Description
The Identity and Access Management team is part of the Technology and Risk Office and provides the plan, build and run functions for enterprise wide Identity and Access Management solutions. The Lead Access Management Engineering position is responsible for design and engineering functions for infrastructure access management solutions. The team is focused on access management for UNIX, Windows/Active Directory, Network, and Database access with a focus on centralizing authentication, authorization and auditing of access and automation of provisioning, deprovisioning and reporting for access privileges.
This position requires: attention to detail, the development of detailed security documentation and procedures, strong team skills, the ability to work independently as well as with others, the ability to multi-task assignments, and the communication of complex technical information to team members, all levels of management and customers. The candidate should have experience working in a large enterprise and be able to work well under pressure.
Essential Functions:
- Provide Design and Engineering support for Access Management solutions
- Review requirements for identity and access management and design and implement secure and reliable solutions.
- Proposing and presenting access management configuration changes and technology upgrade paths to IT management
- Developing documentation, requirements, specs, test strategies and implementation plans
- Providing technical assessments and recommendations for UNIX security solutions
- Scripting/programming for solution development, packaging and automation
- Interface with team members and partners of varied levels from across the organization to ensure that business requirements are met without compromising security.
- Ensures implementation of system access controls based upon KP-IT Information Protection policies and standards
- Responsible for enforcement of Systems Development Lifecycle and programming standards
- Designs the integration and implementation of various technologies and systems architectures.
- Performs second and third level problem determination and resolution.
Qualifications:
Basic Qualifications:
- Bachelor's degree in a related field and/or a minimum of 4 years of equivalent work experience.
- A minimum of8 years of experience in Information Technology (IT) including development, implementation, communication, monitoring and maintenance of information security policies and procedures.
- A minimum of 6 years of one of the following areas; UNIX security, Windows/Active Directory, Network security, or database security
- Requirements gathering, analysis, and design, and solution implementation
- Excellent problem solving skills
- Ability to apply security principles
- Identity and Access Management expertise
Preferred Qualifications:
- Master's degree
- Certified Information Systems Security Professional (CISSP)
- Experience engineering or implementing elevated access management for windows with Avecto Privilege Guard or similar products and technologies in large enterprise
- Experience engineering or implementing Privileged accounts and passwords management with Cyber-Ark Enterprise Password Vault or similar products in large enterprise
External hires must pass a background check/drug screen.
We are proud to be an equal opportunity/affirmative action employer.