IAM Engineer

Position: IAM Engineer

Location: Boston, MA

Salary: 110K

An Identity and Access Management (IAM) Manager is responsible for the design, implementation, and governance of an organization's identity security framework. They ensure that only the right people have the appropriate access to resources at the right time while maintaining compliance with security standards.

Key Responsibilities
Strategic Leadership: Shaping the IAM roadmap, establishing security standards, and aligning identity strategies with overall business and regulatory requirements.
Lifecycle Management: Overseeing the "Joiner-Mover-Leaver" process, which includes automated user provisioning, role changes, and timely access revocation.
Access Controls: Implementing and enforcing models like Role-Based Access Control (RBAC), Attribute-Based Access Control (ABAC), and the Principle of Least Privilege (PoLP).
Security Governance: Managing Multi-Factor Authentication (MFA), Single Sign-On (SSO), and Privileged Access Management (PAM) to protect high-risk accounts.
Auditing & Compliance: Conducting regular access reviews and audits to ensure adherence to regulations like GDPR, HIPAA, or SOX.
Team & Vendor Management: Leading a team of IAM engineers and analysts, while managing relationships and integrations with third-party IAM technology vendors.

Core Technical Skills
IAM Platforms: Proficiency with tools such as Okta, SailPoint, Microsoft Entra ID (Azure AD), and CyberArk.
Protocols: Deep understanding of SAML, OAuth 2.0, OpenID Connect (OIDC), and LDAP/Active Directory.
Automation: Ability to use scripting languages like PowerShell or Python to automate identity workflows.
Architecture: Familiarity with Zero Trust security models and cloud-native identity patterns (AWS, Azure, Google Cloud).