Identity and Access Management (IAM) Engineer

Job type: Full-time 

Type of role: Hybrid 

About Lubrizol  
The Lubrizol Corporation, a Berkshire Hathaway company, is a specialty chemical company whose science delivers sustainable solutions to advance mobility, improve wellbeing and enhance modern life. Founded in 1928, Lubrizol owns and operates more than 100 manufacturing facilities, sales, and technical offices around the world and has about 8,000 employees. For more information, visit www.Lubrizol.com.

We value diversity in professional backgrounds and life experiences. By enabling a consistent, unbiased, and transparent recruitment process, Lubrizol seeks to create a positive experience for candidates so we can get to know them at their best. We recognize unique work and life situations and offer flexibility, ensuring our employees feel engaged and fulfilled in every aspect of life.   

Join Our Thriving Team at Lubrizol as an Identity and Access Management (IAM) Engineer

Unleash Your Potential. At Lubrizol, we're transforming the chemical industry and looking for exceptional talent to join us on this journey. If you are ready to join an international company with talent around the world and want to make a real impact, we want you on our team. 

What You'll Do:  

As an Identity and Access Management (IAM) Engineer, you'll be at the forefront of our innovation, leading the design, implementation, and support of our enterprise Active Directory (AD) and Entra ID infrastructure. You'll collaborate with a diverse group of passionate individuals to deliver sustainable solutions to advance mobility, improve wellbeing and enhance modern life. This role is critical in ensuring the security, scalability, and reliability of our identity and access management systems. The ideal candidate will have deep expertise in AD, Entra ID, Group Policy, and related technologies, with a strong focus on automation, security, and best practices.

The Identity and Access Management (IAM) Engineer will work as part of the Hybrid Data Centers team, supporting our global Active Directory environments, both on-premises and in the Cloud. The successful candidate will work alongside other team members and have a primary focus on Identity and Access Management. The role will look for opportunities to further leverage Cloud based technologies and modernize how we operate through automation

• Design, implement, and maintain enterprise-level Active Directory infrastructure, including forests, domains, trusts, and OU structures.
• Troubleshoot and resolve issues related to Active Directory, including DFS, DNS, DHCP, WINS, and LDAP.
• Configure and manage Group Policies (GPOs), AD Sites, and Replication Topology.
• Integrate and manage Azure Active Directory and hybrid identity solutions.
• Analyze the current Active Directory and Entra ID environment to improve performance, reliability and security.
• Lead AD migrations, consolidations, and upgrades.
• Collaborate with security teams to enforce identity and access management policies.
• Automate tasks using PowerShell and other scripting tools.
• Monitor system performance, troubleshoot issues, and ensure high availability.
• Maintain documentation and provide training to junior engineers and support staff.
• Participate in on-call rotation and incident response as needed.

Skills That Make a Difference: 

• Bachelor’s degree in Computer Science, Information Technology, or related field (or equivalent experience).
• 5+ years of experience managing Active Directory and/or Entra ID in an enterprise environment.
• Excellent problem-solving and analytical skills.
• Excellent writing and communication skills.
• Ability to contribute to the team, and work independently.

Technical Skills:

• Expertise in:
  • Active Directory (AD) and Entra ID
  • Active Directory Domain Services (ADDS)
  • Group Policy Management
  • DNS, DHCP, and AD replication
  • Scripting – PowerShell or Terraform experience a plus
• Experience with identity federation (ADFS, SAML, OAuth) and Single Sign-On (SSO).
• Familiarity with Intune, conditional access policies and privileged access management.

• Strong understanding of security best practices and compliance frameworks (e.g., NIST, ISO, HIPAA).
• Strong understanding of public key infrastructure (PKI) and related digital certificate technologies – experience with DigiCert is a plus.
• Broad IT experience in areas such as network management, server administration, virtualization, and cloud services.
• Experience with virtual desktop engineering, including VDI solutions like Azure Virtual Desktop, VMware Horizon, or Citrix Virtual Desktops

Considered a Plus:

• Microsoft certifications (e.g., Microsoft Certified: Identity and Access Administrator Associate, Azure Solutions Architect).
• Experience with cloud identity platforms.
• Knowledge of Zero Trust architecture and modern authentication protocols.

Perks and Rewards That Inspire: 

• Competitive salary with performance-based bonus plans 

• 401K Match plus Age Weighted Defined Contribution 

• Competitive medical, dental & vision offerings 

• Health Savings Account 

• Paid Holidays, Vacation, Parental Leave 

• Flexible work environment 

Learn more at benefits.lubrizol.com!

Ready for your next career step? Apply today and let's shape the future together! 

It’s an exciting time to be part of Lubrizol. Lubrizol is not staying put. We are continually learning and evolving. Our passion delivers our success — not only for Lubrizol but for those who count on us every day: our employees, customers and communities. 

We work with a relentless commitment to operate safely and responsibly, keeping safety, sustainability, ethics, and compliance at the forefront of everything we do. The well-being of our employees, customers and communities is paramount to our culture and in the way we approach our work.

As a diverse, global team, we work together to solve some of the world’s most pressing challenges. We impact everyday lives through science only Lubrizol can deliver, and we never stop pushing to do it better.

One of the founding principles of The Lubrizol Corporation more than 90 years ago was treating every employee with dignity and respect. That same commitment is only stronger today. 

More than that, we are committed to providing an environment where every employee can be the best they can be, no matter their race, color, religion, sex, national origin, sexual orientation, gender identity, disability, protected veteran status or any other characteristic.

#LI-JM1 #LBZUS #LI-Hybrid