Identity & Access Management Engineer
Perdue Farms
- Salisbury, MD
- Permanent
- Full-time
- Drive integration, delivery, and support of Identity and Access Management (ID&IAM), Single Sign On (SSO), Multifactor Authentication (MFA), and Privileged Access Management (PAM) solutions.
- Work with business and application owners to identify requirements, provide consultation of security requirements, identify workflow and use cases, and integration of access solutions across the enterprise.
- Aligns IAM processes across the organization and develop and document standards for organizational use.
- Automate user onboarding, offboarding, role changes, account certification and ensuring adherence to security policies and compliance requirements.
- Define and enforce access control policies, including role-based access control (RBAC), least privilege principle, and segregation of duties (SoD).
- Collaborate with cross-functional teams, including IT, security, and compliance, to ensure IAM aligns with business goals.
- Troubleshoot, identify, and resolve technical identity and access management related issues.
- Provide post implementation support and regular system maintenance and support which will periodically require off-hours, weekend, and on-call support
- At least 5 years of experience in IT and 3 years with demonstrated expertise in IAM implementation and operations with an IAM technology (e.g. Ping, Okta Saviynt, Beyond Trust, Sailpoint, CyberArk etc).
- Extensive knowledge and experience with identity and access management concepts, such as single sign-on (SSO), multifactor authentication (MFA), privileged access management (PAM), etc.
- Experience executing identity and access governance, role-based access control, access request and certification, and user life cycle management processes.
- Deep Knowledge of Active Directory, SAML 2.0, OIDC, WebAuth, MFA Mechanisms (including PassKey), and other related Authentication and Single Sign On/Federation Services technologies.
- Demonstratable experience developing and supporting custom integrations with third party tools.
- Functional experience with commonly used coding languages such as Powershell, Python, or Javascript.
- Practical experience using APIs, SQL queries/commands, and LDAP integrations.
- Strong verbal and written communication skills, with the ability to effectively communicate complex cybersecurity and IT issues and concepts to non-technical stakeholders.
- Experience with SAP, Cloud Services, IoT, and mobile workforce use cases are beneficial.