Identity
and Access Management (IAM) Engineer (Farmingdale, NY 11735)
- Resumes without full name and current address (city and state a minimum) will not be reviewed.
- Resumes with abbreviated career history or only partial career history will not be considered
- Resumes from outside of the United States will not be reviewed
Overview:
The
Identity and Access Management Engineer is responsible for supporting
mission-critical business areas such as Finance, Procurement, Business
Development, Collaboration, IT Service Operations, and Human Resources. This
individual develops, maintains, and supports areas that include network access,
database and system components, and remote access. In addition, the individual
will work actively with Support Teams to solve business problems with systems
and process solutions that fit our standards while identifying, evaluating and
participating in decision making around new and emerging IAM automation
activities
Responsibilities:
- Provide Subject Matter Expertise in the following Identity Related Services: Active Directory, Identity & Access Management, Multi-Factor Authentication.
- Will support existing Identity and Access Management Program through the implementation of key IAM technologies and services.
- Proactively improve the processes/tools around provisioning and de-provisioning users across the organization through PowerShell Scripts.
- Create IT related accounts including Active Directory, AS400 and VPN accounts.
- Provide technical expertise related to Microsoft AD and other relevant components, including workflow automation between Active Directory, Exchange and Microsoft O365. Perform and assist with regression tests with Key stakeholders in the Active Directory test environment and disaster recovery exercises. Manage and monitor Office 365 services and hybrid infrastructure. Perform migration activates of on-premises services to Microsoft Azure AD/Office 365. O365 modifications such as mailbox creation, add/removal of associates in distribution lists. Keep up to date with O365 license inventory.
- Work with a Variety of Technologies such as Multi-Tiered Applications, Databases, LDAP and Directory Services, Application Servers, Network Infrastructure, and Understanding of Security and Dataflow within these Components
- Provides 2nd and 3rd level support for Key Identity Management Systems.
- Develops and maintains technical solutions for the ongoing improvement of identity life cycle management.
- Develop training resources for end users and ensure training assignments are completed.
- Ensure account audits and access methods are conducted as required by the IAM program and regulatory requirements. Will report any data discrepancies to Internal Audit and IT Management. Work with Audit department on annual ACCS Certification process and related compliance requests.
- Recommend and oversee improvements, corrections, remediation or requirements for IAM operational role.
- Assist in periodic control activities such as regular review of user access, critical role review, and annual IT control testing support.
- Grant IT Development Access to production systems.
- Support remote access incidents and distribution of MFA tokens. Remote Support access and distribution of RSA tokens, assist with report generation and notifications for associates RSA account expirations
- Manage the ServiceNow queue related to the IAM Team. Provide ServiceNow reports when requested.
- Ensures the confidentiality of sensitive information.
- Participation in special projects and performs additional duties as required
Requirements:
- Bachelor’s Degree in Computer Science, Engineering or a related technical discipline, or the equivalent combination of education, technical training, or work/military experience.
- Security Certifications: CISM, CISA, SANS, SAP, ITIL, MCSA: Office 365 are a plus
- Must have experience with PowerShell Scripting to manipulate AD objects along with Active Directory, Hybrid Microsoft Exchange on Premise/Office 365 - Exchange Online.
- Experience with tools such as Zoho, AD Manager or Dell / Quest Migration Tools.
- Strong understanding of LDAP and authorization technologies such as SAML.
- Experience with password management methods and tools
- Previous experience with and knowledge of Remote Access applications supports such as MFA and RSA.
- Knowledge of ITIL Principles, SAP, ServiceNow and AS400 a plus.
- A valid driver’s license and the ability to travel up to 5% of the time may be required.
This is a permanent, full time position. All
candidates MUST be local to Farmingdale, NY. Do not apply if you are not local,
even if you would pay your own relocation. Relocation will not be considered.
All candidates must be legally eligible to
work in the United States without sponsorship and must reside locally. Sorry,
no Visa Sponsorship or Transfers at this time. No 3rd Party Recruiters unless
you represent a local candidate with all of these qualifications
RESUMES FROM OUTSIDE OF THE
US WILL NOT BE READ