Job Title: Identity and Access Management (IAM) solutions
Location: 100% onsite (Houston Texas)
Duration: 6+ months
The Identity Engineer provides technical expertise and support for the company's on-premises and cloud-based Identity and Access Management (IAM) solutions. Systems include Microsoft Active Directory, Azure Active Directory, SSO (Single Sign On), and Azure Multi-Factor Authentication (MFA), Identity Governance (SailPoint Identity Now), CyberArk PAM and Conjur key vault. The analyst will be a member of the Identity Management team that also manages DNS/DHCP, IP address management, Certificate Authority, Application Delivery controllers, Web Application Firewalls and various provisioning other automation and monitoring tools. This is a highly collaborative team that interfaces with all support teams across Enterprise. We are closely integrated with IT Security to implement security improvements and controls for the company.
Responsibilities for this role include:
- Support and manage day to day Active Directory domain, Entra ID (Azure AD), authentication support, system health checks.
- Daily support for domain controllers, new buildouts, AD Schema, authentication protocols, GPO
- Develop and maintain identity security policies, scripts, and tools.
- Design, Deploy, and maintain identity controls across multiple cloud platforms.
- Configure Federated Services, Single Sign On (SSO), MFA, and cloud application registrations in Entra ID (Azure AD)
- Ensure compliance with information security policies, standards, and best practices.
- Implement authorization and access management solutions such as LDAP, Kerberos, SAML, OAuth, and Open ID Connect for various Business requirements.
- Develop Microsoft PowerShell scripts to perform reporting and automation functions.
Basic/Required:
- 3+ years of experience as Domain Administrator with AD and Azure (Entra ID)
- 3+ years of experience with Identity lifecycle processes (Movers, Leavers, Joiners)
- 3+years of experience PowerShell scripting
- Basic knowledge of Identity and Access Management systems
- Being available to perform tasks outside normal business hours and on weekends as well as being on call
- Preferred:
- Bachelor's degree in computer science, MIS or other IT/IS related discipline
- Experience with SailPoint IdentityNow or other IGA tool.
- Experience with CyberArk PAM, PSM, Conjur
- Knowledge in federation, SAML, OpenID, OAuth and other industry standard authentication/ authorization solutions
- Experience programming using the following languages: Java/JavaScript, Python, Jason, VBScript,etc.
- Professional certifications such as CISSP, CIAM, Security+ or similar industry certification
- Strong interpersonal and communications skills