IAM Engineer

Ideal Skillset:

• Experience with either Okta, SailPoint, or Saviynt
• Experience within an SAP S4 Hana environment

Responsibilities:

The Senior Identity and Access Management Engineer will serve as the Subject Matter Expert (SME) for access provisioning, governance, privileged access and administrative needs across the organization. This role will be responsible for executing the IAM strategy and implementing best practices and solutions, ensuring compliance with relevant policies and meeting the guidance of the Head of Identity and Access Management and IT leadership. The candidate will champion the adoption of a centralized access management architecture.

You will have the opportunity to:

• Designing, implement, and deploy IAM/IGA & PAM solutions in an enterprise environment.
• Create, maintain, and enforce policies and procedures to ensure effective provisioning, de-provisioning, and entitlements of all identities; suggest and implement continuous improvement and automation opportunities.
• Partner with key stakeholders to develop requirements to design and implement compelling IAM solutions aligning to corporate strategic goals.
• Manage end to end delivery of projects with hands on involvement in the development and configuration of products around IAM & PAM.
• Provide end-user support as directed by management, work on multiple highly complex functions, and interface professionally with business stakeholders to identify and recommend functional, technological, and control solutions.
• Use advance IAM and Digital Technology security posture, to reduce risk and impact profile, and implement effective and modern security controls.
• Adapt new technologies, tools, processes from the organization as needed.
• Assess and communicate information security concepts and practices, with both business and IT stakeholders.

We need you to have:

• A bachelors degree in Cybersecurity, Computer Science and Information Technology or equivalent work experience.
• 5-8 years’ experience in Identity and Access Management (IAM).
• 5+ years of industry experience in the development, customization, configuration, and deployment of Identity Management and Governance products such as Saviynt (Preferred) or SailPoint.
• 3+ years of experience working with any of these tools: Delinea (Preferred), CyberArk, BeyondTrust or equivalent tool experience.
• Expert knowledge in core IAM Domains: Identity Governance and Administration, Privileged Access Management, Endpoint Privileged Management, Authentication, Authorization, Identity Lifecycle Management.
• Expert experience and knowledge of Web Services and APIs for data integration and lifecycle provisioning, including REST, SOAP, and SCIM.
• Extensive hands-on experience with IAM technologies, standards and practices (e.g. LDAP, x509, Kerberos, RBAC, Privileged Access Management, Privileged Management, Radius, SAML, OAuth2, OpenID connect, Multi-factor Authentication, Single-sign-on).
• Familiarity with Active Directory, group policy management, and operating multiple federation technologies (i.e. ADFS, Ping, Okta, Azure AD, AWS IAM).
• Author and maintain various jobs used for lifecycle automation using scripting and configuration languages such as JSON, Java, SQL, PowerShell, Python, XML or similar.
• Excellent development skills – Java, JSON, SQL, API development, PowerShell.
• Experience working with or deploying SOD to SAP systems using the IGA/IAM tools.