Excelsior University is seeking a Identity and Access Management Engineer. The Identity and Access Management Engineer will be a member of a fast-paced and dynamic team in the Information and Technology Services unit.
The Identity and Access Management (IAM) Engineer is responsible for the University’s Identity and Access Management environment and solutions. The IAM Engineer will be installing, maintaining, and supporting an enterprise IAM infrastructure and related services.
This is a full-time, hybrid role with a minimum of two days required per week at Excelsior's home office in Albany, NY, with the remainder of the days worked from home. The required office hours may include different shifts spanning 8:30 am to 8 pm. These hours are subject to change based on the needs of the University and our students
Duties and Responsibilities
• Responsible for the installation, configuration, and maintenance of IAM components.
• Accountable for the delivery and security of the IAM platform and related services.
• Responsible for IAM strategic alignment of technology with business requirements.
• Perform activities related to IAM vendor and constituent relationships as well as analysis and documentation of business processes and requirements.
• Consult with application owners to document business processes and requirements; consult with vendors and developers to communicate requirements; facilitate business process improvement initiatives.
• Document business processes and requirements. Consulted on business processes that influence IAM data and timing.
• Accountable for IAM data flow and data integrations.
• Perform activities related to ongoing maintenance, effort, enhancements, and improvements to the IAM platform.
• Develop, configure, and deploy design changes and enhancements to the IAM platform to meet business requirements.
• Perform activities related to vendor and constituent relationships as well as analysis and documentation of business processes and requirements
• Accountable for service delivery of authentication and authorization services.
• Create necessary reports regarding the IAM platform.
• Provide consultation on technical matters related to IAM.
• Perform activities related to ongoing maintenance, effort, enhancements, and improvements to the IAM source and target connectors; Directory and Authentication providers; source of authority integration (e.g., HRMS, SIS, Payroll, etc.); downstream target integration (e.g., AD, LDAP, email, API, etc.)
• Consulted on all items regarding IAM.
Qualifications: To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
- Bachelor's degree in Computer Science and at least 2 years installing, maintaining, and supporting an enterprise IAM infrastructure and related services or an equivalent combination of education/experience that provides the required skills, knowledge and abilities.
- At least 2 years installing, maintaining, and supporting an enterprise IAM infrastructure and related services or an equivalent combination of education/experience that provides the required skills, knowledge and abilities.
- Working experience in the deployment of enterprise IAM solutions.
- Strong organization, analytical and problem-solving skills.
- Demonstrated project management and business planning skills.
- Excellent oral and written communication skills.
- Able to work alternate hours including evenings and weekends as required.
Strongly Preferred Qualifications:
- At least 5 years installing, maintaining, and supporting an enterprise IAM infrastructure and related services or an equivalent combination of education/experience that provides the required skills, knowledge and abilities.
The hiring salary range for this position is $85,000.00 - $95,000.00. The hiring salary range above represents the University's good faith estimate at the time of posting.