IAM Engineer - L3

Job Summary:
Seeking a highly skilled and experienced Identity and Access Management (IAM) Engineer to join our dynamic IT team at Level 3. The ideal candidate will have a deep understanding of IAM principles, protocols, and technologies, along with a proven track record of implementing and maintaining robust IAM solutions. As an IAM Engineer, you will play a critical role in ensuring the security and accessibility of our organization's digital resources.
Responsibilities:

• Design, implement, and manage advanced IAM solutions to meet the organization's security and compliance requirements.
• Collaborate with cross-functional teams to gather IAM requirements and translate them into effective technical solutions.
• Lead the planning, deployment, and maintenance of IAM systems, including identity provisioning, authentication, single sign-on, and access controls.
• Perform regular audits and assessments to identify and remediate access control vulnerabilities, ensuring compliance with industry standards and regulations.
• Provide overall leadership to administer and support Directory and Authentication Services and Provisioning Services, including SSO, Federation, LDAP, Auto Provisioning, and related complex infrastructures.
• Propose, define, document, and implement complex system enhancements (software and hardware updates) that will improve the performance and reliability identity management and provisioning solutions.
• Troubleshoot and resolve complex IAM-related issues, working closely with other IT teams and vendors as needed.
• Stay up to date with emerging IAM trends, threats, and best practices to continuously improve the organization's IAM posture.
• Mentor and provide guidance to junior IAM team members, sharing your expertise and promoting professional growth.

Qualifications:

• Bachelor's degree in computer science, Information Technology, or a related field. Master's degree preferred.
• Minimum of 7 years of experience in Identity and Access Management, with at least 2 years at a Level 3 capacity.
• Proficiency in IAM technologies such as IGA/SSO/MFA/RBAC, IAM Platform Configuration & Support, File Server Administration, Active Directory Management & Administration, AD & Other LDAP based migrations, New Application & Federation, Provisioning, Token Management and Cryptography & Enterprise Key Management.
• Strong knowledge of authentication protocols (SAML, OAuth, OpenID Connect) and directory services (Active Directory, LDAP).
• Experience with IAM tools like SailPoint, Okta, CyberArk, Microsoft Azure AD, Ping Federate, IBM TDI, Centrify, Symantec VIP and similar platforms.
• Expert level of experience in supporting IAM infrastructure using AD, LDAP, PING Federation, FIM, ADFS, OIM, OAM, ODSEE, OIF, and other related technologies.
• Solid experience with LINUX, Windows, and UNIX systems.
• Familiarity with web servers, load balancers, firewalls, and DNS.
• Experience in developing and maintaining secure web applications.
• Exposure to network protocols, security protocols, and encryption techniques.
• Excellent problem-solving skills and the ability to analyze complex access control scenarios.
• Solid understanding of security standards, compliance frameworks (ISO 27001, NIST), and data privacy regulations (GDPR, CCPA).
• Professional certifications such as CISSP, CISM, or vendor specific IAM certifications are a plus.
• Strong communication skills, both written and verbal, with the ability to explain technical concepts to non-technical stakeholders.