Job Description
What You'll Do:
We are seeking a motivated individual to join our Identity and Access Management (IAM) team. This position will help safeguard the organization's information by implementing controls, developing standards, and designing solutions to ensure we successfully identify, authenticate, and authorize access to critical data and applications. In this role, your skills, experience, and knowledge of IAM technologies and concepts will help the organization balance policy, regulatory and auditing compliance requirements with end user experience through application on-boarding, IAM workflow development, process improvements, and supporting highly available application environments.
The IAM Technical Manager, as a vital part of our Information Security Team, will lead the Identity and Access Management program. They will define the strategy, implement that strategy, and modernize Digital River’s IAM systems and processes. This role oversees systems and tools related to identity lifecycle, identity governance, privileged access management, and overall access management. This individual will also take on responsibilities related to information security, outside of the IAM program. This is a hands-on-keyboard role. The ideal candidate will not only possess strong technical skills and a strategic mindset, but they will also have experience building and leading high-performing teams in a dynamic environment.
1. 40% -- Leadership & Engineering
1. Guiding, mentoring, and providing training to cultivate a high-performing team, consisting of three full-time employees and some contractors.
2. Define the strategy - design and implement security architectures, processes, and solutions to protect Digital River’s infrastructure and identities.
3. Enable automation – develop automation focused on identity lifecycle.
4. Research requirements to determine system feasibility, costs, benefits, or functional capabilities.
5. Develop, implement, and administer security and identity related policies and procedures.
6. Remain informed on the most recent advancements in technology and security trends to remain knowledgeable about emerging threats and industry best practices.
2. 30% -- System Security Operations
1. Triage and support operational issues involving systems and tools.
2. Execute on periodic entitlement reviews and audit support related to PCI and SOC2 audits across the organization.
3. Conduct vulnerability assessments on Digital River’s software, architecture and vendors as needed.
4. Perform various manual tasks related to the provisioning and de-provisioning of user accounts.
5. Perform system maintenance on all security tools and identify areas of improvement.
3. 30% -- Technical Support
1. Consult and collaborate with the business as a subject matter expert on security and IAM.
2. Assist with PCI and SOC2 related security audits as needed.
3. Participate and oversee the management of a ticket queue and fulfilling support tickets within defined SLAs.
Qualifications
What You'll Need to Succeed:
Required:
1. 2+ years of experience in a team lead or people management position.
2. 5+ years of experience in Information Security and/or Identity & Access Management design and engineering.
3. Experience managing Identity and Access Management in AWS.
4. Experience with AWS IAM Identity Center, Microsoft Azure, Veza, OKTA, IdentityIQ, secrets management, or other equivalent IAM technologies.
5. Experience with automating manual tasks related to IAM systems and tools.
6. Coding/scripting skills – Ability to add, update or troubleshoot code to resolve issues, create efficiencies or integrate systems is a plus.
7. Experience working with systems (UNIX/Linux/Windows) and directories (LDAP, etc.).
8. Experience with IAM Technologies and Processes (Federated Authentication, Web Single Sign On, SAML/OAuth, OpenID Connect, Web Access Management (WAM), Identity Governance and Administration (IGA), Multi-Factor Authentication (MFA), Privileged Access Management (PxM/PAM), etc.).
9. Solid understanding of security principles, tools, and processes.
10. Problem solving and troubleshooting skills, and ability to multitask on competing priorities.
11. Exceptional communication and interpersonal skills with the ability to influence and collaborate with diverse stakeholders.
12. Strong project management and organizational skills, with the ability to deliver high-quality results within budget and on schedule.
Preferred:
1. Industry standard certification such as CISSP, CISA, or CISM.
2. Bachelor’s degree in Computer Science/Security Engineering/Related field.
#J-18808-Ljbffr