As a Senior IAM Engineer, you'll be responsible for designing, implementing, and supporting identity and access management solutions. Your deep understanding of IAM principles, technologies, and best practices will ensure the security and integrity of our information systems. You'll work closely with IT and business teams to make sure the right individuals have access to the right resources at the right times for the right reasons.
What will you be doing?
• Design, deploy, and manage IAM systems and services, including single sign-on (SSO), multi-factor authentication (MFA), user automated lifecycle management, and identity governance.
• Architect and implement Okta solutions to manage user identities and access across various applications and systems within the organization.
• Utilize Okta workflows to create and manage automated provisioning solutions for on-premises and SaaS-based applications.
• Develop and maintain automated processes for user provisioning and identity lifecycle management using programming languages like PowerShell, JSON, and Python.
• Manage, administer, and maintain the on-prem BeyondTrust environment, ensuring its integration and functionality within the broader IAM framework.
• Design and implement identity governance solutions to manage user access rights and ensure compliance with organizational policies and regulatory requirements.
• Design and implement CIAM solutions such as Auth0 and B2C to manage customer identities, ensuring seamless and secure access to digital products and services.
• Run periodic campaigns to conduct access reviews and audits to identify and remediate inappropriate access and ensure compliance.
• Collaborate with IT and business units to understand their access requirements and translate them into technical specifications.
• Develop and maintain IAM policies, procedures, and controls in accordance with regulatory and compliance requirements.
• Integrate BeyondTrust solutions with other security systems such as SIEM, multi-factor authentication, and identity management platforms.
• Troubleshoot and resolve IAM-related incidents and enhance system performance.
• Provide guidance and leadership to junior team members and act as an IAM subject matter expert within the organization.
• Stay current with emerging IAM technologies and trends to improve security posture and operational efficiency.
• Work with vendors and external partners to integrate third-party systems with the organization’s IAM framework.
• Document IAM processes and maintain detailed records of system configurations and changes.
• Participate in a rotation to deliver after-hours support for IAM solutions and technologies.
What experience do you have?
• Post-secondary education in Computer Engineering, Information Technology, Cybersecurity, or equivalent work experience.
• 7+ years in IAM engineering with tools like SailPoint, Saviynt, Entra ID or Ping .
• 5+ years in IAM governance, focusing on identity lifecycle management, access provisioning, reviews, and compliance.
• Strong knowledge of SSO protocols (SAML, OIDC, OAuth, WS-Federation).
• Extensive experience with Okta workflows for automated provisioning.
• Proven skills in automating user provisioning and identity lifecycle management using PowerShell, JSON, and Python.
• Strong knowledge of directory services, LDAP, Active Directory, and other identity repositories.
• Experience with scripting and automation to streamline IAM processes.
• Strong IT security and risk management practices.
• Excellent analytical, problem-solving, communication, and interpersonal skills.
• Availability for on-call duties and out-of-hours support.
• Preferred certifications: CISSP or IAM-specific certifications.
