Lead Identity Access Management (IAM) Engineer/Architect

About The Position

Requirements

• Bachelor’s degree in Computer Science, Information Systems or related discipline with at least seven (7) years of related experience, or equivalent training and/or work experience
• Experience must include direct experience in leading key areas such as: securing networks and systems architecture, design and implementation, secure software assurance, intrusion detection, defense and incident response, security configuration management, access controls design and implementation and security policy and standards development
• In-depth knowledge of more than one communications protocol
• Experience managing several Cyber Security tools, including: Configuration Assessment, Log Aggregation, Integrity Verification, Web Application Security Testing, Network Access Control System, Network Intrusion prevention systems, and Endpoint Security Solutions
• Strong written and verbal technical communication skills
• Demonstrated ability to develop effective working relationships that improved the quality of work products
• Should be well organized, thorough, and able to handle competing priorities
• Ability to maintain focus and develop proficiency in new skills rapidly
• Ability to work in a fast paced environment
• Excellent planning skills
• Willingness to accept new challenges and grasp new or changing concepts, technologies and procedures
• In-depth knowledge across all areas of Information Security

Nice To Haves

• Master’s degree and past Financial Services industry experience preferred.

Responsibilities

• Lead enterprise IAM initiatives from planning through implementation
• Design and develop custom Java-based solutions within SailPoint IdentityIQ
• Lead the architecture of robust, scalable IAM solutions across hybrid environments
• Collaborate on system architecture decisions and integration patterns
• Design role modeling and certification campaigns
• Write and modify Java code within SailPoint for custom business logic (not just scripting - actual application development)
• Develop custom connectors and perform connector customization
• Configure and optimize workflow configuration
• Lead implementation of comprehensive testing strategies for IAM solutions
• Troubleshoot complex identity issues across hybrid environments
• Strong SailPoint IdentityIQ administration/development and hands-on Java programming experience
• Build and maintain AWS/Azure cloud access automation using Python/PowerShell
• Implement AWS IAM with hands-on policy creation and automation
• Manage complex access provisioning/deprovisioning workflows
• Integrate Active Directory/Azure AD administration and integration
• Create and maintain technical documentation for audit purposes
• Mentor junior engineers on SailPoint development, IAM architecture, and security best practices
• Coach and train colleagues in best practices for IAM development
• Lead cross-functional teams on IAM transformation projects
• Champion collaborative resolution of complex identity issues
• Provide feedback on processes and recommend improvements
• Partner with security and compliance teams on governance frameworks
• Communicate complex IAM concepts to non-technical stakeholders
• Openly share progress and priorities with key stakeholders
• Lead projects using Agile/Scrum methodologies
• Work under pressure and coordinate across multiple teams simultaneously
• Ensure all work products meet enterprise security standards
• Lead secure coding practices for IAM components
• Create and maintain technical documentation for audit purposes
• Design solutions supporting governance and compliance requirements

Benefits

• Employees may be eligible for a discretionary bonus in addition to base pay.
• Non-exempt employees are also eligible for overtime pay in accordance with federal, state, or local law.
• As part of its dedication to employee wellness, FINRA provides comprehensive health, dental and vision insurance.
• Additional insurance includes basic life, accidental death and dismemberment, supplemental life, spouse/domestic partner and dependent life, and spouse/domestic partner and dependent accidental death and dismemberment, short- and long-term disability, long-term care, business travel accident, disability and legal.
• FINRA offers immediate participation and vesting in a 401(k) plan with company match and eligibility for participation in an additional FINRA-funded retirement contribution, tuition reimbursement, commuter benefits, and other benefits that support employee wellness, such as adoption assistance, backup family care, surrogacy benefits, employee assistance, and wellness programs.
• Time Off and Paid Leave FINRA encourages its employees to focus on their health and wellness in many ways, including through a generous time-off program of 15 days of paid time off, 5 personal days and 9 sick days, unless otherwise required by law (all pro-rated in the first year).
• Additionally, we are proud to support our communities by providing two volunteer service days (based on full-time schedule).
• Other paid leave includes military leave, jury duty leave, bereavement leave, voting and election official leave for federal, state or local primary and general elections, care of a family member leave (available after 90 days of employment); and childbirth and parental leave (available after 90 days of employment).
• Full-time employees receive nine paid holidays.