IAM Security Engineer

General Description

Support and improve our Identity and Access Management and Privileged Access Management enterprise processes and applications. The ideal candidate will have a broad background in identity management, governance, and access control with expertise in platforms such as Active Directory, Okta and more. Deep understanding of technologies involved such as SAML, OIDC, SCIM and RBAC. Experience with Saviynt and CyberArk. The incumbent will need to be highly knowledgeable of the concepts of access management, governance and compliance, and identity management systems administration. Additionally, the candidate will have the technical ability to provide program management and oversight of vendor implementations, as well as converse with software engineers about their plans and security concerns.

Essential Duties and Responsibilities

Configure changes to IAM and PAM tools, preferably Saviynt and CyberArk.

Monitor and troubleshoot the performance, availability, and security of the IAM and PAM systems.

Develop and update the IAM and PAM documentation, procedures, and training materials as needed.

Serve as the subject matter expert (SME) for the IAM and PAM solutions within the organization.

Provide expert advice and guidance to application teams regarding the connection options to Saviynt.

Develop case scenarios for successful implementation of application connectivity to Saviynt.

Maintains oversight of IAM vendors regarding the security maintenance of their systems and applications.

Managing implementation of releases from vendor (knowledge of SDLC process).

Develop, implement, and maintain comprehensive procedures and controls that align with industry best practices and regulatory requirements.

Aligns access management deliverables with legal, regulatory, and contractual requirements that conform with security framework and standards such as NIST SP 800-53 rev 4 and NIST-CSF, among others.

Explain security controls, requirements, and guidance to security management.

Assist in all Cybersecurity audits, risk assessments and regulatory compliance.

Address questions from internal and external audits and examinations.

Participate in pre-defined capacitation training defined by the unit.

Report on findings and recommendations for corrective action.

Education

Bachelor's Degree in Computer Engineering or Computer Science

Bachelor's Degree from an accredited University/College in Information Systems or related fields Experience Three+ (3) years of experience in Privileged or Identity and Access Management areas in a complex technology environment.

Certifications / Licenses

Certifications and Licenses are preferred but no required.

J2EE Certification

CISSP

CISM

CCSP

CISA