Utah Valley University
Senior IAM Engineer
Utah Valley University, Orem, Utah, United States, 84058
Utah Valley University is seeking a
Senior IAM Engineer
to spearhead the development, deployment, and maintenance of secure systems for managing user identities, access rights, and permissions. This role involves engineering IAM architectures that meet UVU's needs and comply with IT security and legal requirements. You will coordinate with other departments to deliver essential IAM functionalities such as authentication, authorization, RBAC, SSO, and MFA, ensuring seamless integration and functionality. Leading the IAM team, you will collaborate with cross-functional teams to establish and maintain IAM architectures, standards, guidelines, and operational documentation, including third-party integrations and data sharing. Your role includes ensuring compliance through strong relationships with data and security governance, mentoring IAM team members, managing competing priorities and projects, and maintaining open communication with various UVU departments.Summary of ResponsibilitiesIAM Solutions: Develops, implements, and maintains IAM solutions focusing on efficient user provisioning, authentication, authorization, and directory services. Develops and customizes IAM workflows, policies, and rules to meet specific institutional requirements. Configures and manages Microsoft Active Directory and Azure Active Directory environments. Supports Single Sign-On (SSO) and Multi-Factor Authentication (MFA) for seamless access and security.Integration and Collaboration: Develops and maintains integration solutions between IAM systems and other enterprise applications, such as Ellucian Banner, leveraging APIs and programming languages. Collaborates with cross-functional teams to integrate IAM solutions with existing systems and applications. Collaborates with vendors, support teams, and stakeholders to coordinate system upgrades, patches, and enhancements.Monitoring, Compliance, and Innovation: Monitors and troubleshoots IAM systems and resolves any issues or anomalies, conducting root cause analysis and implementing corrective actions. Conducts regular audits to ensure compliance with security policies, regulations, and best practices. Stays up-to-date with industry trends, emerging technologies, and regulatory requirements related to IAM and higher education. Proposes innovative solutions to improve IAM practices.Team Leadership: Acts as the lead for the IAM team, providing daily support, mentorship, and resources to help team members succeed, while promoting a culture of continuous improvement. Guides the vision and strategy of the IAM team in collaboration with the CISO to ensure alignment with both team and University objectives.Perform other job-related duties as assigned.Minimum QualificationsGraduation from an accredited institution with a bachelor’s degree in information technology, Computer Science, or technology-related field, plus four years of experience; OR any combination of education and experience totaling eight years.Preferred Qualifications:Industry certifications are preferred but not required such as CIAM, CISSP, or Microsoft Certified: Identity and Access Administrator Associate.Knowledge, Skill, and AbilitiesKnowledgeIn-depth knowledge of identity and access management best practices, implementation, and solutions.In-depth knowledge of Microsoft Active Directory (AD) and Azure Active Directory (AAD) administration and configuration.Proficiency in identity and access management standards and frameworks (e.g., LDAP, SCIM, RBAC).Understanding of security practices and methodologies.Understanding of provisioning, de-provisioning, and access automation through multiple methods.Understanding of API functions and integrations.Knowledge of relational database integration, queries, and design.Knowledge of the InCommon toolset, including Shibboleth and related technologies, is a plus.Skills:Demonstrated experience in designing, implementing, and supporting IAM solutions, preferably in the higher education sector.Experience implementing Single Sign-On (SSO) solutions using industry-standard protocols such as SAML, OAuth, or OpenID Connect.Experience configuring and managing Multi-Factor Authentication (MFA) solutions, such as RSA SecurID, Duo Security, or Azure MFA.Prior experience with Ellucian Banner, a widely used administrative system in higher education institutions, is highly desirable.Strong programming skills with proficiency in languages such as Java, Python, PHP, C#, or PowerShell.AbilitiesStrong problem-solving and troubleshooting skills in IAM-related areas.Ability to work in and/or lead cross functional teams supporting IAM.Excellent communication skills, both verbal and written, with the ability to effectively collaborate with diverse stakeholders.Strong attention to detail and commitment to maintaining the confidentiality, integrity, and availability of institutional data and resources.Provide technical guidance and mentorship to junior team members, sharing knowledge and promoting a culture of continuous learning.Ability to adapt to changing priorities and work effectively in a dynamic environment.EEO Statement:UVU employment decisions are made on the basis of an applicant’s qualifications and ability to perform the job without regard to race, color, religion, national origin, sex, sexual orientation, gender identity, gender expression, age (40 and over), disability, veteran status, pregnancy, childbirth, or pregnancy-related conditions, genetic information, or other bases protected by applicable federal, state, or local law.Job Type: Full-timePay: $79,868.00 - $106,490.00 per yearBenefits:Dental insuranceEmployee assistance programEmployee discountFlexible spending accountHealth insuranceHealth savings accountLife insurancePaid time offParental leaveProfessional development assistanceRetirement planTuition reimbursementVision insuranceSchedule:Monday to FridayAbility to Relocate:Orem, UT 84058: Relocate before starting work (Required)Work Location: In person
#J-18808-Ljbffr
Senior IAM Engineer
to spearhead the development, deployment, and maintenance of secure systems for managing user identities, access rights, and permissions. This role involves engineering IAM architectures that meet UVU's needs and comply with IT security and legal requirements. You will coordinate with other departments to deliver essential IAM functionalities such as authentication, authorization, RBAC, SSO, and MFA, ensuring seamless integration and functionality. Leading the IAM team, you will collaborate with cross-functional teams to establish and maintain IAM architectures, standards, guidelines, and operational documentation, including third-party integrations and data sharing. Your role includes ensuring compliance through strong relationships with data and security governance, mentoring IAM team members, managing competing priorities and projects, and maintaining open communication with various UVU departments.Summary of ResponsibilitiesIAM Solutions: Develops, implements, and maintains IAM solutions focusing on efficient user provisioning, authentication, authorization, and directory services. Develops and customizes IAM workflows, policies, and rules to meet specific institutional requirements. Configures and manages Microsoft Active Directory and Azure Active Directory environments. Supports Single Sign-On (SSO) and Multi-Factor Authentication (MFA) for seamless access and security.Integration and Collaboration: Develops and maintains integration solutions between IAM systems and other enterprise applications, such as Ellucian Banner, leveraging APIs and programming languages. Collaborates with cross-functional teams to integrate IAM solutions with existing systems and applications. Collaborates with vendors, support teams, and stakeholders to coordinate system upgrades, patches, and enhancements.Monitoring, Compliance, and Innovation: Monitors and troubleshoots IAM systems and resolves any issues or anomalies, conducting root cause analysis and implementing corrective actions. Conducts regular audits to ensure compliance with security policies, regulations, and best practices. Stays up-to-date with industry trends, emerging technologies, and regulatory requirements related to IAM and higher education. Proposes innovative solutions to improve IAM practices.Team Leadership: Acts as the lead for the IAM team, providing daily support, mentorship, and resources to help team members succeed, while promoting a culture of continuous improvement. Guides the vision and strategy of the IAM team in collaboration with the CISO to ensure alignment with both team and University objectives.Perform other job-related duties as assigned.Minimum QualificationsGraduation from an accredited institution with a bachelor’s degree in information technology, Computer Science, or technology-related field, plus four years of experience; OR any combination of education and experience totaling eight years.Preferred Qualifications:Industry certifications are preferred but not required such as CIAM, CISSP, or Microsoft Certified: Identity and Access Administrator Associate.Knowledge, Skill, and AbilitiesKnowledgeIn-depth knowledge of identity and access management best practices, implementation, and solutions.In-depth knowledge of Microsoft Active Directory (AD) and Azure Active Directory (AAD) administration and configuration.Proficiency in identity and access management standards and frameworks (e.g., LDAP, SCIM, RBAC).Understanding of security practices and methodologies.Understanding of provisioning, de-provisioning, and access automation through multiple methods.Understanding of API functions and integrations.Knowledge of relational database integration, queries, and design.Knowledge of the InCommon toolset, including Shibboleth and related technologies, is a plus.Skills:Demonstrated experience in designing, implementing, and supporting IAM solutions, preferably in the higher education sector.Experience implementing Single Sign-On (SSO) solutions using industry-standard protocols such as SAML, OAuth, or OpenID Connect.Experience configuring and managing Multi-Factor Authentication (MFA) solutions, such as RSA SecurID, Duo Security, or Azure MFA.Prior experience with Ellucian Banner, a widely used administrative system in higher education institutions, is highly desirable.Strong programming skills with proficiency in languages such as Java, Python, PHP, C#, or PowerShell.AbilitiesStrong problem-solving and troubleshooting skills in IAM-related areas.Ability to work in and/or lead cross functional teams supporting IAM.Excellent communication skills, both verbal and written, with the ability to effectively collaborate with diverse stakeholders.Strong attention to detail and commitment to maintaining the confidentiality, integrity, and availability of institutional data and resources.Provide technical guidance and mentorship to junior team members, sharing knowledge and promoting a culture of continuous learning.Ability to adapt to changing priorities and work effectively in a dynamic environment.EEO Statement:UVU employment decisions are made on the basis of an applicant’s qualifications and ability to perform the job without regard to race, color, religion, national origin, sex, sexual orientation, gender identity, gender expression, age (40 and over), disability, veteran status, pregnancy, childbirth, or pregnancy-related conditions, genetic information, or other bases protected by applicable federal, state, or local law.Job Type: Full-timePay: $79,868.00 - $106,490.00 per yearBenefits:Dental insuranceEmployee assistance programEmployee discountFlexible spending accountHealth insuranceHealth savings accountLife insurancePaid time offParental leaveProfessional development assistanceRetirement planTuition reimbursementVision insuranceSchedule:Monday to FridayAbility to Relocate:Orem, UT 84058: Relocate before starting work (Required)Work Location: In person
#J-18808-Ljbffr