Chicago - Senior Identity Engineer
Winston & Strawn LLP · Chicago, IL
- On site
- Full-time
- $142,000 / year
- Chicago, IL
Job highlights
- Manage and automate identity systems like Active Directory, Okta.
- Oversee user lifecycle processes: onboarding, offboarding.
- Resolve complex identity and access management issues.
- Collaborate with security and network teams.
- Mentor junior team members and drive IAM initiatives.
About the role
About Us
For Business Professionals, Winston & Strawn presents an exciting opportunity to be a part of a leading global law firm. With our commitment to excellence, diversity, a collaborative work environment, and an emphasis on professional growth, Winston offers a platform for individuals seeking to advance their careers in a dynamic and rewarding environment. Winston is known for its collaborative and collegial culture. We believe teamwork is an essential component in providing high-quality legal services and we value the talents and skills of our entire business professional team.
Position Summary
The Senior Identity Engineer oversees the administration, automation, and optimization of the firm’s identity and access management systems, including Active Directory, Entra ID, Okta, Active Roles and CyberArk. This role serves as the technical escalation point for complex identity issues, drives improvements to identity lifecycle processes, and ensures alignment with security policies and standards. Working closely with cross‑functional teams, the engineer enhances automation, strengthens governance, and maintains detailed system documentation. The position also provides mentorship to team members and contributes subject matter expertise to strategic IAM initiatives.
Duties And Responsibilities
- Hands-on management, administration, troubleshooting and direct responsibility for the configuration of Active Directory, Entra ID, Okta, Active Roles, CyberArk and other Identity systems.
- Work closely with Network Operations Center to ensure recurring issues are addressed and automated as appropriate.
- Collaborate with Information Risk to implement and manage security tools, policies, and improvements, ensuring compliance with policies and frameworks.
- Manage user identity lifecycle including onboarding, offboarding, and account updates, with a focus on continuous improvement of the process.
- Act as technical point of contact to resolve escalated issues while maintaining professionalism and courtesy.
- Analyze existing processes and governance to identify and implement improvements.
- Create and maintain detailed documentation of the Firm’s Identity systems.
- Act as subject matter expert for related technologies.
- Assist and mentor other team members in their strategic and operational roles.
Basic Qualifications
- Bachelor's degree in information technology or related field preferred or 5 + years of equivalent work experience in Information Technology required.
- 5 + years of experience with administration of Identity management solutions required.
- Experience with automating processes using scripting languages required. Ideally PowerShell/Python.
- Must live within a commutable distance to the firm office with the ability to come into the office 3-4 days per week.
Competencies
- Prior experience designing Active Directory logical structures and creating processes to enforce the established structures.
- Experience with managing identities in Okta Workforce Identity Cloud or Entra ID.
- Experience with Identity management tools, such as Active Roles.
- Strong interpersonal skills to interact with all levels of customers.
- Ability to maintain a flexible work schedule and be available after hours as required.
- Ability to work independently and collaboratively.
- General knowledge of all aspects of an Information Technology environment and resources.
- Eager to learn, teach, and mentor teammates and partners.
- Possesses robust analytical, problem-solving, and decision-making abilities.
- Capable of managing multiple priorities and meeting deadlines efficiently.
- Detail-oriented, organized, and committed to quality, with a customer-focused approach.
- Possesses excellent communication, presentation, and interpretation skills, with a strong ability to convey technical concepts to non-technical audiences.
Benefits
Winston offers comprehensive benefits that provide a full spectrum of coverage and support for our full-time employees and their families. Additional information about benefits and rewards can be found here .
Salary
Illinois applicants only: The target annual salary range for this role is currently $142,000-$160,000 based on a regular, full-time schedule. The amount of compensation offered will be determined by several factors, including but not limited to experience, qualifications, market data and internal equity. Total compensation includes a comprehensive healthcare benefits package, yearly retirement contribution, and may include an annual discretionary merit bonus.
We are an equal opportunity employer and welcome applicants from all backgrounds and experiences.
Key skills/competency
- Identity and Access Management (IAM)
- Active Directory
- Entra ID
- Okta
- CyberArk
- Automation
- PowerShell
- Python
- System Documentation
- Technical Support
Skills & topics
- Senior Identity Engineer
- Identity and Access Management
- Active Directory
- Entra ID
- Okta
- CyberArk
- IAM Automation
- PowerShell Scripting
- Python Scripting
- IT Security
- System Administration
- User Lifecycle Management
- Technical Support
- Chicago Jobs
- Law Firm Technology
How to get hired
- Tailor your resume: Highlight 5+ years of identity management and scripting experience, focusing on Active Directory, Entra ID, Okta, and automation.
- Showcase automation skills: Emphasize your proficiency in PowerShell or Python for automating identity processes.
- Address hybrid work: Mention your ability to commute to the Chicago office 3-4 days per week.
- Prepare for technical questions: Be ready to discuss your experience with identity lifecycle management and security policies.
- Demonstrate collaboration: Highlight your experience working with cross-functional teams and mentoring others.
Technical preparation
Behavioral questions
Frequently asked questions
- What is the work arrangement for the Senior Identity Engineer role at Winston & Strawn LLP?
- The Senior Identity Engineer role at Winston & Strawn LLP is a hybrid position. You will be expected to come into the Chicago office 3-4 days per week, with flexibility to work remotely on other days.
- What are the primary identity management systems I'll be working with as a Senior Identity Engineer at Winston & Strawn LLP?
- As a Senior Identity Engineer at Winston & Strawn LLP, you will primarily manage and administer Active Directory, Entra ID, Okta, Active Roles, and CyberArk. Experience with these systems is crucial for this role.
- What is the salary range for the Senior Identity Engineer position in Chicago?
- For Illinois applicants, the target annual salary range for the Senior Identity Engineer position at Winston & Strawn LLP is $142,000 to $160,000. The final offer will depend on experience and qualifications.
- Does Winston & Strawn LLP require specific scripting languages for the Senior Identity Engineer role?
- Yes, Winston & Strawn LLP requires experience with automating processes using scripting languages. Proficiency in PowerShell and Python is ideal for this Senior Identity Engineer role.
- What kind of technical support is expected from the Senior Identity Engineer at Winston & Strawn LLP?
- The Senior Identity Engineer will act as the technical escalation point for complex identity issues, manage the user identity lifecycle, and collaborate with the Network Operations Center to automate recurring issues.
- What is the educational requirement for the Senior Identity Engineer position at Winston & Strawn LLP?
- A Bachelor's degree in information technology or a related field is preferred for the Senior Identity Engineer position. However, 5+ years of equivalent work experience in Information Technology will also meet the requirement.
- How does Winston & Strawn LLP handle career growth for its Senior Identity Engineers?
- Winston & Strawn LLP emphasizes professional growth. As a Senior Identity Engineer, you will have opportunities to contribute subject matter expertise to strategic IAM initiatives and mentor other team members.
Similar roles
Open positions we recommend based on this role.