This site uses cookies. To find out more, see our Cookies Policy

Identity and Access Control Engineer in San Diego, CA at Vaco

Date Posted: 3/5/2019

Job Snapshot

Job Description

Position Summary
The position of Identity and Access Control Engineer is established to provide development and management of centralized access control systems. This position has responsibility for creating and maintaining the Identity and Access Management (IAM) program, standards, and architecture to enable an enterprise-wide systems, as well as to maintain quality service standards set by the organization.
Essential Duties and Responsibilities
? Develop and implement identity management policies, standards and procedures to address access control requirements for least privileged access, separation of duties, and automated administration
? Design and architect processes and tools to facilitate access control activities
? Serve in a leadership role, facilitating access management processes for business applications owners to ensure appropriate access is maintained and monitored
? Manage and enhance the functionality of the identity and access (IAM) system
? Develop and implement workflows that automate and facilitate access provisioning and de-provisioning
? Responsible for the design and implementation of a business continuity and disaster recovery program of the IAM tool and processes.
? Ensure that the system has the capability to manage identities for employees, vendors, contract workers and temporary employees for both on-premises and hosted applications in compliance with information security policies and financial industry regulations.
? Mentor and train Access Control staff as well as application business owners for user access tasks and how to conduct reviews
? Build authorization collections for applications for unified identity management
? Work closely with the business, application owners, and users to translate business requirements into access control groups and policies
? Work closely with the business, application owners, and users to document system access and identify potential areas of improvement for authentication and authorization mechanisms.
? Provide guidance to business owners to understand applications and access rights/controls.
? Work closely with IT teams to manage access control processes such as onboarding and offboarding, and application integrations.
Identity and Access Control Engineer
Page 2 of 3
? Work with Business Analysts to ensure access controls are integrated with business requirements for any new application.
? Design and integrate user access methods for applications and work with the Service Desk and the Network Operations Center to improve access processes.
? Further develop role-based access as an enterprise-wide initiative
? Study business processes and develop and implement workflows that automate and facilitate access provisioning and de-provisioning
? Establish privileged access and segregation of duties monitoring controls for identifying and mitigating risks associated with access rights
? Create user access reviews as directed for Business Application Owners
? Act as the subject matter expert for IAM tools to assist with technical, operational and strategic access control decisions.
? Develop documentation including run books, user guides, and other access procedures.
? Document application functionality, permissions, profiles, and authentication parameters.
? Develop reporting mechanisms and KPIs.
Other Duties & Responsibilities
? Perform other duties as assigned
? Perform administrative work as needed
Physical Demands and Work Environment
The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this position. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
While performing the duties of this position, the employee is regularly required to use hands to finger, handle, or feel objects, tools, or controls. The employee frequently is required to sit and talk or hear. The employee is occasionally required to stand; walk; reach with hands and arms; climb or balance; and stoop, kneel, crouch, or crawl.
The noise level in the work environment is usually moderate.
Minimum Qualifications (Education, Experience, Skills):
? Bachelor's degree in a technical field or equivalent work or educational experience
? Seven years of experience with IAM design, implementation and administration
? Certified Identity and Access Manager (CIAM) desirable but not required
? Effective interpersonal, verbal and written communication skills
? Experience developing database queries and understanding of database structures and connectivity methods
? Experience with scripting platforms such as PowerShell or Java
? Demonstrated expertise with Microsoft Active Directory account modification AD structure aDAP queries, and extension attributes.
? Ability to design and build logical workflows based on existing processes
? Comprehensive knowledge of Role Based Access Controls (RBAC)
? Understanding of HR systems and the direct correlation to account provisioning
Identity and Access Control Engineer
Page 3 of 3
? Understating of SSO concepts such as integrated windows authentication, SAML
? Working experience with Windows and Linux Server operating systems
? Demonstrated ability to manage concurrent projects; sufficient organizational skills to plan, prioritize and complete assignments by deadline.
? Detail oriented with college-level critical thinking skills