Key Responsibilities:
This position, IAM Security Engineer, plans and develops security measures to safeguard information against accidental or unauthorized modification, destruction, or disclosure. Works with management and other personnel to identify security best practices and applies a risk-based approach to information security, with the following responsibilities:
- Coordinate between infrastructure, application, and threat monitoring teams to ensure the timely and successful delivery of our solutions.
- Work closely with architecture and engineering teams design and implement new capabilities.
- Create and maintain system documentation for enterprise security technologies, including installation, configuration, and appropriate troubleshooting steps.
- Operational support responsibilities across multiple IAM tools (Authentication, Identity, Privilege Access and Directory services).
- Specifically, duties include: - Respond to real-time monitoring and alerting of performance events, including incident response bridge and ticketing queues.
- Perform initial Incident and/or Problem determination from alerts including equipment problems, system software problems, certificate problems.
- Take the appropriate, predefined recovery actions for the various operational events including engaging external teams for resolution.
- Provide support for end users the Service Desk is unable to solve, support for operational health of IAM tools including coordinating patching, infrastructure upgrades, and application enhancements and support to ticketing intake queues for IAM services.
- Perform access request fulfillment [RC1] duties.
- Excellent customer service capability and attitude provided to other technology stakeholders. Required Skillset.
- Minimum of 3-5 years work experience in IT with at least 2 years of experience in IAM and/or other Information Security domains, BS/MS in Cyber Security, Computer Science, Mathematics, Engineering, Information Services or equivalent.
- Demonstrated understanding of modern IAM concepts and best practices, understanding and experience with design and implementation of leading IAM solutions such as Ping, Sail Point, Forge Rock, Okta, Hashi Corp, Terraform, and Cyber Ark.
- experience with Cloud security capabilities and tools related to IAM engineering including on Amazon Web Services and/or Azure.
- Expertise and experience in integrating secrets management tools such as Hashi Corp Vault with Platform-as-a-Service tools using common Dev(Sec)Ops models with a preference for Tekton and Code Pipeline integrations [RC2.
- Understanding and experience with Cloud Security and IAM as such as Microsoft Azure Active Directory, AWS Managed Active Directory, Identity Federation protocols such as SAML2, WS-Federation, OAuth and OpenID Connect Understanding and experience with Unix, Windows OS system and scripting skills.
- Ability to evaluate risk and communicate it in a fact-based manner, to clearly communicate with peers, business analysts, and subject matter experts and to lead and mentor junior team members and colleagues, and support leadership directives.