Summary/Objective: The IAM Engineer with IT Identity Audit Responsibilities will play a critical role in enhancing our identity and access management (IAM) program while focusing on IT identity audit processes. We are seeking a dedicated professional with a passion for identity, cloud, governance, and security. The ideal candidate will collaborate with peers to solve complex business problems and have hands-on experience across multiple IAM domains. Experience with Okta, Active Directory, and CyberArk is essential.
Essential Functions:
Provide IAM design, consultancy, and implementation engineering services, driving improvements in technical IAM standards and implementation designs.
Apply deep understanding of IAM, security, and industry-specific regulatory practices to all deliverables.
Demonstrate core competency and hands-on experience with Okta solutions.
Possess in-depth knowledge of IAM domains, including IdM, IGA, Federated SSO, MFA, and/or PAM.
Technical expertise to work as a developer in an implementation capacity.
Self-starter capable of producing high-quality work with minimal supervision.
Reverse-engineer existing implementations and provide strategic advice.
Advise on best practices for coding, versioning, and deployment methodologies.
Collaborate with customers, educating them in IAM specialties and building confidence in our core services and vendor solutions.
Additional Responsibilities (IT Identity Audit):
Conduct regular audits of user identities, access controls, and permissions.
Ensure compliance with internal policies, industry standards, and regulatory requirements.
Collaborate with internal audit teams to assess and improve identity-related controls.
Review access logs, monitor user activity, and identify anomalies or security risks.
Participate in IT audits and respond to audit findings related to IAM processes.
Develop and maintain audit documentation, including policies, procedures, and evidence of compliance.
Work closely with the IT security team to address audit recommendations and implement corrective actions.
Competencies:
Minimum 3 years of hands-on administration experience with Okta.
Experience building custom SSO integrations (SAML, OAuth, WS-FED/WS-TRUST) in Okta.
Deep knowledge of principal IAM products, including Okta, Active Directory, and CyberArk.
At least 3 years of technical IAM engineering or development experience, working with integration applications such as O365, AD, Azure, LDAP, and other directory services.
Ability to develop IAM strategies and roadmaps aligned with best practices and proven frameworks.
Familiarity with Cloud, SSO, and MFA.
Excellent documentation skills for clients (business and technical requirements, support guides, etc.).
Education and Certification:
A Bachelor’s degree in identity and access management, cybersecurity, information technology, or related field is usually preferred. However, applicants with a combination of relevant professional experience, education, and professional IAM certification will also be considered for the position.
Relevant certifications may include:
Certified Identity Management Professional (CIMP)
Okta certifications
Other industry-recognized IAM certifications
