
ID 2026-5017
Category Digital Technology
Position Type Full-Time
Pay Range $107,200 - $178,600
About Us :
EDF power solutions North America has been providing clean energy solutions throughout the U.S., Canada, and Mexico since 1987. We are a market-leading independent power producer and service provider, serving utilities, corporations, industries, communities, institutions, and investors with reliable, low-carbon energy solutions that help meet growing demand.
From developing and building scalable wind (onshore and offshore), solar, storage (battery and pumped storage hydro), smart EV charging, microgrids, green hydrogen, and transmission projects, to maximizing performance and profitability through skilled operations and maintenance and innovative asset optimization, our teams deliver expert solutions along the entire value chain—from origination to commercial operation. Be a part of an innovative and collaborative team environment that fosters our goal of delivering renewable solutions to lead the transition to a sustainable energy future.
Benefits & Perks :
EDF power solutions offers best-in-class employee benefits, including the following:
We are also proud to offer:
Salary Range : The full pay range for this role is $107,200 - $178,600 annually, and the good faith estimated starting pay for this position upon hire is $125,000 - $140,000 annually. We generally base our salary decisions on factors including but not limited to, relevant work and leadership experience, education, demonstrated performance, internal equity, and in some cases, geographic location.
Scope of Job :
The Identity and Access Management (IAM) Engineer serves as the strategic anchor, technical implementer, and cultural champion for Identity and Access Management within the Cybersecurity team. As the cornerstone of the modern security program, this role ensures that the right individuals have the right access to the right resources at the right timesand for the right reasons.
This role is integral to the day-to-day management of the IAM infrastructure and identity lifecycle from onboarding to offboarding. The IAM Engineer defines the identity strategy, hands-on architect,implements enterprise-grade toolsets, and builds the seamless operational processes required to support them.
In addition to deep technical deployment, this role acts as the organization’s chief IAM representative - collaborating with cross-functional teams, educating the business on why identity security matters, and breaking down complex security protocols into friction-free user experiences. By bridging the gap between engineering excellence and strategic vision, you will directly mitigate security risks, enable business productivity, support regulatory compliance, and fortify our overall security posture against unauthorized access and data breaches.
Work Mode : Hybrid - San Diego, CA or Remote (U.S. only)
Supervision of Others:
N/A
Working Conditions:
95% of time is spent in the office environment utilizing computers (frequent use of various Microsoft software/programs), phones, and general office equipment. 5% of time is spent outside of the office visiting vendors’ and/or internal customer sites in addition to attending various conferences and meetings.
Fiscal Responsibilities:
N/A
Education/Experience:
Bachelor’s degree required, equivalent years of experience in this specific field may be substituted for a degree.
Minimum of 6 years of experience in IT/Cybersecurity, with at least 4-years heavily focused on IAM administration, directory services, and federation protocols (SAML, OIDC, OAuth).
Certifications such as CISSP, CompTIA Security+, and/or vendor-specific credentials (e.g., Okta Certified Professional, Microsoft Certified: Identity and Access Administrator Associate) preferred.
Demonstrated experience writing technical documentation, standard operating procedures (SOPs), and runbooks for identity management.
Hands-on experience managing enterprise directory services, particularly Microsoft Active Directory (AD) and LDAP.
Experience in integrating IAM solutions with a wide range of applications, including SaaS (e.g., Salesforce, Workday, Office 365) and on-premises systems.
Skills/Knowledge/Abilities:
Deep expertise in at least one leading IAM platform ( e.g., Clear Skye, Veza, Entra ID Governance, Okta, Ping Identity)
Strong proficiency in modern authentication and authorization protocols, including SAML, OAuth 2.0, OIDC, and SCIM.
Ability to manage enterprise directory services, particularly Microsoft Active Directory (AD) and LDAP.
Solid scripting and automation skills using languages like PowerShell, Python, or Shell scripting to manage infrastructure and processes.
In-depth understanding of core IAM concepts such as Identity Lifecycle Management, Single Sign-On (SSO), Multi-Factor Authentication (MFA), and Federation.
Practical knowledge of Privileged Access Management (PAM) and Identity Governance and Administration (IGA) principles and solutions.
Ability to integrate IAM solutions with a wide range of applications, including SaaS (e.g., Salesforce, Workday, Office 365) and on-premises systems.
Familiarity with cloud infrastructure identity models, particularly AWS IAM, Azure IAM, and Google Cloud IAM.
Understanding of networking concepts (TCP/IP, DNS, firewalls, load balancers) as they relate to IAM system connectivity and security.
Knowledge of security frameworks and compliance regulations such as NIST, ISO 27001, SOX, GDPR, and HIPAA.
Exceptional analytical and problem-solving abilities, with a knack for deconstructing complex technical issues and developing effective solutions.
Strong interpersonal and communication skills, capable of explaining complex technical concepts to both technical and non-technical audiences.
A collaborative mindset with a proven ability to work effectively in cross-functional teams with developers, system administrators, and business stakeholders.
Meticulous attention to detail, especially when dealing with security configurations, access rights, and policy enforcement.
A strong sense of ownership and accountability, with the drive to see projects through from conception to completion.
Ability to manage multiple priorities in a fast-paced environment while maintaining a high standard of quality.
A proactive and continuous learner, dedicated to staying current with the rapidly evolving landscape of identity security.
Physical Requirements:
Ability to lift 50lbs to install and manage hardware components.
Location
Salary
Job Type
Work Mode
Experience
Posted