Job Description :
Title: Senior IAM Engineer
Location: Beaverton, OR
Duration: 1 year
Description:
As our Senior Identity and Access Management (I&AM) Engineer you will use extensive knowledge of international standards, industry best practices, professional experience, collaboration and good judgment to implement a business focused I&AM strategic roadmap. This role will be part of a team that is responsible for developing, implementing, and maintaining security technology roadmaps that provide an effective security framework allowing client to move rapidly but securely into new business enabling technologies and services.
Responsibilities:
- Onboard client applications into I&AM products, solutions, and services.
- Model and develop IAM Role/Policy objects, Access requests.
- Audit & Report on client Authentication and Access policies and standards
- Implement solutions and services to manage client Privileged Accounts
- Design and develop integration connectors and interfaces for cross IAM solutions.
- Integrate role-based access control, Single Sign On, user provisioning, and reconciliation services with existing applications, systems, and network devices.
- Work with Business IT teams to continually improve the security posture of their application and solution portfolios.
- Contribute to the development of a multi-year business focused IT Security Solution Roadmap
- Contribute to the development of an annual Security roadmap outlining key initiatives in support of the client Information Security Strategy
- Develop business cases for the adoption of new technology, standards and processes.
- Review projects for security concerns and provide security guidance to business partners
- Work with peers throughout client Inc. to collect input on needed security capabilities
- Gain understanding of the effectiveness of security policies and technologies.
- Support management in understanding architectural and operational information risk within/against client
- Staying current on security technologies, trends, standards and best practices
- Continually update relevant security skills
- Other duties and responsibilities as assigned
Qualifications:
- Expert knowledge of Identity and Access Management standards, principles and practices
- Experience with Sailpoint IIQ, CyberArk, and PING Identity.
- Demonstrated relevant security expertise in implementing secure solutions and services for a mix of the following areas:
RBAC concepts/LDAP/Relational Databases/Application Services/ Virtual Directory Services/Physical Access Management Systems/Network Devices/ Server Operating Systems (Windows / Linux) Workstation Operating Systems (Windows / MacOS) Cellular/Mobile Device technology / Storage Devices / Virtualization / Encryption/Certificate Management
- Ability to translate I&AM requirements into business terms.
- In addition knowledge in the following areas are highly desirable
Application Security / Database Security (Oracle/MySQL) Compliance - SOX, PCI, ISO 27001 Cloud / Colocation / Cloud Technologies
- This role must be proficient at the techniques that go into the implementation of solution architectures, including requirements discovery and analysis, application of abstraction, formulation of solution context, solution alternatives identification and assessment, technology selection, and implementation.
- The ability to assess risk and translate it to business relevant considerations and facts
- The ability to learn and apply new concepts quickly
- Proven analytical and problem solving ability
- Superior communication, ability to explain complex concepts in plain language and graphics
- Excellent organization, and interpersonal skills with the ability to appropriately communicate and translate complex security risks to dollars
- Ability to balance and prioritize work
- Must be trustworthy in keeping sensitive data confidential
Education:
- Requires a Bachelor''s degree in computer science or related filed, or equivalent work experience
- Eight years of information technology experience with a minimum of five years in an identity and access related role in a fortune 500 company
Certification:
As a client Identity and Access Management Engineer the following certifications are strongly preferred:
- Certified Information Systems Security Professional (CISSP)
- Certified Information Security Manager (CISM)
Certifications & Licenses:
- Certified Information Systems Security Professional
- CISM
- CISSP
- Certified Information Security Manager
Skills:
Required:
- Database
- RBAC, LDAP, ad, relational DB, Web Application Expertise
- SailPoint IIQ, CyberArk, and ping expertise
- Identity and access management
Additional:
- Databases
- Encryption
- ISO
- ISO 27001
- LDAP
- Linux
- MacOS
- MySQL
- Oracle
- PCI
- Problem solving
- Security
- Solutions
- Sox
- Translate
- Virtualization
- Access Control
- Audit
- Authentication
- Business Cases
- Certified information Systems Security Professional
- CISM
- CISSP
- Engineer
- Information Security
- Integration
- Integrator
- Provisioning
- Reconciliation
- Sarbanes-Oxley (SOX)
- Security Policies
- Single Sign on
- Systems Security
Minimum Degree Required:
- Bachelor''s Degree