Identity & Access Management Administrator II

State Of Colorado Denver , CO 80208

Posted 5 months ago

Department Information

What We Do:

The Governor's Office of Information Technology (OIT) strives to impact the lives of all Coloradans to create a safer, happier and healthier state. We work to empower the State of Colorado with flexible technology that will drive sustainable and intelligent business decisions. We envision a future where the end-user experience shapes design, and data analytics transform how state government serves its residents.

Our Mission:

Together we enhance the lives of ALL Coloradans.

Our Vision:

Be the best public service technology organization innovating today for tomorrow.

Our Values:

At OIT, we recognize that how we deliver is as important as what we deliver. Our core values define our character and guide us in how we interact with one another and our customers. Because it is important that we embody service, integrity, teamwork, respect, innovation, and courage in everything we do, our core values are incorporated into every employee's annual performance plan.

SERVICE: Serving the people of Colorado

We provide value and strive to delight. We seek to understand the needs of our fellow team members, partners, customers, and Coloradans, and then exceed their expectations. We are committed to serving people serving Colorado.

INTEGRITY: Demonstrating credibility and sincerity in our work

We do the right thing in the right way. We communicate with openness, honesty, and authenticity and are accountable for our actions.

We deliver on our promises and adhere to an ethical code. We are good citizens in the communities in which we live and work.

TEAMWORK: Collaboratively working together at OIT and across the state

We work together toward a common purpose, having fun along the way. We foster a collaborative, creative, and inclusive culture. We create an empowering environment where everyone can contribute and reach their full potential.

RESPECT: Appreciating and acknowledging the role, diversity, and contribution of those with whom we work.

Our people matter. We value, encourage, reward, and recognize them.

We choose to be positive and create meaningful connections every day. We are considerate, helpful, kind, and patient in all situations.


We foster new ideas. We challenge the status quo and continuously ask, "How can we do this better?" Then we take action and make a difference through novel processes and technology.

COURAGE: Pushing boundaries to foster positive change

We boldly take action on our convictions. We have the moral strength to venture, persevere, and withstand difficulty. We are entrepreneurial and embrace change to better ourselves and the people we serve.

Why We Want You:

We want your expertise, positive energy, drive to succeed and love of this great state as we work to elevate the expectations Coloradans have of their government.

What You'll Get From Us:

At OIT you will find an opportunity to contribute meaningful work to support and serve Colorado residents. It's your chance to combine your love of technology with public service. Plus, you'll have great benefits, motivated team members, and opportunities for advancement.

Check out this video to see why our employees love working for the Governor's Office of Information Technology:

Description of Job

  • For the purposes of minimum qualification and comparative analysis, ONLY your State of Colorado job application will be reviewed. Therefore, it is paramount that you clearly describe all of your relevant experience on the application itself. Applications left blank or marked "SEE RESUME" will not be considered.*

This position is governed by the State Classified Personnel System, and as such, is only available to candidates who are current State of Colorado residents at the time of application.

The Identity & Access Management Administrator is a member of the Infrastructure team supporting Security Operations reporting directly to the Identity & Access Management Supervisor. The Identity & Access Management Administrator position is responsible for providing subject matter expert support to the IAM team, daily operational management that can include escalations, coverage and backup support for the IAM team.

The Administrator is responsible for working with the Supervisors to continuously evolve and support team strategies, based on the objectives of the overall work unit. This includes feedback for workload/resource management, peer-to-peer reviews, trending tickets and issues. The Administrator demonstrates excellent customer service and coaches peers to provide the same.

The Administrator is expected to be aware of changes made to provisioning processes and work closely with the IAM Supervisors about updates to the standard operating procedures. The Administrator will help support technical solutions and get others engaged. This position will resolve tier 2 and 3 tickets within the Service Level Commitment, help train the (IAM) team to ensure security, compliance and access are appropriately delivered, tracked, and auditable to the users, systems and resources.

Primary Job Duties:

  • Subject Matter Expert for IAM operations

  • Account provisioning & customer service

  • Continuous process improvement activities

  • Development of process documentation

  • IAM Compliance

  • IAM project participation

Minimum Qualifications, Substitutions, Conditions of Employment & Appeal Rights


Education and Experience:

Bachelor's degree from an accredited institution in a field of study related to the work assignment, to include Business, Computer Science, or a related technology.

One year of professional experience in an occupational field related to the work assigned to the position, to include experience in a professional, enterprise-level Identity & Access Management environment.


Additional appropriate experience will substitute for the required education on a year-for-year basis.

Additional appropriate education will substitute for the required experience on a year-for-year basis.

Training or certification relevant to the position will be considered for experience and/or education substitution.

Preferred Qualifications:

  • 2+ years experience in IAM
  • 1+ years experience working with Active Directory
  • 1+ years experience working with ticketing software
  • 1+ years experience in account administration with a major email platform
  • 2+ years experience in a customer service role


If you receive notice that you have been eliminated from consideration for the position, you may protest the action by filing an appeal with the State Personnel Board/State Personnel Director within 10 days from the date you receive notice of the elimination.

Also, if you wish to challenge the selection and comparative analysis process, you may file an appeal with the State Personnel Board/State Personnel Director within 10 days from the receipt of notice or knowledge of the action you are challenging.

Refer to Chapters 4 and 8 of the State Personnel Board Rules and Personnel Director's Administrative Procedures, 4 CCR 801, for more information about the appeals process. The State Personnel Board Rules and Personnel Director's Administrative Procedures are available at

A standard appeal form is available at: If you appeal, your appeal must be submitted in writing on the official appeal form, signed by you or your representative, and received at the following address within 10 days of your receipt of notice or knowledge of the action:

Colorado State Personnel Board/State Personnel Director, Attn: Appeals Processing, 1525 Sherman Street, 4th Floor, Denver, CO 80203. Fax: 303-866-5038.

Phone: 303-866-3300. The ten-day deadline and these appeal procedures also apply to all charges of discrimination.

Supplemental Information

This is a temporary position with benefits. This assignment is expected to last 9-months or less

  • The Governors Office of Information Technology does NOT offer sponsored Visa's for employment purposes.*

ADA Accommodations: The Governor's Office of Information Technology believes that diversity and inclusion drive our success.

OIT is an affirmative action and equal opportunity employer. In all aspects of the employment process, qualified applicants will receive consideration for employment without regard to race, color, religion, sex, disability, age, sexual orientation, gender identity, national origin, veteran status, or genetic information. OIT is committed to providing reasonable accommodation to the known disability of qualified individuals to enable the applicant or employee to be considered for the position in question, to perform the essential functions of the position in question, or providing access to its services, programs, and activities, where the requested accommodation does not impose an undue hardship. If you require reasonable accommodation in completing this application, interviewing, completing any pre-employment testing, otherwise participating in the employee selection process, and/or to perform essential job functions, please direct your inquiries to our ADA Coordinator at or call (303) 764-7911.

  • Conditions of employment: A pre-employment criminal background check will be conducted as part of the selection process, and/or other department-specific screens as required, to include a CBI, fingerprint-based criminal screen. Felony convictions or conviction of crimes of moral turpitude or conviction of misdemeanors related to job duties may disqualify you from being considered for this position.

  • Some details to be aware of: Former employees of the State of Colorado who have not left in good standing will be reviewed on a case-by-case basis.

  • Comparative Analysis Process: is the selection process used to identify the applicant that fits the job the best from a qualified applicant pool. Applications and applicants are compared to others in the pool to identify a top group. Applicants will be notified of their status in the pool via email.

  • On-call Status: When a disable needs to be done after hours or for project migrations

  • Travel- Counties or other State agencies.

icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Sr Architect Identity & Access Management

Verizon Communications

Posted 2 weeks ago

VIEW JOBS 10/4/2019 12:00:00 AM 2020-01-02T00:00 What you'll be doing... We are looking for an experienced engineer to join our fast-growing team to build Single Sign On (SSO), Multi Factor and Adaptive Authentication (MFA) services. The ideal candidate is passionate about security, has experience building large scale enterprise software, and has direct experience in SSO, Multifactor authentication, identity, and security.Thecandidatemust ensure IT solutions meet requirements for security, availability, capacity, resiliency, and performance in a way that is efficient and supportable, reducing overall support costs. Candidate will architect and manage SSO, MFA and Federation services (SAML, OAuth, OpenID Connect). Responsibility would include working with business partners, working with vendors, and determining proper technology to use based on use cases and vendor capabilities. Responsibilities: * Serve as a senior technical resource demonstrating leadership skills in systems engineering and software development. * Provide SSO solutions. Integrate/Configure applications with Single Sign On. * Evaluate SSO webservices and new authentication & authorization features of SSO (i.e REST, Certificate Authentication, Federation services, OAuth and OpenID). Develop integration guidelines and test cases. * Develop MFA authentication framework for web-based applications Integrated with other IDP solutions. * Improve the time, cost, and risk associated with identity administration, while driving future direction and evolution of identity management technologies and processes. * Provide leadership, architect and oversee the foundation of IAM applications and their development. * Collaborate with architectural peers, product owners, stakeholders and globally distributed teams to define and capture software architecture for systems and/or components. * Design, develop, and validate remediation for security issues. * Coordinate with teams across the entire program to ensure alignment with developers' needs. What we're looking for... * Bachelor's degree in computer science or related discipline or four or more years of work experience. * Six or more years of relevant work experience. * Ten or more years of experience with full cycle application development (Full SDLC experience: architecture, design, development, CI/CD, etc.) * Four years of experience with SecureAuth IDP or similar SSO and MFA products (Okta, Ping Federate, OAM, OAAM, RSA,etc.) * Five or more years of experience in information systems security. * Five or more years of experience with Federation protocols (SAML, WS-FED, OAUTH). * Fiveor more years of experience with PCI, PII , SOX and other regulatory compliance. * Seven years of experience with security architectural mechanisms, commonly used security technologies and protocols includingtwo/multi-factorfactor authentication, Single Sign-ON, various authentication protocols (OAuth 2.0, SAML, OpenID, etc.) * Two or more years experience in ForgeRock suite incl.OpenAM administration,OAuth RESTand SSO using SAML and OIDC and Intelligent Auth * Two or more years of experience inOpenDJ administrationand best practices * Two or more years of experience in OpenIG incl. writing custom filters and handling complex decision chains. * Experience with Agile principles and practices * Strong understanding of LDAP entries, schema, replication, best practices, and other key aspects of LDAP. Even better if you have: * A degree. * Abilities with SSO-related software such as SiteMinder, Auth0, Okta or other SAML & OpenID Connect providers. * Java/JavaEE/ReactJS coding with good knowledge of Java 8, JVM ecosystem, memory model, tuning, threading, reactive streams, modularization. * Experience with microservices,cloud environments (GCP).and api gateway (Apigee) * Experience in developing chatbots applications at enterprise scale. * Ecommerce and Telecom experience. * Passion for building new products. * Experience in building strong relationships with key stakeholders. * Capability to be an effective communicator as the position is highly visible and requires frequent interaction with executives, VPs and Directors across the Technology and partnering organizations. When you join Verizon... You'll have the power to go beyond – doing the work that's transforming how people, businesses and things connect with each other. Not only do we provide the fastest and most reliable network for our customers, but we were first to 5G - a quantum leap in connectivity. Our connected solutions are making communities stronger and enabling energy efficiency. Here, you'll have the ability to make an impact and create positive change. Whether you think in code, words, pictures or numbers, join our team of the best and brightest. We offer great pay, amazing benefits and opportunity to learn and grow in every role. Together we'll go far. Equal Employment Opportunity We're proud to be an equal opportunity employer- and celebrate our employees' differences, including race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, and Veteran status. Different makes us better. Verizon Communications Denver CO

Identity & Access Management Administrator II

State Of Colorado