IAM Engineer, Identity Security

provided job description:

We are looking for a proactive individual to fill the role of Mid-Level IAM Engineer within our Identity Security Team. This position plays a critical part in crafting, executing, and refining Identity and Access Management (IAM) solutions in our cloud-based environment. The successful candidate will be responsible for ensuring the security and effectiveness of user and privileged access processes, playing a significant role in the advancement of our Privileged Access Management (PAM) system, Teleport. This role necessitates strong technical expertise in IAM, as well as the capability to shape product strategy and facilitate solution delivery.

Key Responsibilities:

• Lead the implementation and maintenance of core IAM solutions like Okta and Microsoft Entra ID, acting as the main engineering resource and champion for Teleport (PAM).
• Spearhead and automate the entire IAM lifecycle, including provisioning, de-provisioning, role management, and access reviews.
• Develop and manage robust automation scripts in PowerShell, Python, and Bash to streamline IAM operations and elevate security.
• Provide expert troubleshooting for complex IAM issues, ensuring prompt assistance and systemic enhancements.
• Collaborate with diverse teams (infrastructure, cloud engineering, dev) to formulate, blend, and deploy secure IAM solutions.
• Contribute to the strategic roadmap, vision, and requirements for IAM product areas, particularly PAM (Teleport), based on business value, security threats, and compliance prerequisites.
• Ensure IAM solutions align with compliance standards (GDPR, ISO27001, SOC2) and cybersecurity best practices; actively pinpoint and appraise identity/access-related risks.
• Document IAM procedures and configurations to bolster operational excellence.
• Keep abreast of IAM trends and suggest cutting-edge security solutions.
• Define, monitor, and report on IAM performance metrics (KPIs), utilizing analytics for ongoing enhancement.
• Serve as a conduit between technical teams and stakeholders, ensuring lucid updates on project progress and security outcomes.

Required Qualifications:

• Bachelor's degree in Computer Science, Information Security, or a related field.
• 4-6 years of progressive experience in IAM or closely related IT security roles.
• Profound comprehension of IAM principles, best practices, and the IAM lifecycle.
• Demonstrated hands-on experience in cloud-native environments such as AWS, Azure, and GCP.
• Proficiency with enterprise IAM solutions (Okta, Microsoft Entra ID).
• Essential: Direct, hands-on involvement with PAM solutions; Teleport experience highly desired.
• Advanced competency in scripting for automation (PowerShell, Python, Bash) with a history of successfully implemented solutions.
• Sound understanding of security and cloud architecture principles.
• Strong analytical, problem-solving, and logical thinking abilities.
• Demonstrated ownership of assignments and projects; adept at working autonomously and collaboratively.
• Outstanding written and verbal English communication skills, apt at explaining complex ideas to diverse audiences.
• Dedication to continual learning and a zeal for cybersecurity.

Preferred Qualifications:

• Certification in security or cloud domains (e.g., CompTIA Security+, CCSP, AWS Security, Azure Security, CISM, CISSP).
• Experience with API integration and development for IAM solutions, especially RESTful APIs.
• Familiarity with Identity Governance & Administration (IGA) concepts.