IAM Analyst.
Bellevue, WA

Job Description

IAM Analyst

Location: Bellevue, WA

Duration: 6 months with possible contract to hire

Job Description:

* The individual in this role must be a seasoned leader, able to teach and experienced in the implementation of Identity and Access Management solutions for large enterprise AWS migrations. Further, the person must be able to bring together key tenets of Information Security to the IAM cloud strategies and develop technical security solutions that properly align. The engineer will contribute to the overall IAM maturity with the principal architect and governance bodies.

Business Group & Key Projects:

The Identity & Access Management (IAM) reports to the IAM Director. This is a hands-on role focused on rolling out the AWS Identity and Access Management architecture for a worldwide multi-region enterprise AWS migration. The IAM Senior Engineer's role is a technical implementation position which will develop and deliver IAM security solutions for our cloud migration initiatives, specifically IAM as it relates to cloud migration for over 140 agile development teams. The IAM Senior Engineer scope of work is organization wide and will partner with service owners to implement an enterprise AWS IAM solution that is secure, scalable, auditable and synchronized with the ever-changing business needs.

Typical Day in the Role:

Manager need a very strong "take charge " type of personality. There will be some friction. We have significant organizational change to drive. The responsibilities will be enterprise wide.

Understand the client AWS strategy and build taxonomy & design document for IAM federation in 30 days. Build a working IAM prototype in 60 days. Drive adoption model of IAM AWS permissions across 140 agile teams in 90 days.

* Subject-matter expertise across all AWS IAM topics as it relates to both cloud and on-premises enterprise technology, and the relationship between the architectures.
* Implement IAM architecture to ensure a secure and enterprise grade AWS migration of all services.
* Develop effective architecture solutions that not only satisfy immediate project requirements but also deliver a coherent, reusable, reliable and phased architecture deployment to help the business grow and mature while aligning to strategic security vision.
* Manage the successful technical delivery of projects and services for our customers by working directly with key business stakeholders, executives and project teams. Senior Engineers are the technical lead on initiatives and as such must drive the vision and technical alignment of the solution delivery. This is not a project manager role.
* Review and management of technical security roadmaps related to cloud security and IAM within a cloud security context.
* Deliver technical security configuration templates and user guides to support cross-organizational adoption.

Compelling Story & Candidate Value Proposition:

The culture of client and the attitude of our company is great. We just got named "best place to work "

Candidate Requirements:

* Want to see a seasoned professional with a track record of driving significant process change.
* Manager prefers candidates who come from local technology companies
* Experience architecting and implementing large enterprise AWS IAM solutions within Amazon Web Services (AWS)
* Intimately familiar with IAM related protocols such as SAML, SPML, XACML, SCIM, OpenID and OAuth.
* Experience working with cloud security and governance tools, cloud access security brokers (CASBs), and server virtualization technologies.
* Federation concepts and technologies particularly with solutions from ADFS and Ping Identity.
* In-depth experience with Microsoft Azure, particularly Azure AD and architecture designs connecting Azure to enterprise infrastructure.
* Strong experience with Directories, SSO, Federation, Delegated administration, API gateways, SOA services
* Strong understanding of cloud computing architecture, technical design and implementations, including Infrastructure as a Service (IaaS), Platform as a Service (PaaS) and Software as a Service (SaaS) delivery models.
* To qualify for the role you must have
* Bachelor's or Master's degree in Computer Science, Information Systems or related field of study.
* 8+ years of practical experience in the field of IT is required, 5+ years of direct Information Security experience, 10+ years of software development experience is desirable
* A security industry certification is required including but not limited to CISSP, SSCP, CISM, SANS GSEC, ECSA, ECSP, and Security+
* Expert level experience in AWS Cloud Identity Authentication and Access management Services.
* Expert level development experience in cloud solution development AWS, Okta and other relevant cloud IAM solution architectures.
* Expert understanding of Multi-Factor authentication and Privileged Access Management

Top 3 must-have hard skills:

* SME across all AWS IAM topics
* Senior engineer
* Seasoned professional