Sr Identity Access Management Engineer

The Cybersecurity Team is seeking a Senior Identity and Access Management (IAM) Engineer to support full-time on the Identity and Access Management team. The person will perform daily functions required to maintain the rules and controls for Information Security to protect Insight Global assets, works with critical and sensitive information, and is relied upon to maintain security and least privileged safeguards.

This person will be accountable for providing day-to-day engineering and architectural strategy, and tactical direction of IAM services, as well as supporting IAM-related project-based activities. The role is required to provide expert-level guidance and application of both real-world experiences, along with following education-based best practices. This person will seek to drive value and enhancement in the products and services that are provided on behalf of the group to our businesses and work closely with IT teams to ensure secure and efficient access to systems and applications.

This position will report directly to the Manager of Identity and Access Management and support the CISO to provide the highest quality service to Insight Global business units and customers.

• Lead the implementation and maintenance of IAM solutions, including identity administration, identity governance, multi-factor authentication, and privilege access management.
• Implement and maintain a modern service account framework, including standards, lifecycle processes, naming conventions, and governance for all types of service accounts.
• Provide subject matter expertise on Microsoft Entra
  -native service accounts, including Managed identities (system-assigned and user-assigned), Azure AD application registrations and service principals, Microsoft Entra Workload Identities, and Group Managed Service Accounts (gMSAs)
• Assist in defining and implementing access policies, conditional access, entitlement models, and RBAC principles across applications and systems.
• Evaluating and automating Identity Management requirements within Azure AD environments
• Ensuring federated access across Active Directory, Azure AD, and other environments
• Troubleshooting and resolving Azure environment performance issues, connectivity issues, security issues, etc.
• Work closely with cybersecurity, cloud, and infrastructure teams to align IAM strategies with organizational security objectives.
• Collaborate with internal stakeholders and external vendors to support the implementation and integration of Strong
  
  DM for privileged access management
• Provide technical guidance and mentorship to junior IAM engineers and IAM Analyst
• Ability to drive their own workload and take initiative.
• Work with the IAM Architect to execute a comprehensive IAM strategy aligned with the organization's goals and objectives.

• Bachelor’s degree in Computer Science, Information Technology, or related field.
• 5+ years of experience in IAM, Cybersecurity, or related field.
• Hands-on experience implementing and managing SailPoint ISC in complex environments.
• Strong understanding of PAM principles and working knowledge of Strong
  
  DM or similar PAM tools (e.g., Cyber Ark, Beyond Trust, Delinea, Azure Key Vault).
• Deep knowledge of Microsoft Entra  (Azure AD) and service account types, including their creation, usage, governance, and security best practices
• Proficiency with IAM-related scripting and automation (e.g., Power Shell, Python, REST APIs).
• Experience working with hybrid and cloud environments (Azure, M365, SaaS integrations).
• Strong knowledge of identity lifecycle management, access reviews, provisioning/deprovisioning, and RBAC.
• Excellent communication and interpersonal skills, with the ability to collaborate effectively with technical and non-technical stakeholders.
• Certifications such as CISSP, CIAM, or Azure are highly desirable.

If you have a passion for cybersecurity and a proven track record of leading successful IAM initiatives, we encourage you to apply for this exciting opportunity!