Senior Identity and Access Management Engineer

Job description

Bounteous is a premier end-to-end digital transformation consultancy dedicated to partnering with ambitious brands to create digital solutions for today’s complex challenges and tomorrow’s opportunities. With uncompromising standards for technical and domain expertise, we deliver innovative and strategic solutions in Strategy, Analytics, Digital Engineering, Cloud, Data & AI, Experience Design, and Marketing.

Our Co-Innovation methodology is a unique engagement model designed to align interests and accelerate value creation. Our clients worldwide benefit from the skills and expertise of over 4,000+ expert team members across the Americas, APAC, and EMEA. By partnering with leading technology providers, we craft transformative digital experiences that enhance customer engagement and drive business success.

Senior Identity and Access Management (IAM) Engineer is a member of the Gen Re Cybersecurity team and is responsible for designing, developing, and implementing high-quality IAM solutions that align with the organization’s cybersecurity strategy. The candidate will collaborate with cross-functional teams to ensure IAM systems are robust, scalable, and compliant with industry best practices.

The candidate must have a strong background in technology, security and metrics, and must be highly adaptive. The candidate must be highly organized and analytical and is expected to partner and mentor effectively with other teams on an ongoing basis.

Information Security Responsibilities

• Promote and enforce awareness of key information security practices, including acceptable use of information assets, malware protection, and password security protocols
• Identify, assess, and report security risks, focusing on how these risks impact the confidentiality, integrity, and availability of information assets
• Understand and evaluate how data is stored, processed, or transmitted, ensuring compliance with data privacy and protection standards (GDPR, CCPA, etc.)
• Ensure data protection measures are integrated throughout the information lifecycle to safeguard sensitive information

Specific responsibilities:

• Design and architect IAM frameworks to support secure access across hybrid environments.
• Automate IAM processes to improve operational efficiency and reduce manual intervention.
• Lead the integration of IAM solutions with existing systems, ensuring compatibility and compliance with security standards.
• Implement role-based access control (RBAC), Least-Privilege, and Zero-Trust principles.
• Contribute to the development and maintenance of IAM solutions – PingOne SSO, Saviynt Enterprise Identity Cloud, Entra ID
• Monitor and enhance IAM security posture through continuous improvement and threat mitigation.
• Implement and support Identity Threat Detection and Response solutions and practices.
• Evaluate vendor IAM solutions and document their applicability and value.
• Create and maintain comprehensive documentation for IAM processes and ensure compliance with regulatory requirements.
• Research, design, and advocate for relevant IAM architectures and solutions supporting security requirements of the enterprise, its customers, business partners and vendors.
• Maintain familiarity with IT security vulnerabilities, threats, exploits and mitigations.

Preferred Qualifications:

• Hands-on experience delivering enterprise-level IAM solutions and controls.
• Strong conceptual thinking and communication skills - the ability to translate complex business and technical requirements into effective and comprehensible solutions.
• Expertise in authentication and authorization standards, including FIDO2, SAML, OAuth, and LDAP.
• Extensive hands-on experience implementing and supporting one or more Single Sign On solutions (e.g., PingOne, Entra ID)
• Extensive hands-on experience implementing and supporting one or more Identity Governance and Administration solutions (e.g., Saviynt, SailPoint).
• Experience implementing and managing Privileged Access Management (PAM)
• Experience in migrating legacy authentication standards to modern ones
• Experience with Active Directory, scripting / programming languages (e.g., Python, Ruby, PowerShell)
• Familiarity with SAP IAM, certificate management and PKI services
• Strong problem-solving skills and the ability to communicate effectively with technical and non-technical stakeholders.
• Extensive familiarity with NIST and ISO security practice frameworks, data privacy regulations
• The following are not essential, but are highly valued:
• Familiarity with architecture methodologies (e.g., SABSA, TOGAF, Zachman Framework)
• Demonstrable experience creating, securing, and managing Cloud infrastructures (e.g., AWS, Azure, Open stack)
• Professional experience in application or infrastructure penetration testing.
• Bachelor’s or master’s degree in computer science, information systems or other related field, or equivalent work experience.
• Professional security certifications, such as a ISC(2) Certified Information Systems Security Professional (CISSP), IMI Certified Identity Management Professional (CIMP), Certified Identity and Access Manager (CIAM) or similar.

$50 - $75 an hour

We invite you to stay connected with us by subscribing to our monthly job openings alert here.

Bounteous is proud to be an equal opportunity employer. Bounteous does not discriminate on the basis of race, religion, color, sex, gender identity, sexual orientation, age, physical or mental disability, national origin, veteran status, or any other status protected under federal, state, or local law. Bounteous is willing to sponsor eligible candidates for employment visas.

#BI-Remote

#LI-Remote