Identity & Access Management Engineer
Role details
Job location
Tech stack
Job description
-
Hybrid Identity Architecture: Manage and synchronize identity objects across on-premises and cloud environments to ensure a seamless, unified user experience and reliable authentication.
-
Privileged Access Management: Design and administer security solutions for credential vaulting, just-in-time access, and the protection of high-value administrative accounts.
-
Identity Governance & Visibility: Monitor and analyze access rights and permissions across the enterprise to ensure compliance with "least privilege" standards and reduce the attack surface.
-
Certificate & Key Management: Oversee the lifecycle of digital certificates and encryption keys, including the management of internal certificate authorities and hardware-based security storage.
-
System Configuration & Hardening: Standardize security settings and operational policies across server infrastructure and endpoint devices using both legacy and modern management tools.
-
Modern Authentication Engineering: Implement and troubleshoot secure access workflows, including Single Sign-On (SSO), Multi-Factor Authentication (MFA), and conditional access protocols.
-
Infrastructure Operations: Provide Tier 3 administration for the core servers and domain controllers that host identity, directory, and authentication services.
-
Automated Workflow Development: Utilize advanced scripting to automate routine directory tasks, health monitoring, and the lifecycle of identity objects.
-
Compliance Cloud Administration: Maintain identity and directory integrity within high-security, regulated cloud environments that require strict data residency and sovereignty.
-
Cross-Platform Integration: Coordinate with service management teams to integrate identity processes with internal ticketing systems for automated, auditable request fulfillment.
Requirements
- +5 years of working experience with at least 5 of the following technologies: Strong working knowledge of at least 5 of the following technologies: AzureAD, on-prem AD (active directory), Windows Servers, EntraID, GCCH, Intune, Identity, Privilege identity, Delinea Products (Secret Server, Cloud Suite), Veza, ServiceNow, PKI (Public and Private Key Infrastructure), ADCS, Certificate Authorities, HSM (Hardware Security modules), Group Policy, Scripting (PowerShell, etc), AD Domain Controllers.
Benefits & conditions
At Arrow, we recognize that financial rewards and great benefits are important aspects of an ideal job. That's why we offer competitive financial compensation, including various compensation plans, and a solid benefits package.
-
Medical, Dental, Vision Insurance
-
401k, With Matching Contributions
-
Short-Term/Long-Term Disability Insurance
-
Health Savings Account (HSA)/Health Reimbursement Account (HRA) Options
-
Paid Time Off
-
Tuition Reimbursement
