IAM Identity Engineer

University of California San Francisco•San Francisco, CA

About The Position

The Identity and Access Management (IAM) Identity Engineer will assist in the development, implementation, and maintenance of IAM solutions that adhere to the University's security policies and requirements. Key responsibilities include supporting the evaluation of hosting platforms and configuration technologies to ensure consistency across production and non-production environments. This role requires collaboration with IAM Managers, Senior Engineers, Administrators, Analysts, various University departments, and external vendors to ensure secure, compliant, and efficient access and identity data management. As a member of the Identity and Lifecycle Management team, the IAM Identity Engineer will help design, implement, and maintain the technical infrastructure that supports the lifecycle of user identities within UCSF. This involves working with various IAM tools and technologies to securely manage identities from creation to deactivation, ensuring compliance with UCSF policies and regulatory requirements. The IAM Identity Engineer should have experience in administering and supporting identity and governance (IGA) solutions. Additionally, they must possess knowledge and experience with advanced identity infrastructures. Strong troubleshooting skills are essential. Hands-on experience with technologies such as SailPoint, Bravura ID, or similar platforms is also required. The IAM Identity Engineer will positively impact UCSF’s operations and culture by ensuring UCSF’s IT infrastructure is operable, secure, efficient, and effective in service of the University’s mission. This team member will advance the University’s mission by delivering exceptional information technology services comprehensively and consistently across customers and stakeholders. This role will execute UCSF’s vision while modeling UCSF’s culture and values. Note: Certain terms and conditions of employment for this position, including the rate of pay, benefits, etc., are currently subject to negotiation with the appropriate union. The final salary and offer components are subject to additional approvals based on UC policy. Your placement within the salary range is dependent on a number of factors, including your work experience and internal equity within this position classification at UCSF. For positions that are represented by a labor union, placement within the salary range will be guided by the rules in the collective bargaining agreement. The annual salary range for this position is $101,300 - $216,700. To learn more about the benefits of working at UCSF, including total compensation, please visit: https://ucnet.universityofcalifornia.edu/compensation-and-benefits/index.html

Requirements

Three or more years of experience working in one or more of the following fields: cybersecurity, computer science, or computer information systems.
Bachelor’s Degree or four years of relevant experience/training in one or more of the following fields: cybersecurity, information technology, computer science, public administration, business administration, communications.
Experience with the implementation and integration of Identity and Access Management (IAM) systems and tools.
Demonstrated skills applying security controls to computer software and hardware.
Hands-on experience with directory services (e.g., Active Directory, Lightweight Directory Access Protocol (LDAP)), Single Sign-On (SSO) technologies, and multi-factor authentication (MFA) solutions.
Knowledge of data encryption technologies and experience selecting and applying appropriate data encryption technologies.
Knowledge of Identity Governance and Administration (IGA) solutions, including SailPoint, Saviynt, Bravura Identity, and similar platforms.
Proficient in scripting and programming languages (e.g., PowerShell, Python, Java) for automation and integration purposes.
Experience in incident response and digital forensics including reporting.
Strong written and verbal communication skills and ability to communicate technical information and ideas to a diverse community of colleagues and stakeholders.
Ability to establish and advance positive working relationships and a strong rapport with team members, stakeholders, and customers.
Strong organizational skills and ability to balance competing priorities and support concurrent projects.
Experience working in a project-based environment using leading project management practices including schedule management, status reporting, and communication of project risks and issues.
Strong demonstrated problem-solving skills; scopes solutions based on knowledge of available resources and timelines.
Ability to ask questions, gather information, evaluate options, and make decisions with integrity.
Thinks creatively and proposes innovative ideas, including the incorporation of new technologies or processes.
Ability to work with agility in a fast-paced environment.

Nice To Haves

Experience in complex higher education environments, serving academic, medical, and research, medical, and research and administrative functions of a large public university.
License/Certification Preferred: One or more of the following certifications: CCNP Security, Cisco Certified Internetwork Expert (CCIE) Security, Offensive Security Certified Professional (OSCP), Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH) Cisco Certified Internetwork Expert (CCIE) Security

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume