Job Title Senior Azure IAM Engineer
What You’ll Do:
- Directory Services
- Active Directory On-Prem
- Azure AD
- Access Management
- AWS IAM
- AAD Roles
- AAD PIM
- Identity and Device Governance
- AAD Governance
- AAD Ent Apps
- AD GPO
- Conditional Access
- Authentication
- AD Domain Controller
- AD CA
The main responsibilities of the position include:
- Create an exceptional end-user identity experience across the organization by integrating systems, applications, services, and platforms with the Identity solution
- Maintain and support existing identity and authentication platforms while transitioning to a common system. These include: AD, Azure AD, ADFS, ADLDS, MFA and integrations to OAuth
- Work in a collaborative and Agile team environment following established cadences and practices
- Mentor, cross-train team members and define processes for WFS
- Maintains effective service relationships with business units by keeping them informed of the status of their access requests and tickets, and provides non-technical answers to access questions. Meets team and departmental service levels and objectives. Upholds strong global working relationships with other members of IAM, Information Security, Cyberops and business partners.
- Resolves Tier 2 and 3 technical issues to determine root cause and implements corrective action. Recognizes when to escalate and uses it as an opportunity to increase knowledge
- Accountable for meeting quality, productivity, and service standards. Identifies opportunities to improve the efficiency and effectiveness of access administration processes and procedures
- Install, integrate, configure, and deploy IAM solutions and systems to facilitate User Life-Cycle Management, Identity and Access Governance, Automated Provisioning, Single Sign-On, Federation, Privileged Account Management
- Planning and implementation of security controls, as well as daily administration until automated
- Conduct routine and regular ongoing reviews of security audit and control procedures
- Resolve and manage user access problems and questions reported to the Service Management ticketing System
- Identify and help design procedures and automated processes to fulfill security requirements for Identity Access Management across the organization
- Act in a strategic capacity as the most senior technical expert for all Identity & Access Management (IAM) technologies, tools and processes across the organization for both on-prem and cloud-based solutions
- Lead the investigation and resolution of complex privacy, security, and access management problems
- Provide input to the IAM capability roadmap and strategy
- Serve as a Subject Matter Expert (SME) for application security access provisioning solutions
- Rollout strategic security access practices using Conditional Access and other methods to ensure remote connectivity condition requirements are met and strengthen our security posture for our mobile workforce and externally accessible applications.
- Participate in an on-call support on a rotational basis
What You’ll Need:
- 8+ years’ experience with infrastructure or Identity and Access Management Systems and Services
- Bachelor degree in engineering, information technology, or related discipline (significant work experience may be considered in lieu of degree)
- Expert in Active Directory and Azure AD as well as an understanding of key players in IAM and IGA areas (i.e., Microsoft, Savient, etc.)
- Expert in scripting using PowerShell, Python and/or other scripting languages to deliver automated and consistent results across the stack
- Strong familiarity and experience with authentication methods, SSO, OAuth, MFA, SAML, Federation and Certificates
- Excellent in identity security practices and multifactor authentication solutions
- Excellent at diagnostic and problem resolution
- Excellent verbal communications and written documentation skills are required
- Experience in SOX and Regulatory audits/compliance
- Knowledge of common information security management frameworks, such as ISO/IEC 27001, COBIT, and NIST, including 800-53 and the Cybersecurity Framework.
- Previous experience with Amazon Web Services IAM, a big plus.
- Has good understanding of key Agile concepts and/or experience Agile environment
Signs That You’re a Strong Candidate:
- You have experience growing identity capability as part of an enterprise cloud and digital transformation
- You have transitioned a large organization from an on-premise to a cloud-based identity platform
- You live and breathe identity and enjoy sharing this passion with others around you
- You focus on the overall excellent customer experience rather than only on technology
- You inspire confidence, motivation, and creativity in a team environment
- You show caring and understanding
- You seek out clarification and embrace the unknown without needing direction
- You seek and utilize feedback positively
“Honesty, Integrity and Character above all”
Job Category: Azure Cloud
Job Type: Full Time
Job Location: Remote