Job #: 2443
Title: IAM Administrator
The primary responsibility of Identity and Access Management (IAM) Administrator is the day to day management and administration of access control across multiples operating systems, databases and applications like Active Directory, SQL, and related web-based services. This person will be responsible for updating accounts on the Active Directory domain to include proper role-based access, organization unit, titles, office, department, and manager. This position also manages the monitoring and troubleshooting for access governance processes to ensure effectiveness and alignment with requirements for compliance and assists in incident research as well as research and evidence gathering for audits.
The position reports to the IAM Team Lead and works closely with other teams in delivering best in class security engagements for our users.
Major Duties and Responsibilities:
Completes access security requests to grant, update or remove systems access. Analyzes the security impact of each request, identifies approvals needed and determines the appropriate approach to complete the request.
Maintains effective service relationships with business units by keeping them informed of the status of their access requests and tickets, and provides non-technical answers to access questions. Meets team and departmental service levels and objectives. Upholds strong global working relationships with other members of IAM, Information Security, IT and business partners.
Resolves Tier 2 and 3 technical issues (simple to semi-complex in nature) to determine root cause and implements corrective action. Recognizes when to escalate and uses it as an opportunity to increase knowledge and acumen.
Accountable for meeting quality, productivity and service standards. Identifies opportunities to improve the efficiency and effectiveness of access administration processes and procedures. Applies risk management knowledge to improve efficiency and effectiveness of access administration. Participates in project support related to access provisioning and improving current workflows.
Create, validate, and justify security solutions and designs consistent with client objectives and best practices
Install, integrate, configure, and deploy IAM solutions and systems to facilitate User Life-Cycle Management, Identity and Access Governance, Automated Provisioning, Single Sign-On, Federation, Privileged Account Management.
Develop and execute test cases and test plans for IAM solutions
Planning and implementation of security controls, as well as daily administration until automated
Provide knowledge transfer, training, and support activities
Provide a high level of customer service through comprehensive communication
Observe project delivery protocol and ensure timely escalation of status, issues, and risks
Work with vendor product support to open, troubleshoot, and resolve product issues
Identity Management Experience:
Knowledge of identity management concepts and features
2+ year of experience with Identity Management administration experience
2+ year of experience with Identity Management implementation experience
Knowledge and hands-on experience with the following components: Lifecycle Manager, Application On-Boarding, Access Request, Automated Provisioning, Password Management, Workflows, and custom forms
Proactive work behavior: forward-thinking, change oriented, growth mindset
Ability to work in a team fostered, multi-tasked environment
Proficient in writing executive level reports and technical documentation
Connect easily with business units and colleagues to communicate effectively across business and technical boundaries to offer recommendations as an expert with best practices
2 to 4 years’ experience in security consulting, security administration, and/or Information Technology field
1+ years of solution design, integration architecture, technical development, and deployment experience of IAM solutions and products
Knowledge of mail systems (Exchange, O365, etc.)
Knowledge of multi-factor authentication systems (RSA, Duo, etc.)
Knowledge of relational databases (Oracle, MSSQL, MySQL, etc.)
Knowledge of enterprise directories (LDAP, Active Directory, etc.)
Knowledge of enterprise systems (SAP, PeopleSoft, Workday, ServiceNow)
Experience setting up and installing software on Windows and Unix (Linux, HP, Solaris, AIX) platforms
Experience with the following web technologies (XML, SPML/SOAP, Web Services, etc.)
Experience with web application servers (Tomcat, WebSphere, WebLogic, JBOSS, etc.)
Familiarity with Role Based Access Control (RBAC)
Working knowledge of securing resources in third party hosted cloud environment a plus
Bachelor’s Degree or equivalent in relevant work experience
IT Professional Certification (CISSP, CISM, CRISC, CISA, etc.) a plus