Principal Engineer - Identity | Remote, US

This position will be fully remote and can be hired anywhere in the continental U.S.

Optiv is seeking a Principal Identity and Access Management (IAM)/Identity Governance and Administration (IGA) Engineer. This is a hands-on role that will require the direct involvement in all related technical and process related decisions specific to these and related technologies.

How you'll make an impact

• The Identity and Access Management (IAM) Engineer will be responsible for designing, implementing, and managing Cyberark, SailPoint and Okta to safeguard sensitive information and ensure compliance with regulatory standards within our client environments.

• You will collaborate with cross-functional teams, lead IAM initiatives, and contribute to the development and execution of the client's overall security strategy.

• Review and provide feedback on established strategies and multi-year plans incorporating all parts of IGA and IAM: access requests, lifecycle events, provisioning functions, role-based access, separation of duties, access certifications.

• Architect, design, develop and troubleshoot IGA solutions with the ability to provide technical and architectural design documentation, recommendations, specifications, use cases, requirements and test cases.

• Create solutions that drive full automation, self-service, and resiliency.

• Implement customizations to address customer business requirements.

• Participate in security and application troubleshooting and incident problem resolutions with other infrastructure teams, including storage, messaging, server, and network.

• The right candidate will collaborate with various stakeholders, including IT teams, security teams, and business units, to implement effective and efficient identity and access management solutions. The difficulty of the work increases with the complexity of the client's IT environment and the evolving landscape of cybersecurity threats.

• Provide engineering support for complex and recurring incidents related to IAM platforms and perform root causes analysis in accordance with customer policies and standards.

• Responsible for the standards, design, and operation of Cyberark, SailPoint, Okta and elated environments.

• Provides expertise in all aspects of the following technologies: Azure Entra ID, Microsoft technologies Active Directory (AD), Active Directory Lightweight Directory Services (ADLDS), Active. Directory Federated Services (ADFS), Sailpoint, CyberArk, BeyondTrust and Public Key Infrastructure (PKI) are included as key technologies.

What we're looking for

•  Bachelor’s degree in Engineering, Information Technology, Computer Science, or related discipline required.

•  3-5 years of experience as a senior level IDAM engineer preferred.

•  Experience with AWS/GCP cloud environments a bonus.

• Microsoft Certified IT Professional (Enterprise Administrator) preferred.

• CISSP certification is a plus. Microsoft technical certifications are preferred.

• Knowledge and experience with Identity Management technologies like SSO, SCIM, OAuth, SAML, Encryption, PKI.

• Knowledge of Microsoft technology such as Server, AD, DNS, Group Policy, and Office 365/Exchange, Azure, Azure Entra ID.

• Excellent communication skills, both verbal and written are required.

• Solid understanding of how Role Based Access Control (RBAC) works in large, distributed environments.

• Solid understanding of cybersecurity principles and best practices.

• Excellent problem-solving and analytical skills.

• Experience working with PAM systems.

• Experience with MFA protocols and techniques.

What you can expect from Optiv

• A company committed to championing Diversity, Equality, and Inclusion through our Employee Resource Groups.
• Work/life balance
• Professional training resources
• Creative problem-solving and the ability to tackle unique, complex projects
• Volunteer Opportunities. “Optiv Chips In” encourages employees to volunteer and engage with their teams and communities.
• The ability and technology necessary to productively work remotely/from home (where applicable)

EEO Statement

Optiv is an equal opportunity employer. All qualified applicants for employment will be considered without regard to race, color, religion, sex, gender identity or expression, sexual orientation, pregnancy, age 40 and over, marital status, genetic information, national origin, status as an individual with a disability, military or veteran status, or any other basis protected by federal, state, or local law.

Optiv respects your privacy. By providing your information through this page or applying for a job at Optiv, you acknowledge that Optiv will collect, use, and process your information, which may include personal information and sensitive personal information, in connection with Optiv’s selection and recruitment activities.  For additional details on how Optiv uses and protects your personal information in the application process, click here to view our Applicant Privacy Notice. If you sign up to receive notifications of job postings, you may unsubscribe at any time.