Engineer, Information Security and Risk

Department Overview

Information Technology oversees the effective development, delivery, and operation of computing and information services. This function anticipates, plans, and delivers Information Technology solutions and strategies that enable operations and drive business value.

Information Security and Risk develops, implements, and enforces security controls to protect the organization's technology assets from intentional or inadvertent modification, disclosure, or destruction. This job family develops system back-up and disaster recovery plans, conducts incident responses, threat management, vulnerability scanning, virus management and intrusion detection as well as completes risk assessments.

We are seeking a highly skilled and experienced Identity and Access Management (IAM) Engineer to join our team. In this pivotal role, you will be instrumental in designing, implementing, and managing IAM solutions that secure our enterprise applications and facilitate the secure, efficient, and seamless integration of identity and access systems in context of our rapid growth through Mergers and Acquisitions. You will ensure robust access controls, streamline user experiences, and maintain operational continuity across our diverse IT landscape. The ideal candidate will have deep technical expertise in modern IAM principles, protocols and products along with strong management and communication skills.

Responsibilities

• Application Integration Leadership: Lead the integration of various enterprise applications (SaaS, on-premise, custom-built) with our core IAM infrastructure, ensuring secure authentication, authorization, and user provisioning/de-provisioning.
• M&A Integration Strategy & Execution: Lead the planning, design, and execution of IAM integration strategies for M&A activities, ensuring alignment with overall business and security objectives. This includes assessing the IAM landscapes of merging entities to identify challenges and solutions.
• Identity System Merging & Consolidation: Manage the complex process of merging disparate identity providers, user directories (e.g., Active Directory, Azure AD, LDAP), and access management systems from acquired companies into the existing infrastructure.
• User Lifecycle Management: Streamline and automate user provisioning, de-provisioning, and periodic access reviews for employees, contractors, and partners across all integrated systems, ensuring smooth onboarding and offboarding during M&A transitions.
• Solution Design & Implementation: Design, implement, and maintain IAM solutions including Single Sign-On (SSO), Multi-Factor Authentication (MFA), Privileged Access Management (PAM), and Role-Based Access Control (RBAC) frameworks.
• Security & Compliance: Ensure IAM systems and processes comply with regulatory requirements (e.g., GDPR, HIPAA, SOX) and internal security policies, providing auditable records of access activities. Protect against data breaches by ensuring only authorized personnel can access sensitive information.
• Technical Troubleshooting & Support: Troubleshoot, identify, and resolve technical identity and access management-related issues, providing expert support to internal teams and end-users during and after integration.
• Collaboration & Communication: Coordinate cross-functional teams, including Information Security, IT Operations, HR, and Application Development, to ensure effective IAM implementation and seamless integration with business processes. Communicate complex security concepts to technical and non-technical stakeholders.
• Documentation & Best Practices: Develop, review, and maintain comprehensive technical documentation, including architecture diagrams, configuration guides, and operational procedures. Stay up-to-date with IAM best practices, regulatory requirements, and security trends.

Qualifications

• Education: Bachelor's degree in Computer Science, Information Technology, Information Security, or a related field, or equivalent practical experience.
• Experience: 5+ years of progressive experience as an IAM Engineer, designing and implementing enterprise scale solutions with significant experience in supporting M&A integration projects preferred.
• Technical Expertise:
  • Proficiency in directory services (e.g., Active Directory, Azure AD, LDAP).
  • Extensive knowledge and experience with authentication standards and technologies such as SSO (SAML, OAuth, OpenID Connect), MFA, and privileged access management (PAM).
  • Hands-on experience with leading IAM platforms (e.g., Okta, Microsoft Azure AD, CyberArk, ForgeRock, Ping Identity, SailPoint).
  • Experience with scripting languages (e.g., PowerShell, Python) for automation and integration.
  • Strong understanding of security principles, risk management, and access control models (e.g., RBAC).
  • Understanding of DevOps practices.
  • Familiarity with Zero Trust architecture principles.
  • Familiarity with AI/ML concepts and their practical application in security and risk management, especially in IAM context.
• M&A Specific Skills: Proven track record of managing complex integration projects, including assessing existing IAM capabilities, workflow, systems, and processes of acquired entities. Ability to navigate the complexities of integrating diverse identity infrastructures.
• Strong communication and interpersonal skills to collaborate effectively with various teams and stakeholders.
• Detail-oriented mindset to ensure precise access control configurations and compliance.
• Excellent problem-solving and analytical abilities to troubleshoot access issues and design solutions for unique business requirements.
• Must be a self-starter who takes full ownership of projects from inception to completion, holding oneself accountable for the security and operation integrity of IAM platform.
• Ability to manage multiple priorities and meet tight deadlines in a fast-paced M&A environment.
• Adaptability to stay ahead of evolving IAM technologies and security threats.

Key skills/competency

• Identity and Access Management (IAM)
• M&A Integration
• Single Sign-On (SSO)
• Multi-Factor Authentication (MFA)
• Privileged Access Management (PAM)
• Role-Based Access Control (RBAC)
• Azure Active Directory
• Security Compliance
• Risk Management
• PowerShell/Python Scripting