Lead, Identity and Access Management

The Basics

We are seeking a highly skilled and experienced Identity and Access Management (IAM) Lead to join our team. In this role, you will be responsible for researching and recommending technologies which can enhance Tanium’s approach to IAM (Identity and Access Management) and IGA (Identity Governance and Administration), as well as designing, implementing, and managing identity and access management solutions across Tanium’s corporate infrastructure. You will work closely with cross-functional teams to develop strategies and implement solutions that align with our company's goals and compliance requirements. 

This is a hybrid position, which will require in person attendance several days each week in one of the following locations: Addison, TX; Bellevue, WA; Durham, NC; Emeryville, CA; or Reston, VA.

What you'll do

• Design, implement, and manage modern IAM and IGA solutions which optimize identity and access management processes.
• Develop, enhance, test, document and manage Identity Management automation processes to support daily operations and to improve business functions via automation  
• Understand, maintain, and document onboarding, offboarding, entitlement automation, and approval workflows  
• Identify and correct problems uncovered by testing or end user feedback  
• Monitor and document the evolution of the User Identity lifecycle  
• Maintain appropriate security access and protection, in compliance with existing security policies and best practices. Ensure compliance of system security patches.
• Work with Tanium’s GRC organization to develop and maintain IAM and IGA policies, standards, and procedures to ensure compliance with regulatory requirements and industry best practices.
• Collaborate closely with IT, Security, and business teams to define IAM/IGA requirements and deploy efficient, secure and reliable solutions that meet business needs.
• Perform regular assessments of IAM systems to identify and address weaknesses, ensuring the security and integrity of our IT environment.
• Provide technical expertise and support for IAM/IGA-related projects and initiatives, including system upgrades, migrations, and integrations.
• Monitor and analyze IAM/IGA system performance, making recommendations for improvements and optimizations.
• Stay current with industry trends and advancements in IAM/IGA technologies and apply this knowledge to enhance our IAM/IGA capabilities.
• Lead and mentor peers across the IT & security teams, providing thought leadership, guidance and support to foster professional growth and development.
• Respond to and resolve IAM-related incidents and issues in a timely and effective manner.
• Document and maintain documentation of system design. 

We’re looking for someone with

• At least 8-10 years of experience in identity and access management, with a strong knowledge of IAM/IGA and integrations with HRIS systems
• Experience architecting and implementing IAM solutions
• In-depth knowledge of IAM concepts, principles, and best practices.
• Proficiency in Entra ID, including experience with implementation, configuration, and management.
• Experience with HR systems such as Workday or SuccessFactors
• Thorough understanding of common and industry standard onboarding and offboarding procedures
• Deep knowledge of Active Directory with respect to identity
• Experience with scripting languages such as PowerShell
• Understanding of principle of least privilege (PoLP) security model
• Strong understanding of security and compliance frameworks and regulatory requirements related to IAM, such as, ISO27001, FedRAMP, GDPR, HIPAA, and more.
• Experience with IAM ecosystem tools and technologies, including single sign-on (SSO), multi-factor authentication (MFA), and privileged access management (PAM).
• Excellent problem-solving skills and the ability to analyze complex technical issues.
• Strong communication and interpersonal skills, with the ability to collaborate effectively with cross-functional teams.
• Proven ability to lead and mentor junior engineers, fostering a collaborative and growth-oriented environment.
• Industry certifications related to IAM or Entra ID are a plus (e.g., CISSP, CISM, Azure Security Engineer). 

About Tanium 

Tanium delivers the industry's only true real-time cloud-based endpoint management and security offering. Its platform is real-time, seamless, and autonomous, allowing security-conscious organizations to break down silos between IT and Security operations that results in reduced complexity, cost, and risk. Securing more than 32M endpoints around the world, Tanium's customers include Fortune 100 organizations, top US retailers, top US commercial banks, and branches of the U.S. Military. It also partners with the world's biggest technology companies, system integrators, and managed service providers to help customers realize the full potential of their IT investments. Tanium has been named to the Forbes Cloud 100 list for nine consecutive years and ranks on the Fortune 100 Best Companies to Work For. For more information on The Power of Certainty™, visit www.tanium.com and follow us on LinkedIn and X. 

On a mission. Together. 

At Tanium, we are stewards of a culture that emphasizes the importance of collaboration, respect, and diversity. In our pursuit of revolutionizing the way some of the largest enterprises and governments in the world solve their most difficult IT challenges, we are strengthened by our unique perspectives and by our collective actions.   

We are an organization with stakeholders around the world and it’s imperative that the diversity of our customers and communities is reflected internally in our team members. We strive to create a diverse and inclusive environment where everyone feels they have opportunities to succeed and grow because we know that only together can we do great things. 

Each of our team members has 5 days set aside as volunteer time off (VTO) to contribute to the communities they live in and give back to the causes they care about most.   

What you’ll get

The annual base salary range for this full-time position is $90,000 to $270,000. This range is an estimate for what Tanium will pay a new hire. The actual annual base salary offered may be adjusted based on a variety of factors, including but not limited to, location, education, skills, training, and experience.

In addition to an annual base salary, team members will receive equity awards and a generous benefits package consisting of medical, dental and vision plan, family planning benefits, health savings account, flexible spending account, transportation savings account, 401(k) retirement savings plan with company match, life, accident and disability coverage, business travel accident insurance, employee assistance programs, disability insurance, and other well-being benefits.

For more information on how Tanium processes your personal data, please see our Privacy Policy.

#Hybrid