Job Title:                         Senior Analyst, Identity & Access Management (IDAM)  

Job Location:                 Hershey, PA

This position can be 100% remote.

Pay Level:                       1A

Summary:

This position works with the Identity & Access Management function with a primary focus on privileged access management processes and the BeyondTrust toolset with backup responsibilities within the Identity space and SailPoint / Microsoft toolsets.

Major Duties & Responsibilities:

• Maintain and extend the IDAM toolset with a focus on Privileged Access Management, ensuring system and process health which enables the business through privileged remote access and password vaulting technologies on the BeyondTrust platform.
• Enable the business through continuous improvement opportunities within the BeyondTrust toolset.
• Provide backup support to the IDAM team for the SailPoint platform to participate in a rotational on-call schedule.
•  Execute roadmap strategies to further enable automated processes and reduce risk associated with user identities and critical access as part of life-cycle management and privileged access.

Minimum Experience Requirements: 

• 5+ years and current certifications such as CIAM, CAM, CISSP if no degree
• 3+ years’ experience working with SailPoint and BeyondTrust or similar IAG/PAM technologies, including implementing and extending capabilities.
• 2+ years’ experience with programming/development with Java, Javascript, SQL, JSP/Servlets, Perl, and/or Powershell.
• Experience and understanding of IAM and PAM concepts and best practices, such as Identity Lifecycle, Roles, RBAC, Segregations of Duty, workflow development, privileged access, and others.
• Expert understanding of risk and compliance frameworks.
• Ability to evaluate risk and communicate it in a fact-based manner.
• Development of use cases/test cases, participation in SIT/UAT testing.
• Excellent conceptual, organizational, analytical, and problem-solving skills required.
• High level of attention to detail and accuracy required.
• Ability to communicate clearly and concisely (both written and verbal, presentation, and interpersonal skills) to effectively communicate in the English language required.
• Experience to function as business analyst and hands-on development experience a MUST.
• Experience with user provisioning, system authorization, PKI, MFA, AAA solutions, and password vaulting systems and services.

Preferred Experience:

• 2+ years of experience with Microsoft’s security tools.
• Installation, configuration and tuning of application/web servers.
• Knowledge of XML/WSDL/XSD/JQuery.
• Experience in REST protocols.
• Familiarity with the standards for SSO technologies such as SAML2 and OAuth2 preferred. 
• Certification in BeyondTrust or similar PAM technology is a nice-to-have.

Minimum Education:  

• B.S. in a security related field of study

#LI-CW1