Identity Systems Engineer

About The Position

Requirements

• Bachelor’s degree and 4 years of relevant experience; or High School Diploma (or equivalent) and 8 years of relevant work experience in lieu of degree; or an equivalent combination of education and experience pursuant to Fla. Stat. 112.219(6).
• All applicants must be authorized to work for any U.S. employer.
• Visa sponsorship is not available for this position, and the university cannot accommodate H‑1B transfers or employment-based visa processing for individuals currently sponsored by another employer.
• Position requires a valid Class E driver’s license.
• This position may involve driving to various locations on and off campus to conduct University business.

Nice To Haves

• 3+ years supporting Identity and Access Management solutions in enterprise environments, including cloud and hybrid identity platforms.
• Hands-on experience with Microsoft Entra ID (Azure AD)
• Working knowledge of identity and access standards and protocols such as SAML, OAuth 2.0, OpenID Connect (OIDC), SCIM, and directory services (e.g., Active Directory).
• Experience with automation and scripting (PowerShell, Python, or similar) to improve IAM processes and operational efficiency.
• Familiarity with access governance, role‑based access control (RBAC), audits, and compliance requirements, ideally in a higher education or regulated environment.
• Familiarity with identity services in AWS and/or Google Cloud Platform.
• Bachelor’s degree in Information Technology, Computer Science, Cybersecurity, or a related field.
• Relevant industry certifications such as Microsoft Identity and Access Administrator (SC‑300), Azure Administrator, AWS Security, GIAC, or CISSP (certification in progress acceptable).

Responsibilities

• Design, operate, and secure identity platforms across cloud and on‑premises environments, including Microsoft Entra ID, AWS, and Google Cloud Platform, by implementing access policies, modern authentication methods, and identity protection controls aligned with security best practices.
• Integrate applications and systems with IAM services using standard identity protocols such as SAML, OAuth, OIDC, and SCIM, partnering with campus stakeholders and vendors to ensure secure, reliable, and timely access provisioning.
• Maintain IAM infrastructure and core services, including servers, directory synchronization, connectors, and agents, ensuring systems are patched, stable, and compliant with institutional security and operational standards.
• Manage the identity lifecycle end to end, supporting account provisioning, modification, reconciliation, and de‑provisioning to ensure data accuracy, policy compliance, and adherence to regulatory requirements.
• Support access governance and authorization controls by maintaining role‑based access models and entitlements, collaborating on access reviews, audits, and compliance activities.
• Improve IAM operations through automation and innovation, developing scripts, workflows, and AI‑assisted tools to streamline processes, reduce manual effort, and enhance service reliability.
• Participate in identity‑related security operations, including monitoring authentication activity, investigating anomalies, and supporting incident response related to account compromise or unauthorized access.

Benefits

• Benefit packages, including Medical, Dental, Vision, Life Insurance, Flexible Spending, and Employee Assistance Program
• Paid time off, including annual and sick time off and paid holidays
• Retirement savings options
• Employee discounts, including tickets to many Orlando attractions
• Education assistance
• For more benefits information, view the UCF Employee Benefits Guide.