Identity and Access Management; IAM Engineer

Identity and Access Management (IAM) Engineer

Join to apply for the Identity and Access Management (IAM) Engineer role at Clark Construction Group

The Identity and Access (IAM) Engineer will help mature Clark’s security posture. The role will be responsible for administering the IAM platforms (Saviynt, Entra , and Okta) and onboarding applications to these platforms. The role requires working closely with the business to facilitate application onboarding, develop access control, and perform other IAM activities. This includes all phases from discovery through long‑term support.

The role will also work with our security and internal audit teams to provide proper access controls and auditing of our solutions.

This position will be based in the office 5 days/week.

• Identity and Access Governance (IGA) Administration:
  Administer and maintain the IGA platform (Saviynt), onboard new applications, and resolve IAM‑related issues.
• Authentication and Authorization Administration:
  Configure and maintain single sign‑on (SSO) integrations and administer SSO platforms.
• Identity Lifecycle Management:
  Automate user provisioning and de‑provisioning processes; develop and maintain role and attribute‑based access controls.
• Troubleshoot, identify, and resolve technical IAM‑related issues.
• Improve IAM solutions and systems for protection against evolving threats and efficiency.
• Coach other organization members on IAM best practices.
• Develop reporting for IT, business application owners, and SMEs.
• Drive planning and execution of IAM roadmaps and technology enhancements.
• Create and maintain standards related to documentation of IAM processes, procedures, and infrastructure.
• Provide engineering support to automate and administer IAM and compliance requirements across all enterprise information systems.
• Perform day‑to‑day IAM operations and support; participate in bimonthly maintenance days when required.

• 5+ years of experience in the information technology field.
• 3+ years of IAM‑related experience.
• Strong oral communication and writing skills.
• Ability to collaborate across business units and engage with stakeholders.
• Proficient knowledge of IAM concepts: authentication methods, least privilege access.
• Experience integrating with account and access management technologies: APIs, SCIM.
• IGA platform management experience.
• Experience with role and attribute‑based access controls.
• Experience with federation protocols such as SAML, OAuth, and OIDC.
• Experience with access certifications.
• Alignment to Clark Standards of Excellence: self‑motivated, results‑oriented, adaptable, team player, accountable, ethical, innovative, resilient, builds relationships, builds people / teams & followership, sets direction & executes.

• Saviynt (or similar, ex., Sailpoint) administration and integrations.
• SQL.
• Entra .
• Okta.
• Service Now.
• Scripting.
• Cyberark.

Clark promotes a drug‑free workplace. A pre‑employment drug “fitness for duty” screening is required, and the company conducts random quarterly drug “fitness for duty” tests.