Senior Identity & Access Management (IAM) Engineer

Northeastern University•Boston, MA

About The Position

This job description is intended to describe the general nature and level of work being performed by people assigned to this classification. It is not intended to be construed as an exhaustive list of all responsibilities, duties and skills required of personnel so classified . JOB SUMMARY The Senior Identity & Access Manager (IAM) Engineer is responsible for designing, implementing, and managing the identity and access management framework within Northeastern University . Utilizes a deep understanding of IAM technologies, security protocols, and best practices to ensure the protection of sensitive information and compliance with regulatory requirements. Leveraging identity systems including Microsoft Active Directory, Entra, Savyint, Grouper and Shibboleth, provides senior operational support to these systems in support of Single Sign-On (SSO), User Provisioning, Privileged Access Management, and Role-Based Access Control (RBAC). Make recommendations for, and lead the implementation of changes through a formal change management process., working with cross-functional teams to align IAM initiatives with business objectives. Plays a critical role in shaping the security posture of the organization working with cutting-edge technologies and leading initiatives that have a significant impact on user experience, operations and security. Applicants must be authorized to work in the United States. The University is unable to work sponsor for this role, now or in the future

Requirements

Bachelor's degree in computer science, Information Technology, or relevant experience
Minimum of 7 years of experience in Sr. IAM Engineering and implementation roles.
Extensive platform knowledge and experience working with Entra ID, Microsoft Active Directory, Entra Connect, Grouper, Shibboleth and Savyint, or equivalent tools.
Extensive Experience with security protocols and standards (e.g., SAML, OAuth, OpenID Connect)
Advanced proficiency in scripting tools, such as bash, SQL, PowerShell, and Jenkins or GitHub Actions, for automation and management tasks. Experience with automation tools and frameworks relevant to IAM is a plus
Excellent technical and communication skills, with the ability to articulate complex IAM concepts to non-technical stakeholders. Strong analytical and problem-solving abilities. Proven track record of working in complex production environments.

Nice To Haves

Knowledge and experience of working with Shibboleth, Incommon Federation, or SailPoint, LDAP are nice-to-haves

Responsibilities

Technology Implementation : Lead the deployment and integration of IAM technologies, leveraging Microsoft Active Directory (on-premises and Entra). Evaluate, select, and guide development of appropriate IAM tools and solutions to enhance security and user experience.
Operational Improvements : Create and implement operational best practices to ensure ongoing availability of identity systems.
Collaboration and Leadership : Work closely with IT, security, and business teams to understand access requirements and implement appropriate controls. Provide expert guidance and mentorship to IAM team members and other IT staff.
Automation and Optimization : Oversee the development of automation scripts and workflows (e.g., using PowerShell) to streamline provisioning and de-provisioning processes. Optimize existing IAM processes for efficiency and effectiveness.
Incident Management and Support : Act as the highest escalation point for complex access issues not resolved by the IT Service Desk. Oversee the resolution of IAM-related incidents and problems.

Benefits

Northeastern has a comprehensive benefits package for benefit eligible employees. This includes medical, vision, dental, paid time off, tuition assistance, wellness & life, retirement- as well as commuting & transportation.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume