Senior Associate - IAM Engineer

New York Life•New York, NY

16h•Hybrid

About The Position

As part of Technology, you'll have the opportunity to contribute to groundbreaking initiatives that shape New York Life's digital landscape. Leverage cutting-edge technologies like Generative AI to increase productivity, streamline processes, and create seamless experiences for clients, agents, and employees. Your expertise fuels innovation, agility, and growth driving the company's success. The IAM Engineer will play a key role in designing, engineering, and maintaining NYL’s Identity & Access Management solutions across all IAM domains: Identity Governance & Administration (IGA), Privileged Access Management (PAM), Directory Services, and Web Access Management (WAM). This role blends hands-on engineering with solution architecture, ensuring that IAM capabilities are robust, scalable, secure, and aligned with enterprise standards. The IAM Engineer will support both on-premises and cloud environments, working with a mix of commercial, SaaS, and custom platforms. Experience in SailPoint, CyberArk, Ping, Entra and Active Directory is strongly preferred. The ideal candidate will bring technical depth, a strong learning mindset, and genuine enthusiasm for advancing their craft. We are building the identity foundation for a more connected, AI-enabled, and technology-driven future so curiosity, adaptability, and readiness to embrace new capabilities will be essential.

Requirements

Bachelor’s degree in Computer Science, Information Systems, or equivalent experience.
10+ years of hands-on engineering experience across multiple IAM domains.
Strong knowledge of and experience with SailPoint, CyberArk, PingOne, PingFederate, Ping Directory, Entra and Active Directory.
Proven experience integrating IAM solutions in hybrid (cloud + on-premises) environments.
Familiarity with identity protocols such as SAML, OAuth 2.0, OIDC, SCIM, LDAP, SPIFFE, DCR, and PKCE.
Strong scripting skills (e.g., PowerShell, Python, Java) for automation and integration.
Understanding of IAM-related compliance and regulatory requirements (e.g., NYS DFS, NIST).
Ability to work effectively in a team-oriented, collaborative environment, with strong problem-solving skills.

Nice To Haves

Experience with cloud identity platforms (e.g., Azure AD, AWS IAM).
Exposure to Zero Trust architectures, modern authentication strategies, and AI-enabled security capabilities.
Prior experience in a large enterprise or financial services environment.
IAM vendor certifications (e.g., SailPoint IdentityNow Engineer, CyberArk Trustee/Defender, Ping Identity Certified Professional).

Responsibilities

Engineer, configure, and maintain IAM solutions across IGA, PAM, Directory, and WAM domains.
Collaborate with architecture teams to design IAM solutions that integrate securely with on-premises and cloud applications (AWS, SaaS, hybrid models).
Develop and maintain workflows, connectors, policies, and scripts to automate identity lifecycle and access management processes.
Integrate IAM solutions with enterprise authentication and authorization frameworks, including MFA, passwordless authentication, and emerging NHI standards (e.g., SPIFFE, DCR, PKCE).
Partner with Information Security, Application, and Infrastructure teams to ensure IAM solutions meet security, compliance, and audit requirements.
Troubleshoot and resolve complex IAM-related incidents, performance issues, and integration challenges.
Support roadmap delivery for IAM initiatives, including cloud adoption, Zero Trust enablement, and modernization of legacy IAM services.
Contribute to solution design reviews, platform upgrades, and security hardening initiatives.
Explore and implement AI/ML-based anomaly detection for identity risk scoring and adaptive authentication.
Build automation scripts (Python, PowerShell, Java) to enhance IAM workflows.
Collaborate on introducing AI-driven decision-making for access governance, identity-based threat detection, and identity intelligence.
Stay engaged with emerging identity, cloud, and AI-related technologies; bring forward ideas to evolve IAM for the future.