Identity & Access Management (IAM) Engineer

About The Position

Requirements

• 3+ years of experience in Privileged Access Management or Identity and Access Management and Workforce Identity Management.
• Hands-on experience or strong familiarity with CyberArk and Centrify PAM solutions with deep knowledge of credential vaulting, session monitoring, access provisioning, and policy enforcement in enterprise environments.
• Strong operational focus on stability, scalability, and compliance, with proven success integrating PAM with ITSM, SIEM, and infrastructure tools to streamline operations and support incident response.
• Good understanding of Active Directory, PowerShell scripting, account provisioning, and access governance.
• Understanding of identity protocols such as SAML, OIDC, and OAuth2.
• Strong troubleshooting and analytical skills in IAM/PAM environments.
• Familiarity with compliance frameworks such as SOX, GDPR, and PCI-DSS.
• Experience with ITSM and Agile tools like Jira, Confluence, and ServiceNow.
• Good communication skills and ability to collaborate across teams.
• Experience managing and scaling Okta Workforce Identity, with hands-on expertise in SSO, MFA, and automated lifecycle workflows for secure, efficient enterprise access.

Nice To Haves

• Bachelor’s degree in computer science, Information Security, or related field.
• IAM certifications (e.g., SailPoint BA, ISC2 SSCP, CISSP Associate)
• Experience integrating IAM with AWS or Azure

Responsibilities

• Perform daily operational support for CyberArk and Centrify/Delinea platforms, including: Onboarding and maintaining privileged accounts and safes Managing password rotations, vault health, and policy enforcement Monitoring session management services and resolving session failures Supporting endpoint privilege elevation and least‑privilege configurations
• Support and maintain CyberArk and Centrify PAM platforms, including privileged account onboarding, password vaulting, session management, and access controls.
• Respond to incidents involving privileged access failures, credential issues, or security alerts.
• Assist in the administration of privileged access workflows, including provisioning, deprovisioning, and access reviews.
• Support Okta Workforce Identity platform for authentication, SSO, MFA, and user lifecycle management as a secondary responsibility.
• Monitor, troubleshoot, and optimize PAM and IAM integrations to ensure secure and seamless access.
• Monitor, troubleshoot, and optimize Okta integrations and workflows, including federated identity setups, API-based automation, and application onboarding, to maintain high availability, performance, and compliance with security standards.
• Respond to access-related service requests, incidents, and escalations related to privileged accounts.
• Maintain and update documentation for PAM and IAM processes, configurations, and audit controls.
• Collaborate with cross-functional teams to support compliance requirements (SOX, GDPR, PCI-DSS) and security best practices.
• Participate in continuous improvement initiatives to enhance PAM/IAM tools and processes.
• Assist in incident response activities related to privileged access security events.
• Stay current with PAM and IAM trends, technologies, and industry best practices.

Benefits

• A work environment built on teamwork, flexibility, and respect
• Professional growth and development programs to help advance your career, as well as tuition reimbursement
• Team Member Vehicle Purchase Discount
• Toyota Team Member Lease Vehicle Program (if applicable)
• Comprehensive health care and wellness plans for your entire family
• Toyota 401(k) Savings Plan featuring a company match, as well as an annual retirement contribution from Toyota regardless of whether you contribute
• Paid holidays and paid time off
• Referral services related to prenatal services, adoption, childcare, schools and more
• Tax Advantaged Accounts (Health Savings Account, Health Care FSA, Dependent Care FSA)