[ref. j23141721] IAM Engineer 4 - Asurion

Location: Hybrid

The Identity and Access Management Engineer 4 is a key member of the Global Security & Risk team, responsible for the support and maintenance of the Identity and Access Management (IAM) platform and the Privileged Access Management (PAM) platform.

This role involves a high level of collaboration with other engineers and architects in IT and Development.

Essential Duties & Responsibilities:

• Drive continuous improvement of workflows, technical scripts (PowerShell), policies, procedures and technology related to Privileged Access Management to enable risk reduction, business enablement and operational efficiencies.
• Manage operational components of the IAM and PAM systems/processes as required.
• Develop scripts to analyze data in Active Directory and perform updates to data in Active Directory as needed and approved.
• Participate in the execution of aligning applications and systems to Asurion’s PAM framework, including account provisioning and lifecycle.
• Participate in the installation, integration, deployment, support, and troubleshooting of IAM products and services.
• Work with stakeholders to gather requirements needed for system and application integration of various systems.
• Create and maintain accurate process and code documentation.
• Assists with response to identity management inquiries and incidents where IAM or directory services expertise is required.
• Assists with managing remediation plans for identity and access management gaps reported in audits or recommended process improvements.
• Maintain documentation for applications tied to audit and the IAM system.
• Conduct frequent communication between application and business teams.
• Prepares identity and access management reports by collecting, analyzing, and summarizing data and trends.
• Orchestrates security and identity management efforts between IT operations and application support groups while working with both full time and contractor/consultant resources.
• Assists with developing enterprise-wide Standards for identity management to meet business and security needs.
• Update job knowledge by tracking and understanding emerging identity management practices and standards and participate in educational opportunities.
• Collaborate with Customer Trust team to address and rectify non-compliance issues, as needed.
• Perform other related duties as assigned.

Education, experience, and skills desired:

• Bachelor’s degree in computer science, Management Information Systems, or related field desirable. Practical experience plus education and certifications will be considered.
• 3+ years of experience in documenting, developing, and implementing account management systems.
• Account lifecycle management experience.
• Working knowledge of IAM roles and the access certification process.
• Management and implementation of PAM functions within applications such as CyberArk, Delinea, Beyond Trust, etc.
• Experience with SailPoint IIQ or other enterprise IAM platforms such as RSA, One Identity, Saviynt, Okta, ForgeRock, etc.,
• 5+ years of technical experience working with Active Directory; including account creation and management, OU structure, GPOs and Password Policies in relation to service account management.
• Basic to intermediate experience managing Linux, Windows, Database systems such as, MS SQL, MySQL, etc.
• Experience with REST/ SOAP / SCIM API for the purpose of integration
• Intermediate to advanced scripting skills with a language such as PowerShell scripting or Python and experience with account management and reporting.
• Strong analytical and problem-solving skills are necessary.
• Excellent communication (oral, written, presentation), interpersonal, and consultative skills in English are required.
• Ability to operate effectively in a fast-paced environment with frequent shifting prioritization.
• Work schedule flexibility.

Asurion’s more than 19,000 employees are focused on solving customer’s problems – operating 24 hours a day, seven days a week, speaking six languages, and working across any device, platform, or provider. We do all this as we live by our core values: we act with integrity, we are one team, we deliver service excellence, and we drive results.