Position Summary
The primary purpose of this position is to participate in the technical system design, deployment, and management of ITS and customer identity and access solutions, along with maintaining a coordinated register of centrally managed attribute and role-based access controls. In addition, this position will ideate novel solutions to multi-faceted identity complexes to safeguard critical and confidential information belonging to the university. This position will participate in the discovery of new technologies and implementation and configuration of systems and applications in support and optimization of Identity Governance and Role Based Access Control ( RBAC ). This position will provide knowledge of the interactions between technologies and applications across product lines. This position examines external and internal technology, long-term trends, and implications of alternative approaches, and articulates those concepts to other internal staff. This position will utilize in-depth knowledge of software engineering, cloud technologies and data engineering to define target architectures, patterns, and processes in support of customer identity and access solutions. This position will lead and/or support tool and technology selection and drive standardization and reuse of industry leading technology across the organization. This position will lead and/or support the evaluation and selection process for application packages to satisfy solution requests and related university needs. This position collaborates with ITS Enterprise Systems management in setting guidelines and standards to ensure systems are consistent with ITS’ and UNCG’s long-term strategies. This position provides technical direction to project teams and understands and can explain the interrelationship of multiple concepts and can translate these concepts, ideas, and situations into clear, understandable, and simple terms.
Minimum Qualifications
Bachelor’s Degree with 3 – 5 years of experience in Identity and access management or equivalent combination of education/experience 5 years of working within a complex identity lifecycle management environment, including user and group synchronization Working understanding of modern database schema design Working understanding of MFA , conditional access, and zero trust architecture Knowledge of Single Sign-on protocols such as SAML or TGT Ability to implement federated identity management (IdP and SPs) 3+ years of experience with cross-platform provisioning/de-provisioning workflows Working knowledge of SCIM standards Proficient in RBAC and ABAC access control practices Working understanding of PAM and least privilege principles Working understanding in using RESTfun APIs and webhooks for integrations and automation Proficient in scripting languages such as PowerShell and Python
Preferred Qualifications
5+ years of experience in a centralized access management platform Proficient in DevOps and ITIL concepts Proficient knowledge in (a) cloud platform 5 years of experience in a higher education complex identity lifecycle environment, including user and group synchronization
Work Environment
Inside - c
