Location: Richmond,VA, USA
Position: IAM System Engineer
Location: remote
Terms: Contract, 1 year + extensions
Target Compensation: 72/hr W2 with benefits
The IAM System Engineer is a key technical position that will develop solution automation, application integration, workflow design, & process implementation for the SailPoint IAM solution. This role will provide hands-on requirements gathering, technical analysis, and drive implementation in various projects including: SailPoint application onboarding & automation, Role-based access control, mature the access attestation process, and help maintain a competitive security posture in accordance with Atlantic Union Bank security standards. As well as industry best-practice guidance. The IAM Engineer is also responsible for collaborating with our IT and business partners on initiatives to improve the identity lifecycle process and providing recommendations to protect against known security threats and misconfigurations.
Experience in the application of organization / enterprise-wide set of disciplines for the planning, analysis, design, testing, construction, and migration to, or implementation of Identity and Access Management (IAM) system components. Position typically requires experience in scripting tools, automation, vulnerability and risk analysis across multiple disciplines within IAM including Identity and Access Governance (IGA), Privilege Access Management (PAM), Multifactor Authentication (MFA) and Identity Federation. Position also typically requires knowledge of applicable IAM standards and their relationships. Position requires knowledge of various technologies including legacy, client/server, web-based technologies, and cloud-based systems.
Position Accountabilities:
· Gather and analyze business requirements to drive IAM process design, application onboarding and configuration/optimization of IAM workflows
· Gather and analyze Lines of Business unit functional and access requirements to design and maintain appropriate access roles
· Collaborate with Enterprise Security, IT, and business partners to provide holistic access governance including role definitions and attestation processes to ensure compliance with InfoSec standards and best-practices
· Assist with delivery of strategic SailPoint IAM initiatives and solutions, including analysis, design, and implementation, to remediate known risks and improve security posture
· Analyze and resolve complex authentication, integration, and automation issues.
· Analyze and refine joiner, mover, leaver provisioning processes across a variety of platforms and applications to provide improvement recommendations
· Influence IAM team efforts across the Information Security department and enterprise, establishing and maintaining effective relationships with Internal Infrastructure, Application and Business partners to understand needs, use, and systems to facilitate effective IAM solutions
Position Qualifications
Education & Experience
· Bachelor's degree in information systems, cybersecurity, or equivalent work experience preferred.
· 5-7 years of experience Engineering solutions in SailPoint (IIQ) tool required.
· 5-7 years in a structured IT organization using a variety of methodologies, and strong technical environment management disciplines.
· 2+ years of experience in banking and/or financial services required.
· Proven knowledge of security (CISSP, CISA, CISM, GPEN, GWAPT, GCIH, other GIAC certifications, OSCP, CEH, Check Point, PCNSE, etc.)
· Experience in developing conceptual and reference documentation, principles, and standards.
· Development experience with design and implementation of Identity Lifecycle Management.
· Experience with application onboarding automation within SailPoint IAM solution.
· Experience with implementing Identity and Access Management solutions across Cloud providers (e.g. AWS and Azure)
· Experience with design and implementation with technologies such as Active Directory, OKTA, CyberArk, 2FA/MFA/FIDO Technologies, etc.
Knowledge & Skills
· Strong team-oriented interpersonal skills, with the ability to interface effectively with a broad range of people and roles, including vendors and IT-business personnel.
· Ability to balance a methodical and structured approach to design and development with the need to deliver near term solutions iteratively for business value.
· Exposure to and understanding of Cloud capabilities and architecture (MS Azure or AWS).
· Automation / Scripting experience in PowerShell, Python, Java, & SQL is needed.
· Development experience utilizing APIs for data connectivity & ingestion.
· Strong analytical, problem solving, and work management skills
· Intermediate to advanced knowledge of identity technologies and concepts.
· Intermediate to advanced knowledge of Active Directory, Single-Sign On (SSO), and Federated Identities.
· Experience with automating access control processes such as User Provisioning, Onboarding, Role-Based Access Control (RBAC), authorization models, Single Sign-On(SSO), LDAP, Active Directory
· Mastery of Identity, Access Governance, Privilege Access Management principles and best practices
About Seneca Resources
Seneca Resources is a client-driven provider of strategic Information Technology consulting services and Workforce Solutions to government and industry. We are a leading IT services provider with offices in Virginia, Alabama, New York, and Georgia, serving clients throughout the United States. Our success lies in our strong corporate culture, engaging work, competitive compensation, extensive professional training, and excellent career advancement opportunities. We are looking for the best and brightest to join our team. We are an Equal Opportunity Employer and value the benefits of diversity in our workplace.