Identity And Access Management Engineer

Summary

Join STCU, a top-performing credit union, as an Identity and Access Management (IAM) Engineer. You will design, implement, and maintain the organization's IAM infrastructure, ensuring secure and compliant access to systems and data. This role involves integrating new and legacy systems, automating processes, and utilizing advanced knowledge of authentication methods. You will oversee RBAC implementation and collaborate with stakeholders. The position requires a Bachelor's degree, five years of relevant experience, and specific certifications. STCU offers excellent benefits, including paid time off, health insurance, flexible schedules, remote work opportunities, training, and more.

Requirements

• Possess a Bachelor’s Degree in Information Technology, Information Systems, Business Management or Cybersecurity or equivalent work experience
• Have a minimum of five years of related experience within a medium to large organization
• Demonstrate proficiency in Microsoft AD, Azure AD, Identity Governance (IGA) and Privileged Access (PAM) tools in a 500+ user enterprise environment
• Have 2-3 years of experience building custom integrations with enterprise applications
• Have direct experience implementing PAM or IGA or both, managing employee lifecycle, and producing documentation (run book etc.)
• Have at least two ISACA, ISC2, GIAC or other industry standard certifications that demonstrate working knowledge of Information Security Domains, Risk Management or Identity Governance
• Possess software development and implementation skills of Identity and Access Management (IAM) processes and workflows

Responsibilities

• Design and guide the implementation of IAM processes, including but not limited to access provisioning, access changes, access termination, and access reviews by developing and leading the execution of strategies related to scaling IAM processes and initiatives.  This includes automation of key IAM tasks by utilizing both industry standard tools and programmatic coding
• Implement internal and external application access effectively by utilizing advanced knowledge of federation and other authentication methods.  This includes Security Assertion Markup Language (SAML), OpenID Connect (OIDC), Kerberos, LDAP, OAuth and others
• Demonstrate high proficiency with Active Directory (AD), Azure AD, GPOs, LDAP Directory Services, deployment and management of Identity Governance and Privileged Access tools, Certificate Management, Public Key Infrastructure (PKI), Cloud Technology and device authentication by directing the most effective option for IAM implementations
• Oversee effective implementation and maintenance of role-based-access control (RBAC) definitions that meet business needs, as well as implement the principle of least privilege, and Segregation of Duties by collaborating and gathering information from organizational stakeholders
• Effectively create, update or troubleshoot code or scripts to resolve issues, create efficiencies or integrate systems
• Deliver metrics and reporting that demonstrates value provided by IAM solutions, illustrates program efficiency and effectiveness, and highlights the risk of being reduced through program maturity
• Remain informed on trends, best practices or other strategically valuable issues that impact the department and make recommendations to manager on new initiatives and existing program improvements that deliver secure products and services. Ensure market value and user satisfaction

Preferred Qualifications

Have experience implementing and supporting a commercial Identity Governance and Administration (IGA) tool in a large enterprise

Benefits

• Paid time off—plus 11 paid holidays!
• Medical, dental, vision and life insurance
• Flexible schedules and remote work opportunities
• Training and career development
• Success sharing plan
• 401(k) matching contributions
• Tuition reimbursement