Cloud IAM Engineer
Hybrid: NYC or Burlington County, NJ
About This Role:
We are looking for a strong identity engineer with experience in migrating an enterprise to cloud services and building patterns for identity and access management that adhere to enterprise and industry standards. The ideal candidate will have IAM related experience with Azure, Amazon Web Services, and Google Cloud - working knowledge or experience with standard DevOps practices and tooling - and experience with standard Enterprise identity platforms working in a hybrid model with the cloud.
Responsibilities:
- Design, engineer, and coordinate execution of IAM controls on our Azure Public Cloud platform, Office 365, AWS, GCP, and other SaaS Services.
- Design and engineer integration with on-premises services, such as Ping Federate, Radiant Logic Virtual Directory, ActiveRoles Server, Active Directory, etc.
- Interface with other IT and Enterprise Security Risk Management teams to ensure the creation of integrated processes to implement and track relevant controls.
- Work with the various stakeholders including Enterprise Technology, Enterprise Security Risk Management, and LOB partners to manage IAM components of cloud projects including getting requirements, defining solution options, and validation and approval of key decisions and exceptions.
- Develop, document, and implement solutions and standardized design patterns across Application, Platform, and Infrastructure layers.
- Design and engineer IAM components to integrate new SaaS services into our Cloud environment.
- Execute POCs and feasibility studies to validate next-gen product/new-service concepts promoted by our cloud vendor. Prototype solutions for new requirements as needed.
Required Technical Skills
- Deep technical knowledge and experience working with Google Cloud Platform, Microsoft Azure platform, and related services.
- Experience with Google IAM technologies, including Google Identity, OIDC Federation, role management, etc.
- Working knowledge of:
- Authentication and Authorization protocols, both modern (SAML, OAuth, OIDC)
- IAM configuration and management with Google Cloud Identity
- CICD framework and common DevOps tools and technologies used for orchestration, automated configuration, containers and container orchestration. Hands-on experience with tools like Jenkins, SALT, Kubernetes, Docker, etc. is a plus
- Scripting and Automation experience using native CLI, PowerShell, and/or Python.
Experience & Education
- 5+ years of experience in information technology with 3+ years of hands-on experience as an individual engineering contributor in Cloud projects
- Ability to participate in fast-paced DevOps Engineering teams within Scrum agile processes
- Strong academic background (e.g., computer science, engineering)
- Strong preference for Certified Professionals with relevant Cloud Certifications
- Engineering or systems management experience with Active Directory, ActiveRoles Server, and any federation service is beneficial