Apply now »

Senior Analyst IDAM

Posted Date:  Jan 3, 2023
Requisition Number:  113465

Job Title:                         Senior Analyst – IDAM


Job Location:                 Hershey, PA


NOTE:                               This position can be 100% remote


COVID-19 Vaccine Safety Mandate

This position requires that you must be fully vaccinated for COVID-19 (even if working remotely) and present proof of vaccination before beginning employment. If you receive an offer of employment, you will be asked as part of the background check process to upload a copy of your vaccination card.  If you believe you require an accommodation for medical or religious reasons related to the vaccine safety mandate, you may submit a request after you receive an offer of employment. Instructions on how to do so will be provided in your offer letter.




This position works with the Identity & Access Management function with a primary focus on privileged access management processes and the BeyondTrust toolset with backup responsibilities within the Identity space and SailPoint / Microsoft toolsets.


Major Duties & Responsibilities:


60%:  Maintain and extend the IDAM toolset with a focus on Privileged Access Management, ensuring system and process health which enables the business through privileged remote access and password vaulting technologies on the BeyondTrust platform.


15%:  Enable the business through continuous improvement opportunities within the BeyondTrust toolset.


15%:  Provide backup support to the IDAM team for the SailPoint platform to participate in a rotational on-call schedule.


10%:  Execute roadmap strategies to further enable automated processes and reduce risk associated with user identities and critical access as part of life-cycle management and privileged access.


Minimum Experience Requirements: 

  • Communication:   Ability to convey information clearly and concisely to groups or individuals either verbally or in writing to ensure that they understand the information and the message.  Ability to listen and respond appropriately to others.
  • Information Security Concepts:  Solid understanding of NIST controls, related to IDAM and PAM accountabilities to minimize risk in Hershey’s environment pertaining to IDAM principles.
  • Technical Support:   Ability to understand internal/external customer technologies and problem resolution techniques.  Ability to communicate effectively with customers.  Ability to listen to symptom descriptions; to analyze problems; to respond effectively and to provide constructive feedback to the client on problem resolution.
  • Accountability:   Ability to be relied upon to ensure that work assignments within areas of responsibility are completed in a timely manner.  Ability to monitor programs and/or activities and take corrective action when necessary. Ability to exercise independent judgment and work under minimal supervision.
  • Adaptability:    Ability to maintain effectiveness when experiencing major changes in work tasks or the work environment.  Ability to adjust effectively to work within new work structures, processes, requirements, or cultures.
  • 5+ years and current certifications such as CIAM, CAM, CISSP if no degree
  • 3+ years’ experience working with SailPoint and BeyondTrust or similar IAG/PAM technologies, including implementing and extending capabilities.
  • 2+ years’ experience with programming/development with Java, Javascript, SQL, JSP/Servlets, Perl, and/or Powershell.
  • Experience and understanding of IAM and PAM concepts and best practices, such as Identity Lifecycle, Roles, RBAC, Segregations of Duty, workflow development, privileged access, and others.
  • Expert understanding of risk and compliance frameworks.
  • Ability to evaluate risk and communicate it in a fact-based manner.
  • Development of use cases/test cases, participation in SIT/UAT testing.
  • Excellent conceptual, organizational, analytical, and problem-solving skills required.
  • High level of attention to detail and accuracy required.
  • Ability to communicate clearly and concisely (both written and verbal, presentation, and interpersonal skills) to effectively communicate in the English language required.
  • Experience to function as business analyst and hands-on development experience a MUST.
  • Experience with user provisioning, system authorization, PKI, MFA, AAA solutions, and password vaulting systems and services.


Preferred Experience:


  • 2+ years of experience with Microsoft’s security tools.
  • Installation, configuration and tuning of application/web servers.
  • Knowledge of XML/WSDL/XSD/JQuery.
  • Experience in REST protocols.
  • Familiarity with the standards for SSO technologies such as SAML2 and OAuth2 preferred. 
  • Certification in BeyondTrust or similar PAM technology is a nice-to-have.


Minimum Education:  B.S. in a security related field of study




Nearest Major Market: Harrisburg

Apply now »