Sr. Identity and Access Management Engineer (remote)

Apply for this position Please mention DailyRemote when applying
Posted 12 days ago United States Salary undisclosed
Before you apply - make sure the job is legit.

Attempting to apply for jobs might take you off this site to a different website not owned by us. Any consequence as a result for attempting to apply for jobs is strictly at your own risk and we assume no liability.

Job Description

EBSCO Information Services (EIS) provides a complete and optimized research solution comprised of e-journals, e-books, and research databases - all combined with the most powerful discovery service to support the information needs and maximize the research experience of our end-users. Headquartered in Ipswich, MA, EIS employs more than 3,300 people worldwide. We are the leader in our field due to our cutting-edge technology, forward-thinking philosophy, and top-notch workforce. EIS, a division of EBSCO Industries Inc., based in Birmingham, AL, is ranked in the top 200 of the nation's largest, privately held corporations according to Forbes magazine. EBSCO is a company that will motivate you, inspire you, and allow you to grow. We are looking for the best. If you are too, we encourage you to explore our unique opportunities.Part of the Governance, Risk, and Compliance (GRC) team, the Identity and Access Management Engineer will collaborate with development teams to identify requirements for and provide ownership of internal Identity and Access Management functions and services, including IAM/PAM/Secrets Management provisioning systems and application components. This position will act as subject matter expert and solutions provider for IAM/PAM/Secrets Management provisioning systems. Providing internal audit functions, this position will also help govern the secure and private processing of Customer and Partner data. Comfortable working in a fast-paced agile (SAFe) DevOps environment, the ideal candidate excels at quickly understanding complex application and network situations, identifying risks, and providing guidance (and solutions) on how to fix them.EBSCO is migrating towards managing AWS Infrastructure as Code, and therefore, previous experience with SaaS identity implementation, governance, and monitoring tooling is desired. Previous AWS and scripting experience is desired, but the right candidate will have an opportunity to learn and grow using the latest cloud technologies.Primary Responsibilities• Work with development teams to identify and document IAM/PAM and Secrets Management requirements.• Collaborate with other members of the GRC Team to develop a library of security controls and IAM/PAM/Secrets Governance practices that map industry and company standards to operational procedures, and accurately measures control effectiveness.• Coordinate across teams in establishing baseline security and access requirements for all data assets• Provide support for all internal IAM/PAM/Secrets Management service ticket requests. Ensure that Role Based Access Controls (RBAC) are implemented and operating effectively.• Service all IAM access request tickets and resolve or escalate service issues.• Design and develop metrics, dashboards, reports, and remediation actions for IAM/PAM/Secrets functions servicing internal development teams and stakeholders.• Assist in the development and implementation of strategy, standards, and processes that enable internal IAM/PAM and Secrets Management best practices while providing oversight and guidance of internal Identity and Access Management systems including Cloud technologies/Cloud IAM• Assist in the assessment and effectiveness of security and compliance controls as well as risk mitigation strategies for internal Identity Governance and Administration (IGA) focused on staff Identity and Access Management processes.• Assist in Business Impact Analysis (BIA) and Business Continuity Planning (BCP) activities• Assist in developing and coordinating the EIS Crisis Management Program• Assist in establishing a consistent Availability Plan including ensuring the execution of backup plan/strategy.• Work with external vendors and partners as needed to establish quotes, production schedules, delivery, and implementation of materials.• Participate in security incident response and mitigation functions. After hours and weekend work are occasionally required for services supportRole Based Competencies:• Possesses a high degree of independence, integrity, and confidentiality while able to independently develop and deliver presentations and can respond to questions.• Strong technical writing and interpersonal skills with ability to communicate effectively.• Maintains a passion to learn and research technical skills relevant in a highly complex environment.• Demonstrates resilience and flexibility in a rapidly changing environment to explore different strategies and achieve desired outcomes.• Highly organized and able to multi-task and manage concurrent deadlines.• Comfortable working in cross functional and multidisciplinary teams• Fundamental knowledge of authentication and access control methods and API-driven systems integration and automation concepts• Fundamental knowledge of networking - OSI modelRequired Qualifications• Bachelor's degree in computer science or engineering related field or equivalent work experience.• Minimum of 5 years IAM engineering experience implementing internal identity systems using standards like OAuth2, SAML, and OpenId Connect• Minimum 3 years prior experience in a Cloud IAM role• Deep understanding of user and system account provisioning, Role-Based Access Control (RBAC), Privileged Access Management (PAM), and Secrets Management technologies and strategiesAbility to understand and work with SSO security and infrastructures.Preferred Qualifications• Scripting and/or programming skills and experience (Python, Ruby, JSON) preferred• Experience with Okta, Zscaler, and CyberArk a plus• Information Security and or IAM specific certifications (CISSP, CAMS, CIAM)• Experience working in an Agile SDLC ... Scaled Agile Framework for Enterprise (SAFe) certifications a plus.• Experience in following areas preferred, but not required. Healthcare Insurance Portability and Accounting Act (HIPAA), Child Online Privacy Protection Act (COPPA), General Data Protection Regulation (GDPR), Family Educational Rights and Privacy Act (FERPA), FEDRAMP, ISO 27001, ISO 27701, and CCPA.EBSCO Industries, Inc.is an equal opportunity employer and complies with all applicable federal, state, and local fair employment practices laws. EBSCO strictly prohibits and does not tolerate discrimination against employees, applicants, or any other covered persons because of race, color, sex (including pregnancy), age, national origin or ancestry, ethnicity, religion, creed, sexual orientation, gender identity, status as a veteran, and basis of disability or any other federal, state or local protected class. This policy applies to all terms and conditions of employment, including, but not limited to, hiring, training, promotion, discipline, compensation, benefits, and termination of employment.EBSCO complies with the Americans with Disabilities Act (ADA), as amended by the ADA Amendments Act, and all applicable state or local law.View EEO PDF