Identity & Access Management Engineer / Sr. Engineer
US TX - San Antonio
Argo Group
Argo Group is an underwriter of specialty insurance products in the property and casualty market.Argo Group is a leader in specialty insurance with a vibrant culture built on respect, equality, wellness and opportunity. We’re an innovative organization that’s small enough to be agile and big enough to make a difference in our industry.
Our collaborative workplace is continuously evolving to ensure all employees feel:
- Comfortable bringing their whole selves to work.
- Confident that they will be treated respectfully.
- Recognized for their performance and provided with equal opportunities to succeed.
At Argo, skill meets opportunity. If you’re wired to raise your hand and ask, “Where can I help?”, you’ll thrive with us.
We are seeking an experienced Identity and Access Management (IAM) Engineer / Sr. Engineer to join a growing IAM team in the financial and insurance space. The IAM Engineer will play a key role in designing, implementing, and managing identity and access solutions to ensure secure and efficient access to critical systems, applications, and data. The ideal candidate has strong technical knowledge of IAM concepts, tools, and technologies, and possesses a deep understanding of security best practices, compliance standards, and automation in identity management.
This position will be located on-site in our San Antonio office. Seniority of this role will be determined based on the skill level and experience of the selected candidate.
What you'll be doing:
Design and Implementation:
- Develop and implement IAM policies, procedures, and standards to ensure secure access to systems and data.
- Design and deploy solutions for user provisioning, authentication, authorization, and identity governance.
- Collaborate with stakeholders to identify identity-related risks and implement security controls.
Access Management:
- Implement and manage Single Sign-On (SSO), Multi-Factor Authentication (MFA), and Privileged Access Management (PAM) solutions.
- Integrate applications and systems into the IAM framework for centralized authentication and access control.
- Ensure role-based access control (RBAC), attribute-based access control (ABAC), and least privilege principles are followed.
Identity Lifecycle Management:
- Oversee identity lifecycle management, including onboarding, offboarding, and user access reviews.
- Automate provisioning and de-provisioning of user accounts using IAM tools and scripts.
- Conduct regular audits of user access and maintain compliance with relevant regulations (e.g., NYDFS, SOX).
Monitoring and Troubleshooting:
- Monitor identity systems for performance, security incidents, and unauthorized access attempts.
- Troubleshoot and resolve IAM-related issues across the organization.
- Collaborate with IT and security teams to respond to security incidents and improve IAM security posture.
Collaboration and Training:
- Work closely with application developers, infrastructure teams, and business units to understand their access needs and provide secure IAM solutions.
- Provide guidance and training to users and teams on IAM policies, best practices, and tools.
- Keep up to date with industry trends, threats, and best practices in IAM.
What we're looking for:
- Bachelor’s degree in computer science, Information Security, or a related field, or equivalent work experience.
- 3-7+ years of hands-on experience in IAM, cybersecurity, or a related field.
- Strong understanding of identity management protocols and standards such as SAML, Oauth, LDAP, etc.
- Experience with IAM tools and platforms such as SailPoint, etc.
- Knowledge of authentication and authorization technologies such as MFA, SSO, and RBAC.
- Familiarity with scripting languages (e.g., Python, PowerShell) for automation of IAM processes.
- Experience with cloud platforms and SaaS tools (Okta, Ping Identity, AWS, Salesforce, Workday) and integrating IAM in hybrid environments.
- Excellent problem-solving skills and attention to detail.
- Relevant certifications (e.g., CISSP, CISM, Certified Identity and Access Manager) are a plus.
PLEASE NOTE: At this time, Argo Group will not sponsor an applicant for employment authorization for this position.
If you have a disability under the Americans with Disabilities Act or a similar law and you wish to discuss potential accommodations related to applying for employment at Argo Group, please contact our Benefits Department at 210-321-8400.
To all recruitment agencies: Unless you have been requested to work on this position, or other positions with Argo Group, please do not forward any resumes to Argo Group employees. Argo Group is not responsible for any fees related to unsolicited resumes.
Argo Group International Holdings, Inc. (“Argo” or the “Company”) is a wholly owned subsidiary of Brookfield Wealth Solutions, Ltd. (“BWS”), a New York and Toronto-listed public company. Argo, with over $8 billion of assets on its balance sheet, is a leading underwriter of specialty insurance products in the property and casualty (P&C) market, working with independent agents, wholesale brokers, and retail brokerage partners to deliver collaborative solutions for niche markets.
BWS is a leading wealth solutions provider, focused on securing the financial futures of individuals and institutions through a range of wealth protection and retirement services, and tailored capital solutions. BWS is backed by Brookfield Corporation, a leading global investment firm whose asset management business manages more than $1 trillion in assets as of September 30, 2024.
We are an Equal Opportunity Employer. We do not discriminate on the basis of age, ancestry, color, gender, gender expression, gender identity, genetic information, marital status, national origin or citizenship (including language use restrictions), denial of family and medical care leave, disability (mental and physical) , including HIV and AIDS, medical condition (including cancer and genetic characteristics), race, religious creed (including religious dress and grooming practices), sex (including pregnancy, child birth, breastfeeding, and medical conditions related to pregnancy, child birth or breastfeeding), sexual orientation, military or veteran status, or other status protected by laws or regulations in the locations where we operate. We do not tolerate discrimination or harassment based on any of these characteristics.
The collection of your personal information is subject to our HR Privacy Notice
Our Benefits
Developing our employees professionally and personally strengthens our organization.
Argo Group offers an attractive Total Rewards package that includes:
- A culture that recognizes performance and empowers employees to excel, offering competitive compensation and merit driven profit sharing.
- Workplace policies that support employee well-being include flex time and floating holidays.
- Comprehensive health, wellness, and financial planning options that employees can tailor to meet their personal and family needs. In addition to traditional health and wellness plans, benefits include dental, disability, life insurance, medical, and vision insurance, matching 401(k) retirement savings, generous paid time off (21 days of PTO, 11 paid company holidays, 3 floating holidays and a paid voluntary day), paid caregiver and parental leave, paid bereavement, jury duty/court appearances, and military (up to 14 days) leave, employee assistance program (EAP), and an array of voluntary benefits.
- Argo Academy, a digital and instructor-led platform that offers continuous learning and professional development – Training magazine lists Argo among the Training "Top 125" Companies. Argo encourages career mobility and continuing education to pursue and maintain professional and industry designations, in addition to traditional university and higher education programs.
- An inclusive culture that develops and sponsors diverse teams, encourages cross-functional engagement and collaboration, builds community through employee resource groups (ERGs), and provides an environment that welcomes ongoing dialogue, creative innovation, professional and personal development.
- Active community outreach and volunteer programs.
- A generous Employee Referral program that results in approximately 25% of all new hires annually.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Agile Audits Automation AWS C CISM CISSP Cloud Compliance Computer Science Governance IAM LDAP Monitoring Okta PowerShell Privacy Python SaaS SailPoint SAML Scripting SOX SSO
Perks/benefits: Career development Competitive pay Flex vacation Health care Insurance Medical leave Parental leave Wellness
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.