Lead IAM Security Engineer

Position: Lead IAM Security Engineer

Location: Chicago, IL

Duration: 12+ months contract

Role Description:

• Lead Identity centric Workforce Security solutions team to develop authentication and access management solutions
• Drive the development of identity solutions, access patterns, modern security protocols, practicing Zero trust, least privileged, defense in depth principles
• Review and provide feedback on Identity and access management related security solutions proposed by stakeholders and can provide consultation to the partners and IT Management
• In-depth knowledge and experience on Entra ID, EPM, Sentinel, Azure, AWS Security
• Knowledge on Okta, PingFederate, Entitlement management solutions
• Strong knowledge on Identities management on Azure AD with OAuth, OIDC, SAML, SSO, MFA, Conditional access policies, MFA, Kerberos, LDAP, Identity Federations etc.
• Experience in providing security solutions for Java based Micro services, React based frontends and Android/iOS based mobile applications on the Azure
• Hands-of experience in JWT, session handling, Code signing, Certificate authentication, TLS/SSL, API Security, Application registration, application integration scenarios etc.
• Awareness of API Management, Firewalls, DLP, VPNs, DNS, Azure Defender, MCAS, Sentinel, WAFs, Application Gateways, NSGs, App Proxy, Radius clusters, CDN etc.
• Good understanding of Cloud Infrastructure Entitlement Management solution (CIEM) to ensure smooth remediation of toxic combinations, high risk entitlements etc.
• Understanding and application of threat modeling concepts and methodologies
• Understanding of Applications security, OWASP standards, security best practices, browser compatibilities/storages/cookies
• Acts as IAM cybersecurity expert to in solutions spanning end user computing, proxy solutions, MFA, SSO, conditional accesses, Passwordless, Yubikey, bio-metric solutions, identity and governance scenarios, Secrets Management, automation, role based access control, Privileged identity management, Just in time accesses etc.
• Participates in solutions to support- token handling, OIDC/ OAuth flows, authorization patterns, identity federation, cloud architectures, cryptograpgy, cloud native services, cloud security etc.
• Deeper understanding on Cloud Security areas such as Policies, RBAC, activities, identities, privileged access management etc
• Ability to support operations in troubleshooting complex identity scenarios with hands-on experience on Sentinel/KQL/Audit logs etc.
• Good understanding of concepts related to docker Security, container orchestartions/Kubernetes
• Deep knowledge of application or infrastructure systems architecture, usually having experience with multiple system technologies.
• Excellent consultative and communication skills, and the ability to work effectively with client, partner, and IT management and st

Education: At least a bachelor s degree (or equivalent experience) in Computer Science, Software/Electronics Engineering, Information Systems, or a closely related field is required