Scheduled Hours

40

Position Summary

Seeking an IAM Engineer responsible for design, implementation, and engineering support for complex identity and access management solutions such as authentication services, authorization models, enterprise role management, access governance, and user provisioning lifecycles.

Job Description

Primary Duties and Responsibilities

• Perform research, analyze technology, consult vendors, and apply best practices to design technical solutions by Utilizing systems analysis techniques and procedures, including consulting with users, to determine hardware, software, or system functional specifications related to new implementations or enhancements of enterprise scale and significant complexity. This position interacts with manager and architects on a regular basis to discuss solution design and project engineering related tasks and will be expected to develop and present team briefs. Will work in conjunction with architect teams and customer to gather details regarding issues in order to expedite issue resolutions.
• Provide technical and advisory leadership as required to complete objectives.
• Validate, test and implement new products and services.
• Respond to and resolve incidents escalated from cross-organization engineers and performance tuning requests utilizing critical thinking skills.
• Create and maintain documentation related to services, solutions and interfaces.
• Provide training and mentoring for other personnel.
• Perform other duties as assigned.

Preferred Qualifications

• Ability to perform project work and tasks under minimal supervision.
• Demonstrated expertise in leading technical design projects during all phases of development and deployment.
• Demonstrated progressive experience successfully designing, delivering and/or supporting IT business solutions for large-scale organizations across multiple hardware and software platforms.
• Knowledge of enterprise and line-of business applications, and their relationship to the enterprise infrastructure landscape.
• Five years of experience as an information technology professional in one or many roles in regards to Identity and Access Management products.
• Significant and demonstrable experience managing enterprise-wide, large, identity and access management environments.
• Experience with security concepts including legacy and modern authentication models and authorization control models.
• Demonstrable proficiency with Active Directory design and architecture, Azure Active Directory management, SAML integration and deployment, OpenID Connect integration and deployment, multi-factor authentication platforms, and identity credential provisioning mechanisms.
• Experience documenting complex information technology processes, procedures, and intake forms.
• Proficiency with PowerShell for at least three years.
• Hands on experience deploying and managing Shibboleth and ADFS identity providers.
• Experience with Windows, Unix, and Linux server management.
• Ability to read, interpret, and apply NIST guideline controls to information technology processes.
• Robust understanding of identity management lifecycle and personas.
• Experience with enterprise level systems of record and identity management practices.
• Experience designing and deploying Microsoft Azure AD Connect.
• Knowledge and experience to create, manage, and mine roles for access control.
• Ability to communicate critical feedback and innovative ideas to an IT organization.
• Significant understanding of API concepts and API security models.
• Experience working in higher education.
• Experience as a technical team leader.
• Proficiency in Splunk search language.
• Experience with network packet tracing and debugging communication between services.
• Experience with AzureAD management, Azure security center, and security policies that come with A5 licensing.
• Experience with Azure platform as a service offering.
• Hands-on experience with IdentityServer or Duende.
• Hands-on experience with Saviynt, SailPoint, or some equivalent identity governance and administration platform.
• Experiencing managing and troubleshooting Duo security for MFA.
• Experience managing and deploying Microsoft FIM/MIM.
• Hands-on management experience with privileged account management software such as CyberArk or BeyondTrust.
• Familiarity with ITSM practices and platforms.
• Technical aptitude.
• Ability to effectively communicate technical issues.
• Ability to adjust to changes in priorities.
• Ability to work with minimal supervision with a high degree of accuracy.
• Ability to learn quickly and adapt to new circumstances.
• Good organizational skills.
• Excellent language and people skills.
• Must be flexible and willing to work extended hours as necessary and recognize the need to do so.
• Ability to adjust scheduled time.
• Excellent written, presentation, and oral communication skills.
• Ability to establish staff and departmental goals and objectives that are measurable.
• Ability to adjust to abrupt changes in priorities and strategy.
• Strong diplomacy and negotiating skills.
• Ability to interact comfortably with all levels of management.
• Excellent interpersonal and communication skills with the ability to build relationships, influence outcomes, and to deliver effective presentations to a variety of audiences.
• Ability to drive the development of an IT infrastructure architecture strategy in support of business goals and objectives and anticipating future needs of the organization.

Required Qualifications

Bachelors degree plus six years of related experience or equivalent combination of education and experience.

Grade

G16

Salary Range

$94,100.00 - $165,600.00 / Annually

The salary range reflects base salaries paid for positions in a given job grade across the University. Individual rates within the range will be determined by factors including one's qualifications and performance, equity with others in the department, market rates for positions within the same grade and department budget.

Accommodation

If you are unable to use our online application system and would like an accommodation, please email CandidateQuestions@wustl.edu or call the dedicated accommodation inquiry number at 314-935-1149 and leave a voicemail with the nature of your request.

Pre-Employment Screening

All external candidates receiving an offer for employment will be required to submit to pre-employment screening for this position. The screenings will include criminal background check and, as applicable for the position, other background checks, drug screen, an employment and education or licensure/certification verification, physical examination, certain vaccinations and/or governmental registry checks. All offers are contingent upon successful completion of required screening.

Benefits Statement

Personal

• Up to 22 days of vacation, 10 recognized holidays, and sick time.

• Competitive health insurance packages with priority appointments and lower copays/coinsurance.

• Want to Live Near Your Work and/or improve your commute? Take advantage of our free Metro transit U-Pass for eligible employees. We also offer a forgivable home loan of up to $12,500 for closing costs and a down payment for homes in eligible neighborhoods.

• WashU provides eligible employees with a defined contribution (403(b)) Retirement Savings Plan, which combines employee contributions and university contributions starting at 7%.

Wellness

• Wellness challenges, annual health screenings, mental health resources, mindfulness programs and courses, employee assistance program (EAP), financial resources, access to dietitians, and more!

Family

• We offer 4 weeks of caregiver leave to bond with your new child. Family care resources are also available for your continued childcare needs. Need adult care? Weâ™ve got you covered.

• WashU covers the cost of tuition for you and your family, including dependent undergraduate-level college tuition up to 100% at WashU and 40% elsewhere after seven years with us.

For policies, detailed benefits, and eligibility, please visit: https://hr.wustl.edu/benefits/

EEO/AA Statement

Washington University in St. Louis is committed to the principles and practices of equal employment opportunity and especially encourages applications by those from underrepresented groups. It is the Universityâ™s policy to provide equal opportunity and access to persons in all job titles without regard to race, ethnicity, color, national origin, age, religion, sex, sexual orientation, gender identity or expression, disability, protected veteran status, or genetic information.

Diversity Statement

Washington University is dedicated to building a diverse community of individuals who are committed to contributing to an inclusive environment â“ fostering respect for all and welcoming individuals from diverse backgrounds, experiences and perspectives. Individuals with a commitment to these values are encouraged to apply.

Return to Search Results