Identity Access Manager Engineer III

Primary Purpose

The IAM Engineer defines, analyzes, supports, tests and administers business-related technology within a budgeted time frame and cost that will meet departmental requirements by providing access to bank systems. Works with Business Partners to understand and compile data and design the report specifications to match the requirements. Able to translate complex business requirements and concepts into structured reporting. This position also participates in small teams on assignments to accomplish project goals.

This position will be required to perform necessary job duties in a manner that reflects and supports best-in-class service. The importance of accuracy, timeliness and attention to detail is vital to the successful implementation of IGA (Identity Governance and Administration) platform SailPoint, Identity Now. Candidates must be able to self-regulate their time management in order to meet deadlines. Additional attributes required for success include a strong customer service focus, professionalism, versatile product and process subject matter expertise, responsive, takes ownership, effective communicator, risk aware and good judgment.

Principle Duties and Responsibilities

• Maintain complete lifecycle of user access reviews; this includes creating, running, closing out the campaigns, all reporting, and liaison with audit.
• Design and configure user access reviews in our IGA tool for fully automated reviews.
• Work directly with our business partners in scheduling the user reviews.
• Work with team members to implement scalable access management and identity lifecycle processes for internal and external identities.
• Work with Line of Business (LOB) service / application owners to endure user and role definitions and associated access rights are appropriately implemented where provisioning is maintained outside of IAM. Includes documenting any missing controls, develop, manage, and execute a plan to bridge any gaps identified.
• Assist in developing process / procedures for integrating applications into the IAM platform to utilize provisioning, de-provisioning, user lifecycle management, and user access reviews.
• Assist in support of role-based access control (RBAC) model. Helps maintain documentation for operational processes.
• Provide insight during discussions on new technologies and tools related to Identity and Access Management and Governance.
• Create and implement automated processes that reduce manual efforts and increase overall efficiency and scalability.
• Document and report progress
• Other duties as assigned.

Job Specifications Education

• Bachelor's degree, its equivalent, or greater preferred
• Security based certifications preferred

Experience:

• Minimum of 4 years of experience in a directly related IT Field
• Minimum of 4 years of experience in access management and/or provisioning role or equivalent
• Extensive and demonstrated knowledge of standard IAM products (i.e. Entra, Delinea Secret Server, Saviynt, etc.)
• Experience with roles development in application environments
• Experience with basic IT access auditing
• Experience with Privileged Account Management (PAM)
• Experience with industry IAM processes, procedures, and current best practices
• Experience in configuring IAM technologies to provide enterprise Single Sign-on (SSO) services and enable Multifactor Authentication (MFA) platform features for internal and external applications
• Experience in the banking or finance industries preferred

Knowledge and Skills:

• Demonstrated technical oral and written communication skills
• Proven ability to work with other teams in managing complex projects
• Proven initiative to learn and research new concepts, ideas, and technologies quickly
• Proven ability to work in a collaborative environment
• Comprehensive understanding of IT risk controls and compliance frameworks
• Knowledge in industry and government security standards (NIST, CIS, etc)
• Solid understanding of system logical access and audit controls are desirable