Senior Identity Access Management (IAM) Engineer
United States of America
Full Time
1 week ago
$124,000 - $142,000 USD
No H1B
Key skills
SQLPowerShellAWSAzureIAMLogic AppsOracleSQL ServerIdentity ManagementSaaSMentoring
About this role
U.S. Financial Technology (U.S. FinTech) is seeking an experienced Senior Identity and Access Management (IAM) Engineer to join our team of talented professionals. The role focuses on supporting the Identity and Access Management program by developing automation for executing controls and improving efficiency while ensuring compliance with security standards.
Responsibilities:
- Oversee the management of AWS IAM solutions while partnering with Cloud Enterprise Infrastructure team
- Develop and drive automation of SailPoint Identity Cloud key functions: Certification Campaigns SOD Provisioning/Deprovisioning Workflows Access Intelligence Center (AIC) SaaS Source Mapping API integration of 3 rd party data sources
- Responsible for developing and facilitation for automation and execution of access reviews and recertification for all resources, responses to user transfer and lifecycle events
- Ensure the adherence to Information Security controls and processes for our daily control compliance as well as baseline controls for control compliance
- Gather evidence in support of auditing by internal and external audit bodies
- Responsible for maintaining and development of IAM process documentation and workflows
- Contribute to the operational discussions with the team
- Participate and assist to deliver IAM-related projects, coordinating with other departments
- Oversee the onboarding of select SaaS Offering into the IAM Security Controls Framework
- Work with other departments to integrate IAM solutions
- Conduct training sessions for Level II and III analysts
Requirements:
- Bachelor's degree or equivalent experience in an IT related field
- Minimum of 6 years' experience in Identity and Access Lifecycle Management Operations and Controls
- Applicants must be authorized to work in the US without requiring employer sponsorship currently or in the future
- Experience in Cloud Identity Management with a strong understanding of AWS IAM to include policies, roles, user management, and security best practices
- Direct experience with MS PowerShell, JSON, SailPoint Identity Cloud API, Workflows and SOD is necessary
- Working experience with Privileged Access Management tools, specifically TSS (Thycotic Secret Server)
- Experience leading group implementation and mentoring junior analysts through the process
- Experience using IAM tools and scripting for automation
- Candidate should have experience with MS Graph API, SCIM, and Azure Logic Apps
- Candidate should have a working knowledge of common OS and domain structures, servers, services, and their use of directory services
- Candidate should have experience with Windows, Linux, Red Hat, etc. hosts, operating systems and applications
- Self-starter; adaptable to change; motivated to set personal and program goals and proactively track performance against goals and initiatives
- Ability to handle multiple priorities – projects, deliverables, and stakeholders
- Strong ability to influence and mentor peers and management; ability to cross-functionally form relationships to achieve objectives
- Demonstrates an ability to think critically, contribute thought to a broader vision, and share ideas
- Willingness to learn new technology, tools and create new processes to meet control objectives
- CISSP, CISA, Microsoft, AWS certifications or equivalent designation highly desired
- Hands on experience with Oracle and SQL Server is a plus
- Experience using IGA/IAM and PIM tools is a plus
- Experience with operating controls aligned with ISO 27001/2, FISMA or National Institute of Standards and Technology (NIST) 800-53 Rev5 guidelines is preferred