Senior Identity and Access Management Engineer

About The Position

Requirements

• 9+ years of administering Identity and Access for a large enterprise.
• Experience on one or more Identity Governance Tools: SailPoint IdentityIQ / IdentityNow, Saviynt, or equivalent IGA platforms.
• Extensive Experience with security protocols and standards (e.g., SAML, OAuth, OpenID Connect)
• Proven Experience in working on one or more compliance and standards such as SOX, NIST, ISO, GDPR and UAR processes/audit readiness is a must
• Hands-on and deep knowledge of Microsoft platform technologies such as Windows 10/11, M365/O365, AD/Entra ID , Exchange is a must
• Deep knowledge of Intune, MDM, and Microsoft licensing practices is required
• Proficiency in PowerShell automation is a must
• Broad understanding of common corporate applications and databases is required.
• Strong analytical and problem-solving abilities.
• Excellent communication and collaboration skills for cross-functional teamwork.
• Ability to manage multiple priorities and deliver under tight deadlines.
• Detail-oriented with a focus on accuracy and compliance.
• Proactive mindset for continuous improvement and innovation.

Responsibilities

• Technology Implementation and Foundational Technology Maintenance : Lead the deployment and integration of IAM technologies, leveraging Microsoft Active Directory (on-premises and Entra). Evaluate, select, and guide development of appropriate IAM tools and solutions to enhance security and user experience. Support MFA platforms, architecture and maintenance in alignment with Security Policy & Standards (DUO, Microsoft Authenticator)
• Maintain technical documentation for integrations, processes, and compliance activities. Align to Change Management Policy & Standards to ensure all changes are tested and implemented according to established processes within production, staging, QA, and development environments. Ensure Identity hygiene practices are in place, and continually performed (Clean up Stale accounts, SOD-Segregation of duties and ensure that RBAC/least privilege access is continually enforced)
• Governance support, and Operational Improvements : Create and implement operational best practices to ensure ongoing availability of identity systems. Support Cyber with the onboarding and integration of applications into the IGA platform. Partner with cross-functional teams to deliver governance solutions. Conduct regular assessments and audits of identity services to identify vulnerabilities and ensure compliance with security policy & standards.
• Privilege Access management: Support Cyber Identity Governance objectives by assisting with the Deployment, architecture and configuration, and optimization of Delinea PAM solutions to secure privileged access across on-prem and Cloud environments Drive automation and implement best practices to streamline operations and improve efficiency. Support compliance audits by providing evidence such as session recordings, password rotation Troubleshoot PAM-related issues and provide Tier 2/3 escalation support for critical system as needed.
• Compliance, Audit and Regulatory Support: Ensure adherence to regulatory and organizational compliance requirements such as SOX, TISAX, UAR Lead IAM team for all internal audits Support periodic access reviews and certification campaigns. Provide engineering support for identity compliance initiatives within Secure Global Environment (SGE). Validate access entitlements and remediate discrepancies in collaboration with Cyber Identity Governance teams.
• Collaboration and Leadership : Work closely within IT, as well as Cybersecurity, and business teams to understand access requirements and implement appropriate controls. Provide expert guidance and mentorship to IAM team members and other IT staff. Coach other members of the organization on the best practices that should be followed in identity and access management.
• Automation and Optimization : Implement best practices and automation to improve efficiency. In collaboration with Cyber Security, continually improve identity and access management solutions and systems for protection against evolving threats. Continually Enhance identity lifecycle management capabilities, including provisioning, de-provisioning, and role-based access controls. Ensure proper configuration and functionality for identity lifecycle processes. Oversee the development of automation scripts and workflows (e.g., using PowerShell) to streamline provisioning and de-provisioning processes. Optimize existing IAM processes for efficiency and effectiveness. Align and Support Cyber initiatives for the design, architecture and implementation of Identity focused Zero-Trust principles.
• Incident Management and Support: Act as the highest escalation point for complex access issues not resolved by the IT Service Desk. Oversee the resolution of IAM-related incidents and problems.

Benefits

• medical
• vision
• dental coverage
• 401k
• paid vacation
• holidays
• sick time
• other benefits