Senior IAM Security Engineer - Remote

$135,000 - $160,000/Yr

EPAM Systems - Boston, MA

posted 3 days ago

Full-time - Senior
Remote - Boston, MA
Professional, Scientific, and Technical Services

About the position

The Senior IAM Engineer plays a critical role in architecting, deploying, and operating a secure application infrastructure that aligns with business needs. This advanced position is responsible for supporting operational innovation and providing security direction to enhance the company's security posture within a cloud computing environment. The role involves delivering applications at scale and with resiliency, requiring strong administrative and troubleshooting skills, as well as knowledge of architecture, engineering, and design principles.

Responsibilities

  • Assess the threat landscape and adapt security measures to protect the business from risk.
  • Design and implement security architectures and strategies to safeguard information system resources and assets.
  • Ensure integration of technology that upholds Information Security policies and standards while meeting business objectives.
  • Identify opportunities for security process improvement.
  • Provide support for critical security infrastructure components to ensure system availability.
  • Mentor team members and associates in security best practices.
  • Maintain awareness of security technology direction, trends, and related issues.
  • Develop a long-term strategy for supported security systems.

Requirements

  • 7+ years of experience in IAM lifecycle management, access management (SSO, SAML, OIDC), identity governance, privileged access management.
  • Experience deploying and supporting Single Sign-On (SSO) technology, including tracing, logging, and real-time troubleshooting.
  • Skills in Federated SSO (SAML and OIDC) with support skills such as tracing, logging, and real-time troubleshooting.
  • Ability to design, write, update, and troubleshoot code in Python, Javascript, Bash, and Powershell.
  • Proficiency in HTTP debugging/troubleshooting using web proxies like Fiddler/SAML-Tracer.
  • General knowledge of Active Directory (AD) or other LDAP Directory Services, especially querying/updating through scripts/programs.
  • Experience developing identity and access management solutions in Okta and Auth0.
  • Experience with SecureAuth IdP.
  • Skills deploying and supporting Multi-factor authentication (MFA) technology for applications.
  • General knowledge of Virtual Directory Services, Certificates/Public Key Infrastructure (PKI), Identity Management concepts, Cloud Technology, and device authentication.

Nice-to-haves

  • Knowledge of other scripting/programming languages and willingness to learn new technologies.

Benefits

  • Medical, Dental and Vision Insurance (Subsidized)
  • Health Savings Account
  • Flexible Spending Accounts (Healthcare, Dependent Care, Commuter)
  • Short-Term and Long-Term Disability (Company Provided)
  • Life and AD&D Insurance (Company Provided)
  • Employee Assistance Program
  • Unlimited access to LinkedIn learning solutions
  • Matched 401(k) Retirement Savings Plan
  • Paid Time Off - 15-25 days depending on level and tenure
  • Paid Holidays - nine (9) total per year
  • Legal Plan and Identity Theft Protection
  • Accident Insurance
  • Employee Discounts
  • Pet Insurance
  • Employee Stock Purchase Program
  • Participation in discretionary annual bonus program
  • Participation in discretionary Long-Term Incentive (LTI) Program

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service