Identity and Access Management Engineer

KBS - Kellermeyer Bergensons Services, LLC Logo

KBS - Kellermeyer Bergensons Services, LLC

πŸ’΅ $115k-$125k
πŸ“Remote - Worldwide

Summary

Join Kellermeyer Bergensons Services (KBS) as an Identity & Access Management (IAM) Engineer and play a critical role in securing access across on-premises and cloud environments. This 100% remote position (Pacific/Central time zones) offers a salary of $115-125K. You will design, implement, and manage identity solutions using various platforms, integrate cloud and on-prem applications, and automate identity lifecycle processes. Responsibilities include enforcing Conditional Access policies, troubleshooting IAM issues, conducting access reviews, and partnering with stakeholders. The ideal candidate possesses 5+ years of hands-on experience with Microsoft Entra ID/Azure AD, AWS IAM, and OneLogin, along with strong scripting and automation skills.

Requirements

  • 5+ years of hands-on experience with: Microsoft Entra ID / Azure AD, including Conditional Access, Governance, PIM, and Just-in-Time (JIT) access controls
  • AWS IAM and Identity Center
  • OneLogin or similar IAM platforms
  • Strong knowledge of IAM standards: SCIM, SAML, OIDC, OAuth2, FIDO2/WebAuthn
  • Scripting/automation skills (e.g., Python, PowerShell, Graph API, Terraform)
  • Experience with Zero Trust principles and identity-based security enforcement
  • Clear documentation and communication skills
  • Strong Analytical and problem-solving abilities
  • Ethical judgment and critical thinking
  • Excellent interpersonal and customer service skills
  • Proven time management and ability to meet deadlines
  • Bachelor's degree in Computer Science, Cybersecurity, or related field (or equivalent experience)
  • Minimum 5 years of experience designing, implementing, and supporting enterprise IAM solutions

Responsibilities

  • Design, implement, and manage identity solutions across Microsoft Entra ID / Azure AD, Active Directory, AWS IAM, and OneLogin, supporting hybrid and cloud-first architectures
  • Integrate cloud and on-prem applications using SCIM, SAML, OIDC, OAuth2, and FIDO2/WebAuthn
  • Manage and automate identity lifecycle processes (Joiner, Mover, Leaver), including both HR-driven and technical workflows, using tools like Python, PowerShell, Microsoft Graph API for provisioning, deprovisioning, and policy enforcement
  • Enforce and fine-tune Conditional Access policies, including MFA, device trust, RBAC, and risk-based access controls using Microsoft Entra ID
  • Lead troubleshooting and root-cause analysis for IAM-related issues across cloud and on-prem environments; collaborate closely with infrastructure and application teams
  • Conduct periodic access reviews, audit reporting, and identity governance activities to support compliance with SOC2, NIST CSF, and internal policies
  • Partner with stakeholders to capture IAM use cases, define process requirements, and manage cross-functional IAM project dependencies
  • Maintain accurate documentation of IAM processes, policies, and automation workflows
  • Stay current with evolving IAM technologies, threat trends, and best practices to improve security posture and support a Zero Trust strategy
  • Other duties as assigned

Preferred Qualifications

  • SC-300, SC-100, or equivalent identity/security credentials
  • Solid foundation in identity governance, RBAC models, and security best practices
  • Familiarity with Microsoft ecosystem tools: Defender for Identity, Intune, Purview, and Graph API
  • Experience contributing to enterprise-scale IAM projects, audits, or compliance initiatives (e.g., NIST, SOC2)

Benefits

  • Medical, dental, vision, prescription drugs
  • Paid Time Off
  • Paid Holidays
  • Sick Time
  • Life Insurance
  • Short Term Disability – Employer paid
  • Long Term Disability
  • Supplemental Health Insurance (E.G., Accident)
  • 401k plan with a match or Non-qualified Deferred Compensation Plan
  • Pet Insurance
  • PerkSpot Discount Program – discounts on travel, gyms, cell phones, restaurants, auto, apparel & electronics

Remote

Cybersecurity

Mid-level

Share this job:

Disclaimer: Please check that the job is real before you apply. Applying might take you to another website that we don't own. Please be aware that any actions taken during the application process are solely your responsibility, and we bear no responsibility for any outcomes.

Similar Remote Jobs