Sr. IAM Engineer (CyberArk - PAM) (Remote)

As Sr. Identity and Access Management (IAM) Engineer, you will be driving forward the automation, management and compliance of Identities throughout the Enterprise by working closely with all teams in IT and our business units to understand and challenge old processes, bringing efficiency to our organization. We see Identity as more than just a userid and password to manage – our users’ identities enable an efficient and capable workplace.

Successful candidates will be humble, yet passionate and self-motivated. They will be strong leaders who can prioritize well, communicate clearly, and have a consistent track record of identifying opportunities and creating efficiencies. We welcome those who see things differently, aren’t afraid to experiment, practice the fail fast/fail forward philosophy, believe that if you have to do it more than once-you automate, and are comfortable having healthy discussions/debates with teammates and peers to drive the aforementioned principals.

The Identity and Access Management Sr. Engineer is responsible for contributing to designs, service development, service integration, implementation and operations related to Cloud identity security, Identity and Access Management (IAM), Single Sign-on (SSO) and Privileged Access Management (PAM). This hands-on position will have extensive experience as a professional with a strong background in identity management and automation through the Identity toolsets and additional automation technologies. 

Reports To: Manager, Platform Reliability Engineering

Essential Duties and Responsibilities:

• Build, configure and maintain the Cloud identity security, IAM, SSO and PAM solutions (Ping Federate/Ping ID/Ping SSO, Sailpoint IdentityIQ, CyberArk, Microsoft Active Directory (AD), Microsoft Azure/Azure AD/Azure AD Connect, Amazon Web Services (AWS), Google, Directory Services Administration Tools and Service Interfaces)
• Build, configure and deploy IAM, SSO and PAM toolsets according to design and business requirements with internal and external partners
• Manage the implementation, administration, governance, compliance, and maintenance of IAM, SSO and PAM systems and processes
• Perform outage response activity and report service restoration status
• Design and coordinate monitoring and alerting process for key access and authentication controls
• Participate in audits and compliance assessment activities as needed

Required Skills:

• Challenge conventional ways of thinking to solve problems, be a champion for the supported toolsets and lead adoption
• Enjoy continually growing your skills and thrive in a fast-paced environment
• Advanced root cause analysis and remediation
• Demonstrate advanced knowledge and skills related to Cloud, IAM, SSO and PAM
• Ability to work independently and comfortable sharing roles on a team
• Ability to build relationships with business and other departments.
• Strong written and verbal communication skills
• Advanced experience in Windows, Mac and Linux operating systems
• Manage of all phases of application lifecycle including requirements analysis, application design, construction, quality control testing, deployment and integration, troubleshooting, maintenance, and change management on Sailpoint IIQ
• Configure applications (Authoritative and Non-Authoritative) using Active Directory, Flat file, JDBC and LDAP connectors to load the Identity Cubes
• Extensive experience with maintaining and enhancing SailPoint IdentityIQ installation. Create and modify many applications and rules within the system
• Development of rules like Build Map, Correlation, Exclusion, Policy Violation, Policy Formatting as part of connector development
• Development of custom SailPoint Identity IQ Rules and Workflows based on business needs
• Developed custom connectors for custom target application
• Programming languages: Java, C# .Net, JavaScript, BeanShell, SQL
• Strong hands-on Java/J2EE experience
• Experience with SAML 2.0, SSO, OAUTH, OpenID, JWT, 2FA/MFA, WS-Fed, Kerberos, and LDAP
• Experience with PostgreSQL, MSSQL database platforms

Competencies:

SETTING GOALS – Creates and follows effective plans. Anticipates risks, creates contingency plans. Aligns plans with goals. Allocates adequate resources. Accepts and supports change. Willing to take risks and suggests new ideas, approaches. Takes initiative. Seeks out learning activities.

WORKING WITH OTHERS – Clearly articulates own, other’s goals. Promotes a team atmosphere by demonstrating humility and respect. Builds effective relationships, relates well to others. Delivers and responds to feedback in a constructive manner. Considers multiple perspectives. Handles conflict, pressure, uncertainty and adapts independently. Meets commitments. Dedicated to working with business partners on their expectations.

GETTING RESULTS – Personally accountable for work performance targets and achieving results. Prioritizes well. Anticipates and handles obstacles effectively. Makes good, timely decisions. Can simplify and process complex problems. Understands underlying issues and addresses root causes. Meets deadlines, works until finished.

Qualifications:

Experience:

• 5+ years related experience implementing and supporting Cloud security, IAM, SSO, and PAM infrastructures and tools

Education:

• Bachelor’s Degree from an accredited College/University with an emphasis in Engineering or Computer Science

#LI-Remote