Identity Access Management Engineer

Job Summary

The Identity Access Management (IAM) Engineer position requires experience implementing, knowledge of, and supporting enterprise Identity Access Management platforms. This role is responsible for developing and designing IAM system solution architecture, integrations, and frameworks that align with business needs.

About Us

Since 1989, SHI International Corp. has helped organizations change the world through technology. We've grown every year since, and today we're proud to be a $14 billion global provider of IT solutions and services.

Over 17,000 organizations worldwide rely on SHI's concierge approach to help them solve what's next. But the heartbeat of SHI is our employees - all 6,000 of them. If you join our team, you'll enjoy:

• Our commitment to diversity, as the largest minority- and woman-owned enterprise in the U.S.
• Continuous professional growth and leadership opportunities.
• Health, wellness, and financial benefits to offer peace of mind to you and your family.
• World-class facilities and the technology you need to thrive - in our offices or yours.

Responsibilities

Include, but not limited to:

• Continuously review, improve, and contribute to transforming the Identity Access practices.
• Provide status updates on projects, presenting findings to senior leadership routinely.
• Strong understanding of Identity and Access Management (IAM) User Lifecycle Processes, including User Activity Monitoring, Access Re-Certification, Reporting, and IAM Standards.
• Experience with IAM Operational tasks - User provisioning, Platform Configuration, Role design/mining, build and execute periodic access reviews.
• Ability to Implement/Customize IAM workflows, forms, rules, provisioning, and certifications.
• Ability to onboard third-party and cloud applications using the IGA platform and outside of the IGA platform.
• Ability to drive identity management strategically across the enterprise in a zero-trust model aligning with IAM standard practices.
• Evaluate an application's user base to determine if the application requires RBAC (Role-Based Access Controls).
• Support day-to-day security controls including but not limited to creating access and control, and monitoring.
• Maintain security governance and policies for the business, groups, products & security access types ensuring we can pass audit reviews.

Qualifications

• Minimum 5-10 years of identity experience or comparable experience to the role.
• Bachelor's degree in computer science or related field or equivalent experience.

Required Skills

• Familiarity with InfoSec concepts, issues, and practices.
• Knowledge of development methodologies and DevOps practices.
• Experience working with cloud infrastructure solutions (ex. AWS, Azure, Google Cloud Platform).
• Experience with Identity software (SailPoint, Saviynt, CyberArk).
• Experience with MFA solutions, SSO, and CPAM-privileged access management software.
• Experience with PAM Operational tasks - Creating credential vaults, defining access control policies/platforms, user provisioning and entitlements, managing applications credentials, key management, and user access policy management.
• Experience with modern API protocols.
• Experience with Active Directory and Azure Active Directory concepts, including users, computers, groups, and policies.
• Solid understanding of protocols, services, and traffic flows for authentication.

Preferred Skills:

• Programming languages: Java or PowerShell & SQL, Computer networking, OS fundamentals (Windows/UNIX/Linux)
• Experience with scripting in Python, PowerShell

Additional Information

• The estimated annual pay range for this position is $90,000 - $140,000. The compensation for this position is dependent on job-related knowledge, skills, experience, and market location and, therefore, will vary from individual to individual.
• Equal Employment Opportunity - M/F/Disability/Protected Veteran Status