RBAC And RACF Engineer-Remote In Clients Footprint.

Seeking 3 RACF and 2RBAC Engineers.
RBAC, 2 roles, ideally in footprint
o Main goal will be to partner with all different areas and lines of business and perform data mining within those areas and capture access requirements, what access is needed for their job role, communicate and collaborate effectively, become champion and help business partners through this initiative
o Responsible for building all these roles and perform data mining with SailPoint IdentityIQ, using product to build out on the back end specific roles and rules, defining access and entitlements for these users
o Being able to adapt, being agile, documentation operational procedures, etc.
o ABAC, IdentityIQ, SailPoint, RBAC
o Help streamline onboarding as we develop job roles
o Start rolling out a pilot, automate more within SailPoint to streamline provisioning, right now very manually
o Starting with retail partners as the pilot
RBAC Job Role:
We are seeking an experienced Engineer to design, implement, and manage Role-Based Access Control (RBAC) solutions across our systems and applications. This role will be responsible for ensuring secure, scalable, and compliant access management aligned with business requirements and security best practices. The ideal candidate has strong experience in IAM, access governance, and enterprise security architecture.

Key Responsibilities
Design and implement RBAC models across enterprise applications, cloud platforms, and internal systems.
Define roles, permissions, and access policies aligned with business functions and least-privilege principles.
Collaborate with Security, DevOps, Infrastructure, and Application teams to integrate RBAC into systems and workflows.
Automate provisioning and de-provisioning of user access.
Conduct access reviews, audits, and compliance reporting.
Support integration with identity providers (IdP) and SSO solutions (e.g., Okta, Azure AD, Auth0).
Implement and maintain access governance processes.
Troubleshoot access-related issues and ensure minimal operational disruption.
Document RBAC architecture, standards, and operational procedures.
Stay current with security standards, regulations, and IAM best practices.
Leads delivery and implementation of IAM technologies across the bank.
Ensure that identity & access management services are designed to be compliant with security and privacy standards and other industry standards and practices.
Consult with business units when implementing access for new systems.
Experience implementing RBAC in microservices or SaaS environments.
Experience with policy-as-code or fine-grained authorization systems (e.g., OPA, Cedar).
Security certifications (CISSP, CISM, Azure/AWS Security certifications).
Experience with access governance and entitlement review tools.
Key Competencies
Strong analytical and problem-solving skills
Excellent communication and cross-functional collaboration
Attention to detail
Security-first mindset
Ability to translate business requirements into technical access models
Preferred Qualifications:

• Native RACF experience
• 6+ years of experience of implementing zSecure capabilities, including zAlert
• Experience with SIEM (SPLUNK) products for implementing reports and dashboards to support a Mainframe Governance program
• Experience with building out RACF reports in zSecure to support database authenticity
• Experience with onboarding and decommissioning applications into RACF structures.
• Experience in IDAM solutions both on-premises and in the cloud.
• Experience administering IDAM systems, access controls, security and risk management, as well as a security governance framework at scale.
• Experience and understanding of various regulatory requirements and laws such as, but not limited to, Payment Card Industry (PCI), Federal Financial Institutions Examination Council (FFIEC), Sarbanes-Oxley (SOX), Health Information Portability and Accountability Act (HIPAA), General Data Protection Regulation (GDPR) and Gramm-Leach-Bliley Act (GLBA). Additionally, experience in one or more of the following is required: ISO 17799, ITIL or NIST.
• Extensive knowledge of SSO, MFA, Active Directory (AD), public key infrastructure (PKI), privileged accounts and integration application program interface (API) capabilities.
• Track record acting with integrity, taking pride in work, seeking to excel, being curious and adaptable, and communicating effectively
• Expert level knowledge of operating systems, e.g. Windows, Linux, & Unix
• Excellent customer facing communication skills (both written and verbal)
• Ability to research, evaluate, and devise course of action for security hardware/software and tools to make overall impact on the enterprise's existing security environment
• Experience with both Agile and Waterfall working methods.
• Track record of acting with integrity, taking pride in work, seeking to excel, being curious and adaptable, and communicating effectively.
• Extensive knowledge of Active Directory (AD) and LDAP Directories (e.g., Oracle Directory, Novell/NetIQ eDirectory)

Remote/Onsite
RACF - 100% Remote
RBAC -footprint, but they will sit remotely right now since there isn't room

• Akron, OH: 3 Cascade Plaza Akron, OH 44308
• Charlotte, NC
• Chicago, IL
• Cincinnati, OH
• Cleveland, OH
• Columbus, OH
• Dallas, TX
• Detroit, MI
• Flint, MI
• Midland, MI:
• Indianapolis, IN
• Minneapolis:
• Pittsburgh:

Job Type & Location
This is a Contract to Hire position based out of Columbus, OH.
Pay and Benefits
The pay range for this position is $55.00 - $65.00/hr.
Eligibility requirements apply to some benefits and may depend on your job classification and length of employment. Benefits are subject to change and may be subject to specific elections, plan, or program terms. If eligible, the benefits available for this temporary role may include the following: Medical, dental & vision Critical Illness, Accident, and Hospital 401(k) Retirement Plan - Pre-tax and Roth post-tax contributions available Life Insurance (Voluntary Life & AD&D for the employee and dependents) Short and long-term disability Health Spending Account (HSA) Transportation benefits Employee Assistance Program Time Off/Leave (PTO, Vacation or Sick Leave)
Workplace Type
This is a hybrid position in Columbus,OH.
Application Deadline
This position is anticipated to close on Feb 28, 2026.
>About TEKsystems:
We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company.

The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.

About TEKsystems and TEKsystems Global Services

We're a leading provider of business and technology services. We accelerate business transformation for our customers. Our expertise in strategy, design, execution and operations unlocks business value through a range of solutions. We're a team of 80,000 strong, working with over 6,000 customers, including 80% of the Fortune 500 across North America, Europe and Asia, who partner with us for our scale, full-stack capabilities and speed. We're strategic thinkers, hands-on collaborators, helping customers capitalize on change and master the momentum of technology. We're building tomorrow by delivering business outcomes and making positive impacts in our global communities. TEKsystems and TEKsystems Global Services are Allegis Group companies. Learn more at TEKsystems.com.

The company is an equal opportunity employer and will consider all applications without regard to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.