Identity & Access Management Security Engineer Senior

Role Overview

The Identity Security Engineer is a pivotal member of the Identity and Access Management team, responsible for ensuring efficient and secure user access across the organization. This role focuses on improving the user onboarding experience, streamlining employee transfers, and guaranteeing compliance with termination policies to maintain the highest level of security and operational efficiency. As the primary owner of the Identity Governance and Administration (IGA) platform, you will act as a subject matter expert on IAM technologies and processes, implementing solutions and providing support to the organization.

A key aspect of this role involves creating and maintaining robust IAM workflows and automations, establishing service level agreements (SLAs) for onboarding, and developing key performance indicators (KPIs) to measure effectiveness. You will collaborate closely with Cyber Security, Human Resources, RPA, and various Lines of Business to implement and optimize user-friendly IAM solutions.

Responsibilities

Onboarding and User Lifecycle Management

• Develop and implement streamlined processes for new user setup to ensure an efficient onboarding experience that meets defined SLAs.
• Oversee user access modifications and transfers, ensuring appropriate permissions are maintained throughout employee lifecycle changes.
• Implement and enforce procedures for user access termination to minimize security risks.

IAM System Management

• Manage the lifecycle of IAM solutions, including releases and integrations with other systems.
• Design, implement, maintain, and troubleshoot automated access control and identity management systems.
• Utilize programming skills to customize and enhance IGA platforms to meet business and compliance requirements.
• Develop and maintain scripts and automation for IAM processes.
• Troubleshoot and resolve technical issues related to IAM platforms and services.

Collaboration and Compliance

• Work closely with Cyber Security, Human Resources, and RPA teams to create efficient IAM and SSO solutions.
• Identify process deficiencies and implement improvements to enhance IAM operations.
• Support the development of IAM KPIs and KRIs, including scorecards and dashboards.
• Ensure IAM solutions comply with security standards, policies, and regulations.
• Assist with internal and external audits and security assessments.
• Conduct re-certifications of special user access reviews as needed.

Requirements

• 5-7 years of experience in IAM technologies, including IGA, SSO, MFA, Active Directory, Digital Certificates, and Certificate Authority.
• Experience leading IAM delivery processes, automation, and enterprise-level platform rollouts.
• Expert knowledge of IAM concepts such as Least Privilege, Privileged Access, Roles and Data mining, Segregation of Duty (SoD), and Role Based Access Control (RBAC).
• Ability to build custom workflows, connectors, and customizations within IAM/IGA platforms.
• Proficiency in programming languages such as Java, Python, or PowerShell.
• Strong knowledge of IAM protocols including Kerberos, SSO, OAuth, SAML, OIDC, and SWA.
• Experience with Identity Management solutions such as Okta, SailPoint, or Microsoft Azure AD.
• Bachelor’s Degree in Computer Science, Data Science, or a related field.
• Excellent verbal and written communication skills with the ability to work collaboratively across interdisciplinary teams.
• Proficiency with MS Office (Word, Excel, and Outlook).

Preferred Qualifications

• Relevant certifications such as CISSP or CISM.
• Specific certifications in IGA or IAM technologies.