Senior Infrastructure Operations Analyst – Identity Access Management

T. Rowe Price•Owings Mills, MD

1d•$87,000 - $185,000•Hybrid

About The Position

At T. Rowe Price, we identify and actively invest in opportunities to help people thrive in an evolving world. As a premier global asset management organization with more than 85 years of experience, we provide investment solutions and a broad range of equity, fixed income, and multi-asset capabilities to individuals, advisors, institutions, and retirement plan sponsors. We take an active, independent approach to investing, offering our dynamic perspective and meaningful partnership so our clients can feel more confident. We believe doing the right thing for our clients and our associates is good business. With a career at the firm, you can expect opportunities to create real impact at work and in your community. You’ll enjoy resources to support your career path, as well as compensation, benefits, and flexibility to enrich your life. Here, you’ll find a collaborative culture that respects and values differences and colleagues who share a spirit of generosity. Join us for the opportunity to grow and make a difference in ways that matter to you. Role Summary The Senior Infrastructure Operational Analyst within the Identity Access Management (IAM) team is responsible for safeguarding digital identities throughout the organization. This role involves designing, implementing, and managing access policies, user lifecycle processes (onboarding/offboarding), and authentication systems. Leveraging deep expertise in identity management and related security disciplines, the analyst leads critical initiatives, applies comprehensive analysis to deliver innovative solutions, and establishes identity management standards across the enterprise. As an individual contributor, this position collaborates closely with cross-functional partners to influence technical direction and support the implementation of IAM solutions.

Requirements

Bachelor’s degree (or equivalent combination of education and relevant experience)
5+ years of relevant work experience.
Comprehensive understanding of authentication protocols (SAML, Kerberos, OAuth, OpenID).
In-depth knowledge of AWS, cloud computing, and identity management integrations.
Expertise with F5 Access Policy Manager (APM).
Experience with IBM Security Access Manager (iSAM) and IBM LDAP Server
Advanced skills in managing Active Directory, Entra ID, DNS, and DHCP.
Intermediate proficiency in Windows and Linux operating systems, including integration with Active Directory domains.
Experience with MS Defender for environment security.
Proficiency in scripting languages such as PowerShell and/or Python.
Strong verbal and written communication skills.
Proven ability to work independently and collaboratively, with project management skills.
Exceptional attention to detail, accuracy, and timeliness.
Self-motivated and eager to contribute in a creative, highly collaborative corporate environment.
Ability to participate in off-hours work, including scheduled on-call rotations.

Nice To Haves

Knowledge of certificate management.
Experience with Centrify, Netbackup, Quest Active Roles, CyberArk, and Venafi.

Responsibilities

Define and manage user access roles, permissions, and entitlements in line with the principle of least privilege (Access Governance).
Automate user provisioning, de-provisioning, and role modifications (Identity Lifecycle Management).
Administer IAM platforms such as Entra ID, Azure AD, CyberArk, and directory services (System Administration).
Conduct access reviews, audit logs for unauthorized access, and ensure compliance with regulatory mandates such as PCI and GDPR (Security & Compliance).
Implement and support authentication protocols including Single Sign-On (SSO), Multi-Factor Authentication (MFA), SAML, and OAuth (Authentication Protocols).
Provide technical support for identity-related issues and assist incident response teams (Technical Support).
Configure, administer, operate, and support identity management technologies, integrating with networks, hardware, software, applications, and databases.
Deliver end-to-end identity management services across all technology domains, including backup, recovery, and disaster recovery strategies.
Support identity management technologies in complex environments, including data centers, cloud providers, hosted vendor solutions, and co-location facilities globally.
Identify, plan, and execute identity-driven projects.
Fulfill IAM-related service requests via ServiceNow.
Monitor the health of IAM systems and enhance observability across supported services.
Manage incidents and problems as they arise.
Implement system changes, supporting modernization and mitigating vulnerabilities (often during off-hours).
Collaborate with Enterprise Security to address and remediate findings from penetration tests and vulnerability scans.
Automate manual processes to improve service efficiency.
Plan and execute migrations of on-premises workloads to AWS as part of the Data Center Exit strategy.

Benefits

Competitive compensation
Annual bonus eligibility
A generous retirement plan
Hybrid work schedule
Health and wellness benefits, including online therapy
Paid time off for vacation, illness, medical appointments, and volunteering days
Family care resources, including fertility and adoption benefits

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume