks in an automated, measurable, and repeatable manner that aligns tightly with business.

The IGA Engineer position requires technical knowledge and experience in implementing and supporting enterprise Identity Access Management platforms and systems. The role is responsible for the development and design of IGA system architecture, integrations and frameworks in an automated, measurable, and repeatable manner that aligns tightly with business needs.

Responsibilities:

• Strong understanding of Identity & Access Management (IAM) User Lifecycle Processes including User Activity Monitoring, Access Re-Certification, SOD, Reporting, IAM Standards and Policies
• Ability to lead or manage IGA engineering projects and team.
• Hands-on experience designing, implementing, and deploying IAM/IGA solutions in an enterprise environment (e.g., Saviynt (preferred), SailPoint, Okta, etc.)
• Ability to on-board third party and cloud applications utilizing various federation protocols within the IGA platform, as well as outside of the IGA platform.
• Ability to drive identity management strategically across the enterprise as a critical security pillar aligning where possible with IAM standard practices.
• Evaluate an application's user-base with the business and determine if the application is a candidate for Role-Based Access Controls.
• Identify data and process improvement ideas; contribute to the transformation of the Identity Access Governance function.
• Consistently demonstrates professional demeanor and communication skills with business partners and team members.
• Support day-to-day security controls including but not limited to creating access and control, monitoring, security awareness relating to BCBSMA mainframe, Active Directory, desktop computers, and remote access
• Maintain security governance and policies for business, groups, products & security access types ensuring audit review approval.
• Ability to Implement/Customize IAM Workflows, Forms, Rules, Provisioning and Certifications

Minimum Requirements/Qualifications:

• Bachelors Degree in Information Technology or related field.
• 5+ years in Information Technology.
• 2+ years of experience in implementing IAM products (e.g., Saviynt, SailPoint, Okta, etc.).
• 2+ years of leading IGA engineering projects and team.
• Experience in access control concepts, including access administration, directory services, SAML, LDAP, or PKI.
• Understanding of IAM standards like RBAC, SCIM, SAML, OAuth, OpenID Connect.
• Programming languages: PowerShell & SQL, Computer networking, OS fundamentals (e.g., Windows/UNIX/Linux).
• Strong communication skills to articulate technically complex issues to non-IAM teams.
• Knowledge of agile development methodologies and DevOps tools for continuous deployments.

Strong pluses:

• Experience with (including technical certifications for):
  • Saviynt, SailPoint IIQ or IDN, Oracle Identity Governance, One Identity, RSA or other user identity lifecycle management solution products or role-based access control solutions.
  • Azure AD, OKTA, or other single sign-on, multi-factor and federation solutions.
  • ADSI and ServiceNow integration with IGA platform is a big plus.
  • PAM solutions: BeyondTrust, CyberArk, Thycotic, Centrify, Hashicorp, or other privilege accounts lifecycle management solutions.
  • Directory services (e.g., AD) / Virtual Directory services (e.g., Radiant Logic).
• Experience defining or re-engineering IAM related processes, including incident management, change management, and configuration management.
• Experience in Policy Based Access Control (PBAC), SOD, or risk-based access controls.
• Experience presenting to executive level client stakeholders.
• CISSP, CISA or CISM certification.

How We Get Things Done…

This last bit is probably the most important! Here at WBD, our guiding principles are the core values by which we operate and are central to how we get things done. You can find them at www.wbd.com/guiding-principles/  along with some insights from the team on what they mean and how they show up in their day to day. We hope they resonate with you and look forward to discussing them during your interview.

Championing Inclusion at WBD

Warner Bros. Discovery embraces the opportunity to build a workforce that reflects the diversity of our society and the world around us. Being an equal opportunity employer means that we take seriously our responsibility to consider qualified candidates on the basis of merit, regardless of sex, gender identity, ethnicity, age, sexual orientation, religion or belief, marital status, pregnancy, parenthood, disability or any other category protected by law.

If you’re a qualified candidate with a disability and you require adjustments or accommodations during the job application and/or recruitment process, please visit our accessibility page for instructions to submit your request.