Overview
On Site
$70 - $75 hourly
Contract - W2
Contract - Temp
Skills
Accounting
Provisioning
Policies and Procedures
Authorization
Access Control
Account Management
Security Controls
Root Cause Analysis
Onboarding
Auditing
Computer Science
Information Technology
Cyber Security
Information Security
Information Security Governance
Scripting
Microsoft Exchange
RBAC
SSO
Multi-factor Authentication
IDP
Active Directory
IDPS
Risk Management
Database
API
Windows PowerShell
Cloud Computing
Amazon Web Services
Microsoft Azure
PKI
Encryption
Management
SQL
Splunk
Dynatrace
GPO
Authentication
Problem Solving
Conflict Resolution
Communication
Artificial Intelligence
Messaging
Job Details
RESPONSIBILITIES:
Kforce has a client that is seeking a Senior IAM Engineer in Shelton, CT.
Summary:
The Senior IAM Engineer will be responsible for the analysis, implementation, maintenance, and assist with design of all layers of IAM applications, which includes Authorization/Authentication/Accounting, Identity and Account Creation/Management/Provisioning.
Project Work:
* This includes the setup of new configurations and baselines around IAM within the IDP. This includes conditional access policies, RBAC, new SCIM setup, new governance
* Initial set up and configuration of a new IDP solution (OKTA) with an ability to perform architecture diagraming that will be used as the benchmark for future efforts. Utilize best practice frameworks and maturity models to set the future growth of the program as a whole
* Manage technology projects and system activities
Operations:
* Aligns with Industry best practices and establish company policies and procedures accordingly
* Senior IAM Engineer will design and implement sustainable solutions to be used for authentication, authorization, user life-cycle management, role-based access control, privileged account management (PAM), audit, and monitoring
* Develop and oversee the implementation of Information Security Procedures and Policies related to Identify
* As a Senior IAM Engineer, you will design and implement appropriate security controls to identify vulnerabilities and risks for access to systems and applications
* New SSO setup, IAM incident resolution and root cause analysis, complex onboarding/offboarding, upgrades/patching, change tickets, MFA management, group and access cleanup, audits, HR downstream changes, tool management, etc.
* Conduct investigations and audits of identity gaps and vulnerabilities and evaluate the implications
REQUIREMENTS:
* Bachelor's degree preferred - Computer Science, Information Technology, Information Security; Cyber Security or related experience preferred
* 8+ years of experience in information security, infrastructure
* 5+ years of experience in IAM, PAM, ZTNA and security governance
* 5+ years of experience in PowerShell scripting
* 5+ years of experience in Active Directory/Azure Active Directory
* 5+ years of experience in Microsoft Exchange
* 3+ years of experience as an OKTA Certified Administrator
* 3+ years of experience in setting up and/or managing APIs
* Experience setting up/managing SCIM, RBAC, SSO, MFA to the IDP
* Experience in Azure Active Directory and Active Directory, OKTA or similar IDPs required (Saviynt, etc.)
* Experience with risk management data and analysis
* Database and API data parsing with PowerShell experience
* Experience with cloud computing services such as AWS and Azure for the purpose of SCIM and managing access a plus
* Strong understanding of PKI, encryption, certificate management, tokenization
* Querying languages such as SQL against tools such as Splunk or Dynatrace; Rapid7 desirable
* GPO creation best practices
* Authentication Server Software
* Strong problem-solving and communication skills
The pay range is the lowest to highest compensation we reasonably in good faith believe we would pay at posting for this role. We may ultimately pay more or less than this range. Employee pay is based on factors like relevant education, qualifications, certifications, experience, skills, seniority, location, performance, union contract and business needs. This range may be modified in the future.
We offer comprehensive benefits including medical/dental/vision insurance, HSA, FSA, 401(k), and life, disability & ADD insurance to eligible employees. Salaried personnel receive paid time off. Hourly employees are not eligible for paid time off unless required by law. Hourly employees on a Service Contract Act project are eligible for paid sick leave.
Note: Pay is not considered compensation until it is earned, vested and determinable. The amount and availability of any compensation remains in Kforce's sole discretion unless and until paid and may be modified in its discretion consistent with the law.
This job is not eligible for bonuses, incentives or commissions.
Kforce is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.
By clicking ?Apply Today? you agree to receive calls, AI-generated calls, text messages or emails from Kforce and its affiliates, and service providers. Note that if you choose to communicate with Kforce via text messaging the frequency may vary, and message and data rates may apply. Carriers are not liable for delayed or undelivered messages. You will always have the right to cease communicating via text by using key words such as STOP.
Kforce has a client that is seeking a Senior IAM Engineer in Shelton, CT.
Summary:
The Senior IAM Engineer will be responsible for the analysis, implementation, maintenance, and assist with design of all layers of IAM applications, which includes Authorization/Authentication/Accounting, Identity and Account Creation/Management/Provisioning.
Project Work:
* This includes the setup of new configurations and baselines around IAM within the IDP. This includes conditional access policies, RBAC, new SCIM setup, new governance
* Initial set up and configuration of a new IDP solution (OKTA) with an ability to perform architecture diagraming that will be used as the benchmark for future efforts. Utilize best practice frameworks and maturity models to set the future growth of the program as a whole
* Manage technology projects and system activities
Operations:
* Aligns with Industry best practices and establish company policies and procedures accordingly
* Senior IAM Engineer will design and implement sustainable solutions to be used for authentication, authorization, user life-cycle management, role-based access control, privileged account management (PAM), audit, and monitoring
* Develop and oversee the implementation of Information Security Procedures and Policies related to Identify
* As a Senior IAM Engineer, you will design and implement appropriate security controls to identify vulnerabilities and risks for access to systems and applications
* New SSO setup, IAM incident resolution and root cause analysis, complex onboarding/offboarding, upgrades/patching, change tickets, MFA management, group and access cleanup, audits, HR downstream changes, tool management, etc.
* Conduct investigations and audits of identity gaps and vulnerabilities and evaluate the implications
REQUIREMENTS:
* Bachelor's degree preferred - Computer Science, Information Technology, Information Security; Cyber Security or related experience preferred
* 8+ years of experience in information security, infrastructure
* 5+ years of experience in IAM, PAM, ZTNA and security governance
* 5+ years of experience in PowerShell scripting
* 5+ years of experience in Active Directory/Azure Active Directory
* 5+ years of experience in Microsoft Exchange
* 3+ years of experience as an OKTA Certified Administrator
* 3+ years of experience in setting up and/or managing APIs
* Experience setting up/managing SCIM, RBAC, SSO, MFA to the IDP
* Experience in Azure Active Directory and Active Directory, OKTA or similar IDPs required (Saviynt, etc.)
* Experience with risk management data and analysis
* Database and API data parsing with PowerShell experience
* Experience with cloud computing services such as AWS and Azure for the purpose of SCIM and managing access a plus
* Strong understanding of PKI, encryption, certificate management, tokenization
* Querying languages such as SQL against tools such as Splunk or Dynatrace; Rapid7 desirable
* GPO creation best practices
* Authentication Server Software
* Strong problem-solving and communication skills
The pay range is the lowest to highest compensation we reasonably in good faith believe we would pay at posting for this role. We may ultimately pay more or less than this range. Employee pay is based on factors like relevant education, qualifications, certifications, experience, skills, seniority, location, performance, union contract and business needs. This range may be modified in the future.
We offer comprehensive benefits including medical/dental/vision insurance, HSA, FSA, 401(k), and life, disability & ADD insurance to eligible employees. Salaried personnel receive paid time off. Hourly employees are not eligible for paid time off unless required by law. Hourly employees on a Service Contract Act project are eligible for paid sick leave.
Note: Pay is not considered compensation until it is earned, vested and determinable. The amount and availability of any compensation remains in Kforce's sole discretion unless and until paid and may be modified in its discretion consistent with the law.
This job is not eligible for bonuses, incentives or commissions.
Kforce is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.
By clicking ?Apply Today? you agree to receive calls, AI-generated calls, text messages or emails from Kforce and its affiliates, and service providers. Note that if you choose to communicate with Kforce via text messaging the frequency may vary, and message and data rates may apply. Carriers are not liable for delayed or undelivered messages. You will always have the right to cease communicating via text by using key words such as STOP.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.