Information Security Engineer – Identity and Access Management

About The Position

Requirements

• 3-5 years of work experience, or equivalent combination of relevant professional experience and education.
• Bachelor’s degree in information assurance, Information Security, Cyber Security, Networking, or related discipline, or an equivalent combination of education, certification and work experience is preferred.
• Understanding of IAM methodologies and previous experience managing an IAM solution.
• Comprehensive knowledge and experience with authentication standards and technologies such as multi factor authentication, JSON Web Token (JWT), etc.
• Extensive hands-on knowledge of identity and access management best practices, procedures, and software solutions such as Sailpoint, Entra ID, etc.
• Extensive knowledge and experience with identity and access management technology, such as single sign-on (SSO), two-factor authentication, privileged access management, etc.
• Knowledge of Cloud Security standards.
• Strong experience in security systems, including firewalls, intrusion detection systems, anti-virus software, authentication systems, log management, content filtering, data loss protection, and encryption systems.
• Experience with network security and forensics tools.
• Knowledge of risk assessment tools, technologies, and methods.
• Experience designing secure networks, systems, and applications.
• Experience with one or more programming languages such as C++, Java, Python, Javascript, or C# preferred.
• Experience with Windows, Lunix / Unix, scripting (Bash, Powershell, or Perl), LDAP, SQL, and web services preferred.

Nice To Haves

• An advanced certification such as CIMP, CIAM, or CIST is preferred but not required.

Responsibilities

• Enhance, manage, and maintain the Identity and Access Management platform.
• Collaborate with ISM admin to onboard new applications, users and process into IAM workflow.
• Troubleshoot, identify, and resolve technical identity and access management related issues.
• Research, evaluate, design, test, recommend, and participate in the implementation of new security measures to remediate existing or new cyber threats.
• Investigate and remediate internal and external system and network security anomalies detected or discovered through penetration tests, vulnerability scans, or security risk assessments.
• Collaborate on security incident response efforts during all phases of remediation.
• Prepare and document departmental standard operating procedures.
• Develop and implement security strategies with AVP of Information Security to proactively detect and prevent cyber-attacks using applicable regulatory standards and industry best security practices.
• Assist in the enforcement of the Information Security Standards and Procedures.

Benefits

• Great health and dental benefits starting day one!
• PTO, long-term disability, and paid holidays.
• 401k with 8% company contribution after one year of employment.
• Paid leave policy after 12 consecutive months of employment.
• Free confidential mental health support program with Talkspace©.
• Free identity theft protection through IdentityForce©.
• Tuition reimbursement.
• Training and career growth opportunities.