Identity & Access Management Administrator

Primary Purpose Of Job

Drives the Identity and Access Management (IAM) implementation and day-to-day systems administration of the program and applications. Develops and maintains key interfaces and automation around business critical Identity and Access Management processes.

• Keeps pace with emerging Identity Governance & Administration (IGA), Privileged Access Management (PAM), and Privileged Elevation and Delegation Management (PEDM) technology, cyber threats, and industry trends around Identity and Access Management.
• Applies knowledge of operational best practices for IGA/PAM/PEDM/SSO/MFA and other IAM specific platforms.
• Implements, integrates, and supports key security, compliance, and Identity and Access Management (IAM) and Privileged Access Management (PAM) systems.
• Streamlines and automates key security, Identity and Access Management processes, as well as other key processes.
• Performs integrations with multiple systems via SAML, ODBC, Flat File, and other connections.
• Coordinates audit-related tasks such as for audit testing and facilitating the timely resolution of any audit findings.
• Coordinates the development and modification of all procedures and guidelines applicable to matters of technology IAM compliance.
• Collaborates with Information Security and Technology teams to utilize monitoring and alerting infrastructure, processes and tools for IAM threats.
• Collaborates with key stakeholders such as internal audit team, people partner team, and legal team for enabling IAM policies and strategies.

Minimum three (3) to five (5) years of the following:

• Identity and Access Management experience
• IT Compliance
• Information security experience
• Recent experience with standard control frameworks
• Project management experience; demonstrated leadership of defined projects

• Architecture, implementation, and automation of IAM tools.
• Experience in Identity & Access Management tool (preferably SailPoint (ISC/Identity Now), for identity governance including automated provisioning/de-provisioning and access certifications
• Experience managing Okta for cloud-based access management, Single Sign-On (SSO) and lifecycle orchestration
• Skilled in Multi-Factor Authentication (MFA) technologies (e.g. RSA, Okta Verity, Yubikey), certificate based authentication, and PKI.
• Strong scripting (Python, Java, Powershell), API integration, and deep understanding of security protocols.
• Developing custom integrations, scripting automation, designing Role-Based Access Control (RBAC), and securing privileged accounts.
• Technical proficiency in SAML 2.0, OAuth 2.0, OpenID Connect (OIDC), SCIM and AD FS
• Knowledge and experience with IT systems and directories including Active Directory, LDAP and Microsoft Entra
• Ability to diagnose and resolve complex user access, authentication, or identity issues across enterprise systems
• Experience performing periodic access reviews and generating evidence and documentation for financial audits (FFIEC, SOC, GLBA, NIST 800-53)
• Expertise in authoring and maintaining a comprehensive technical library, including Solution Architecture Designs, operational runbooks for automated workflows and detailed compliance documentation (SOC2, NIST) to ensure system scalability, seamless knowledge transfer and audit readiness
• Proficient system implementation and integration skills.
• Demonstrates strong project management, analytical and organizational skills.
• Ability to manage multiple priorities in a fast-paced environment and quickly adapt to new technologies
• Able to prioritize projects and complete assignments within required time commitments.

• SailPoint Certified Identity Security Engineer
• Okta Certified Professional
• CISSP or CISA

EOE, including disability/veterans