Identity & Access Management Engineer

Job not on LinkedIn

October 31

🔔 Pennsylvania – Remote

Although this job is listed in Pennsylvania, this company may be open to hiring remote in other states.

🌴 South Carolina – Remote

Although this job is listed in South Carolina, this company may be open to hiring remote in other states.

⏰ Full Time

🟡 Mid-level

🟠 Senior

👷🏻‍♀️ Engineer

🦅 H1B Visa Sponsor

Apply Now

Receive Emails with Similar Jobs

First Quality

WebsiteLinkedInAll Job Openings

Healthcare Insurance • Retail • Productivity

First Quality is a company dedicated to manufacturing a wide range of essential products for everyday use. Specializing in personal care products, they offer a variety of items including adult incontinence care products like briefs and protective underwear, baby diapers and wipes, feminine care products such as maxi pads and tampons, and household care products like bath tissue and paper towels. They also provide flexible packaging solutions and HD printing services. Committed to innovation and sustainability, First Quality strives to enhance the lives of their customers, partners, and communities. With a focus on healthcare and retail, they aim to make high-quality products that meet the needs of consumers and support their partners' success.

1001 - 5000 employees

Founded 1993

⚕️ Healthcare Insurance

🛒 Retail

⚡ Productivity

📋 Description

• Help develop and enforce IAM policies, standards, and procedures for the enterprise which include both human identities and non-human identities • Onboarding/Offboarding - Automating provisioning/deprovisioning via PowerShell or other • Manage user lifecycle (provisioning, de-provisioning, RBAC, access reviews) and integrate IAM with cloud services • Maintain proper directory health, optimization, and hygiene • Designing role-based access models ensuring least privilege and segregation of duties • Integrate IAM processes with HRMS (Workday) and additional key systems and services (SAP, Salesforce, O365, MES, EAM) • Configure and maintain Single Sign-On (SSO), Multi-Factor Authentication (MFA), Conditional Access Policies, Privileged Access Management (PAM), Just-in-time (JIT) Access, federation (SAML, OpenID Connect, OAuth,), RADIUS, Public and Private Certificate Authority, Public Key Infrastructure (PKI), Certificate Lifecycle Management (CLM), Certificate-based Authentication (CBA), Passwordless authentication • Develop self-service IAM capabilities: Self-Service Password Reset (SSPR), Self-Service Access Requests, Delegated Administration • Automate IAM workflows and identity lifecycle events via scripting and APIs • Monitor IAM operations, generate compliance reports, and support audits • Remediate vulnerabilities, misconfigurations, and gaps identified through various sources such as press releases, vendor announcements, ad hoc risk assessments, pen testing, and proactive system reviews • Implement service architectures that are robust, highly available, and fault-tolerant • Prove Business Continuity and Disaster Recovery (DR) readiness through regular testing • Troubleshoot and resolve IAM-related issues and support security incident response as part of the 3rd level support team • Work closely with the Cybersecurity IAM and IT Infrastructure teams to review and implement security requirements, policies, and tools • Partner with Cybersecurity, Compliance and Risk Management, Information Technology, Human Resources, Legal, Facilities, and other business unit or department stakeholders

🎯 Requirements

• Bachelor’s degree in IT, Computer Science, or related field (or equivalent experience) • 3–5+ years specific IAM engineering experience or equivalent in a large enterprise • Proficiency with Directory Services (Entra ID / Azure AD, Active Directory) and IAM Platforms (Okta, SailPoint, or similar) • Experience integrating IAM with systems like Workday (HRMS), SAP (ERP), Salesforce (CRM), O365, MES, and EAM systems • Experience with Privileged Access Management systems and platforms (CyberArk PAM, or other) • Demonstrated ability to manage hybrid identity between on-prem and cloud • Scripting/automation experience (PowerShell, Python, API integrations) • Deep knowledge of RBAC, SSO, MFA, PAM, and federation protocols and core concepts such as least privilege and need to know

🏖️ Benefits

• Competitive base salary and bonus opportunities • Paid time off (three-week minimum) • Medical, dental and vision starting day one • 401(k) with employer match • Paid parental leave • Child and family care assistance (dependent care FSA with employer match up to $2500) • Bundle of joy benefit (year's worth of free diapers to all team members with a new baby) • Tuition assistance • Wellness program with savings of up to $4,000 per year on insurance premiums