IT Security Architect

About The Position

Requirements

• 2-4 years of experience using, installing, and administering IAM solutions.
• Solid understanding of IAM concepts, associated controls, terminology & technology.
• Experience administering and integrating tier zero identity infrastructure that provides AAA services such as MS Active Directory, Azure Active Directory, including Multi-Factor Authentication (MFA) services & controls.
• Strong customer service and interpersonal skills.
• Knowledge of common security standards such as NIST & GDPR.
• Good knowledge of managing infrastructure & endpoints in an enterprise setting.
• Must be a team player and analytical thinker, with robust troubleshooting skills and a creative problem-solving approach.
• Must be able to work with stakeholders & end-users who are located across the globe.
• Ability to work independently, present and describe highly technical topics in a non-technical manner, and effectively communicate with / educate business stakeholders at all levels, from individual contributors to C-level executives.
• Ability to produce and maintain detailed technical documentation, business processes and training material.
• Basic understanding of QA methodology including usability testing, performance testing, automated testing, test scripts, test cases and test plans.
• Familiarity with continuous delivery model and agile development processes.
• Must be flexible, willing to undertake a wide variety of new and challenging tasks all while driving results.
• Must be a US Citizen

Nice To Haves

• 4+ years of experience with administering & supporting the technology and associated business processes across the IAM domain for larger enterprise environments; ideally, within the software industry vertical.
• Industry and platform certifications are desirable.
• Extensive knowledge & experience designing, implementing, managing, and supporting Microsoft’s IAM products & services, including Microsoft Active Directory, Azure Active Directory (AAD), Conditional Access Policies, Azure AD Connect, Microsoft Identity Manager (MIM), Privileged Identity Management (PIM), and Azure MFA.
• Experience with implementing, administering, and supporting SailPoint’s IdentityNow and/or IdentityIQ (IIQ) IGA products.
• Experience with protocol-based Single Sign-On (SSO), Federated Identity Management (FIM), and virtual directory concepts & technology.
• Experience building, managing & maintaining ISO27001, SOC2, FedRAMP & SOX environments.
• 4+ years of experience with APIs and scripting languages (e.g. JavaScript, Python, etc).
• Experience with JSON, XML, SOAP and REST web-services.
• Preferred but not required: Bachelor’s degree in Information Security, Cybersecurity, Computer Science, Engineering.
• Solid knowledge / understanding of IAM patterns with Active Directory, GPO, Azure Active Directory, and cloud platforms such as AWS and GCP.
• Experience with developing and using PowerShell scripting.

Responsibilities

• Design, build, configure and deploy SailPoint’s IAM and PAM services & solution(s), including identity & accounts management, access management policies & associated controls, identity verification & authentication, secrets management, privileged access management as well as audit & reporting.
• Conduct analysis, generate designs & procedures, work closely with stakeholders to define use-cases, keep & maintain inventories, and develop comprehensive documentation & diagrams.
• Support IAM infrastructure operations, including troubleshooting user issues, change management, and performing system administration & maintenance.
• Monitor and respond to any capacity and/or performance needs, including rotational on-call support for the IAM infrastructure.
• Provide regular reports to leadership regarding security, data governance, capacity, performance, usage and licensing.
• Lead projects, provide security consultation(s), and develop detailed project plans for various projects & phases (PoC, Pilot, Production rollouts).
• Recommend and implement modifications that will enhance system usability & reliability while analyzing all aspects of the existing infrastructure.
• Proactively establish and grow a broad collaboration with business analysts, app / system owners, architects and engineers focusing on strategy, proliferation of automation & integrations, as well as defining / building and refining enterprise services & capabilities.
• Provide training on changes to system architecture and/or user experience (UX), document support procedures, and analyze user feedback to minimize impacts and maximize value to the business.
• Devise, develop and implement SOPs, SLAs and supporting workflows and approval criteria.
• Collect, analyze and decipher identity and security metrics & event data in order to provide meaningful recommendations to improve current policy configurations, and improvements to the UX.

Benefits

• Health and wellness coverage: Medical, dental, and vision insurance
• Disability coverage: Short-term and long-term disability
• Life protection: Life insurance and Accidental Death & Dismemberment (AD&D)
• Additional life coverage options: Supplemental life insurance for employees, spouses, and children
• Flexible spending accounts for health care, and dependent care; limited purpose flexible spending account
• Financial security: 401(k) Savings and Investment Plan with company matching
• Time off benefits: Flexible vacation policy
• Holidays: 8 paid holidays annually
• Sick leave
• Parental support: Paid parental leave
• Employee Assistance Program (EAP) and Care Counselors
• Voluntary benefits: Legal Assistance, Critical Illness, Accident, Hospital Indemnity and Pet Insurance options
• Health Savings Account (HSA) with employer contribution