Engineer II, IAM (2 positions open)
Role details
Job location
Tech stack
Job description
The Engineer II works with cross-functional teams and customers to understand business requirements and translates into technical specifications. They discover the true requirements underlying feature requests and recommend alternative technical approaches. The Engineer II partners with cross-functional technical teams to launch projects and provide ongoing technical support. They collaborate with management to identify opportunities to streamline technology processes and develop new procedures that support the business unit/department. Responsibilities
- Establishes a technical roadmap for the platform and/or capability strategy and lifecycle that considers value-based outcomes, costs to maintain, supportability, and performance.
- Ensures sound integration, data, security, and business architecture design throughout all stages within the platform and/or capability lifecycle.
- Provides rapid delivery and development of technical solutions that align with business and/or platform desired outcomes.
- Troubleshoots and resolves technical issues related to platform or capability systems, solutions, and services.
- Innovates and drives continuous improvements of implementation methodology and technical service offerings based on customer/employee experiences or other enterprise objectives/outcomes.
- Participates in a Community of Interest for engineers across all capability and platform teams to share information and strengthen understanding of business needs and technology-based business solutions.
- Develops and maintains deep technical knowledge and expertise related to domain area systems, solutions, services, and applications.
Requirements
- Bachelor's degree or equivalent in Information Technology, Computer Science, Engineering or related field.
- 5+ years of hands-on experience expertly managing Dynamic Host Configuration Protocol (DHCP) and Domain Name System (DNS) services with Microsoft and Infoblox solutions, as well as Secure DNS and content filtering services with Cisco Umbrella and Fortinet Fortigate, for large-scale enterprises with a variety of endpoints (e.g., laptops, servers, networking equipment, IOT devices, etc.).
- 2+ years of prior experience managing identify and access management (IAM) systems, including Microsoft Active Directory (AD) and Microsoft Entra (Azure AD), M365 Multi-Factor Authentication (MFA) and Conditional Access Policies, and Privileged Access Management (PAM) solutions, such as CyberArk.
- Capable of troubleshooting complex system integrations, large-scale networks, and other performance and configuration issues with IAM solutions; planning and executing IAM product roadmap/evolution upgrades and new features; evaluating new identity technologies; and independently deploying new technologies (i.e., from High Level Design to Detailed Design to Deployment).
- Ability to lead and execute iterative migration of on-premises Active Directory environments to Microsoft Entra ID, including hybrid identity configurations and cloud-only models.
- Demonstrated experience with assessing and documenting existing AD dependencies (users, groups, service accounts, GPOs, applications) and developing migration strategies.
- Demonstrated experience with designing and implementing Entra ID architecture, including tenant configuration, domain integration, and identity lifecycle management.
- Familiarity with Jira, Confluence and ServiceNow tools for collaboration
- Familiarity with cloud computing (e.g., AWS, Azure, GCP).
AARP will not sponsor an employment visa for this position at this time.
Additional Requirements
- Regular and reliable job attendance
- Effective verbal and written communication skills
- Exhibit respect and understanding of others to maintain professional relationships
- Independent judgement in evaluation options to make sound decisions
- Home office environment with the ability to work effectively surrounded by moderate home environment noise - (Telework)
Benefits & conditions
AARP offers a competitive compensation and benefits package including a 401(k); 100% company-funded pension plan; health, dental, and vision plans; life insurance; paid time off to include company and individual holidays, vacation, sick, caregiving, and parental leave; performance-based and peer-based recognition and tuition reimbursement.