Information Security Engineer (IAM and Platforms)

DMBA provides a variety of benefits including health, life, and retirement to employees of the Church of Jesus Christ of Latter-day Saints and its affiliates. DMBA began operations in 1970 and is now in its 53nd year of supporting the Church of Jesus Christ of Latter-day Saints and its mission.

Position Summary:

DMBA is looking for an Information Security Engineer to join the Information Security Team. The Information Security Team reports to the Chief Technology Officer and is responsible for the Information security program. This technical operations role will support various Information security cloud, infrastructure, and identity projects to safeguard sensitive business information.

Responsibilities:

• Help define and implement a comprehensive IAM program to enforce least privilege across organizational assets and services
• Provide technical support, problem resolution, and maintenance on various systems supporting IAM services
• Support IAM integration with various on-premises and cloud infrastructure to enable MFA and SSO
• Evaluate IAM technologies and support the creation of a road map to address privileged access management (PAM), passwordless capabilities, conditional access, and other IAM initiatives
• Evaluate various platforms and technologies for IAM capabilities and standardize role based access
• Collaborate with the security operations team on IAM logging and monitoring
• Support the implementation and monitoring of system baselines and configurations
• Partner with IT Operations to support certificate management
• Participate in incident response tabletop exercises to identify gaps and implement solutions
• Assist with the remediation of vulnerability findings
• Actively participate in architectural discussions with other engineers and support staff on various information security topics such as zero trust (ZTNA), observability, and emergent technologies
• Support the creation and management of a user behavior and entity analytics function
• Help define policies and procedures around IAM and other information security related functions
• Be an active participant in building the information security program by evaluating and suggesting new solutions and ideas and championing the information security program

Qualifications and Experience:

• 4-year Bachelor's degree or equivalent experience
• 5+ years of technical IT and information security experience
• 2-3 years of Identity and Access Management experience
• Strong understanding of information security best practices and security frameworks (NIST CSF, ISO 27001, ISO27005, CIS Controls, HITRUST, etc.)
• Deep knowledge of databases, common operating systems (Windows/Linux), networking, application, and cloud environments
• CISSP, AWS, Microsoft, cloud, or equivalent information security training and expertise preferred
• Experience with HIPAA, DOL Information security best practices, international, federal, and state privacy laws
• Strong knowledge of IAM security platforms and technologies (MS Entra ID, AD, PAM, SAML, OAuth, LAPS, etc.)
• Experience with Microsoft 365, Active Directory, AWS, CIS Benchmarks, cloud apps, and other common platforms and technologies
• PowerShell skills preferred

Other Qualifications:

• Ability to work with various IT and Business teams to address sensitive topics and risk
• Strong management and business communication skills
• Deep technical understanding and ability to apply it to complex technical and business solutions
• Highly motivated team player with a desire to improve the information security program
• Work in a hybrid remote work and office work environment

What We Offer:

• Competitive pay
• Rich medical, vision and dental benefits with low premiums (we are the #1 health plan in Utah!)
• Rich retirement planning; including 401(k) company match, 8% Retirement Plus Plan (we just give you free money for retirement), life insurance, and full service Financial Planners onsite at no cost
• Generous paid leave plan that starts accruing your first day, your birthday off, additional sick leave and 11 paid holidays
• World class wellness program with health coaching, ability to earn 3 additional days off a year, fun activities and an onsite gym.
• Tuition reimbursement
• Career development through company sponsored programs and over 5000 on-demand online training courses.