Sr. Identity And Access Management Engineer - Idaas

Federal Reserve Bank San Francisco , CA 94118

Posted 1 month ago

Sr. Identity and Access Management Engineer (Sr. IAM Engineer)

Location: San Francisco, Seattle, Boston, Chicago or Richmond, VA.

Remote option: Yes, but you must live within a two hour drive to a Federal Reserve Bank.

Are you looking for a position where your talents can take us to the next level of technology in the identity and access management space, AND work for a company who has great benefits, values creativity and work life balance? If yes, the Federal Reserve Bank of San Francisco wants to talk to you!

The Information & Technology Services division needs a dynamic Identity and Access Management (IAM) Engineer to work within an organization that supports the Identity and Access Management Program for the Federal Reserve System. The IAM team is a collaborative organization which supports Federal Reserve Bank needs for security and compliance initiatives associated with identity and access life cycle management.

In this role, you will primarily be responsible for the implementation, integration and deployment of Identity as a Service (IDaaS). You will be the technical SME on the IDaaS solution tasked with implementing modern Single Sign On (SSO) and Access Management technologies for both on-prem and cloud based applications using one or more of the following: SAML, OAuth 2.0 and/or OIDC, SCIM.

The ideal candidate is a goal-oriented self-starter with the ability to collaborate across multiple IAM related work streams to develop and deliver integrated identity and access management solutions. You should have the ability to communicate effectively with senior technology and business leadership. Strong knowledge of information security will be crucial for this role.


Bachelor's degree from a four-year college or university or equivalent training and experience

The successful candidate must be a U.S. Citizen, U.S.

National, or hold a permanent resident status/ green card with intent to become a U.S. Citizen.

Experience with deploying an IDaaS solution to supply cloud-based or on-prem authentication and identity management for a large enterprise.

Must possess deep knowledge of IAM technologies and concepts

Experience leading or supporting IAM systems in complex environments.

In depth knowledge of authentication and authorization standards and protocols such as SAML, OAuth 2.0, LDAP, Kerberos, OpenID Connect etc.

Experience with Identity provisioning using modern protocols such as SCIM to integrate with on-prem IGA solutions.

Experience configuring and integrating IAM software with third party, and/or vendor supplied solutions

Experience with persistence technologies and protocols including SQL, LDAP.

Experience implementing Web application frontend, middleware and backend.

Experience with Java/.NET development with object-oriented analysis, design, and programming skills.

Experience with source code management and change control.

Comfortable working using an Agile software development process, such as Scrum

Requires capabilities in security requirements analysis and security architecture

Good understanding of network layer security, PKI concepts, and cryptographic technologies (i.e. hashing, signing, encryption, TLS, etc.)

Experience with service-oriented architecture for cloud-based services.

Experience implementing solutions leveraging Amazon Web Services (AWS) and/or Microsoft Azure

Ability to travel 10% (more if you will be a remote worker).

Professional Skills:

Excellent verbal and written communications skills

Comfortable communicating to clients and partners aspects of both the product and the implementation at the technical and/or functional level appropriate for the situation

Strong analytical and problem solving skills

Strong experience in working cohesively within a team and with staff in other departments

Demonstrated ability to effectively lead multiple concurrent requests. Assist users in defining requirements, learn new concepts and technical functions quickly, and produce clear and accurate documentation

Flexibility in accepting, and independently delivering, a variety of assignments with high quality solutions


Working knowledge of SailPoint IIQ or other Identity Management suites and directories including Active Directory, Oracle Enterprise Directory, and databases, SQL Server and Oracle

Experience with a leading IDaaS vendor such as Ping, Okta or OneLogin

Experience with a leading cloud provider such as AWS or Azure

At the Federal Reserve Bank of San Francisco we believe in the diversity of our people, ideas, and experiences and are committed to building an inclusive culture that is representative of the communities we serve. The Federal Reserve Bank of San Francisco is an Equal Opportunity Employer.

icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
IT Security Engineer Identity And Access Management

Rockwell Automation, Inc.

Posted 2 weeks ago

VIEW JOBS 4/2/2019 12:00:00 AM 2019-07-01T00:00 Are you interested in shaping a highly effective agile organization? Are you excited about the opportunity to influence others? Are you passionate about fostering vital connections that will help to make our company, partners and customers more productive and profitable? If your answer is yes to any of these questions, this is your opportunity to join an innovative and dynamic team. As a member of the Rockwell Automation IT organization, you will join our transformation journey as we seek to improve and push boundaries. For the right candidate this role could be located anywhere in the United States Rockwell Automation's Identity and Access Management (IAM) team is seeking an experienced Security Engineer to join our team. As a systems engineer on the IAM team, you will work with a global team utilizing an agile framework, responsible for implementing all identity and access management solutions for Rockwell Automation. The right person will have extensive development experience, with a specialty and interest in information security, specifically IAM.Reporting to the Manager, IT Security, this position is responsible for: * Collaborate across teams to build and maintain creative solutions to security problems * Identify, design, and build solutions to be deployed into a highly available production environment * Strive to provide a best-in-class user experience for both employee and customer facing identity management systems * Provide technical subject matter expertise on Rockwell's enterprise identity management systems * Proactively find and resolve identity-related security risks Leadership/Change * Maintains a sense of urgency in driving assignments to completion. * Collaborate across teams gaining the cooperation of others to complete goals * Ability to maintain confidentiality of information and compartmented team activities * Monitors progress of self and others, redirects efforts when goals are not being met. * Solid understanding and discipline in following processes and procedures. * Ability to work under tight deadlines and changing priorities. * Ability to explain technical concepts to non-technical people Interpersonal * Build positive relationships with team and client personnel by demonstrating integrity and high standards of performance. * Clarify roles and responsibilities collaboratively with team members to improve alignment with requirements. * Desire and ability to continually teach, learn, and grow, personally and professionally * Complex problem solving skills with the keen ability to rapidly define problems, collect data, establish facts, and draw valid conclusions Technical: * 5+ years of experience deploying, administering, and developing multiple Identity Management systems. Ideally, experience with SailPoint IdentityIQ. * Proficient in various identity management concepts, including RBAC/ABAC, provisioning, attestation, auditing and reporting * Significant experience with Java and J2EE development, Beanshell, and PowerShell. C# and Python are a plus * Understanding and proficiency using Git or other source code version control tools * Experience building automated CI/CD pipelines using various tools (Jenkins/TeamCity/Travis/TFS/etc.) * Experience working with various database technologies - specifically MSSQL, MySQL, Oracle, MongoDB * Understanding and proficiency working with LDAP directories like AD DS and AD LDS * Experience with automated unit and regression testing, specifically with identity management applications * Experience designing and operating large J2EE web applications at scale, leveraging both traditional and cloud-first deployment methodologies (on-premise server based as well as containers and serverless computing) * Experience participating in an agile development team * Experience designing and implementing applications using a micro-service architecture * Experience with B2B and B2C identity management a plus EOE, M/F/Disabled, Vet #LI-GK1 #techjobs Rockwell Automation, Inc. San Francisco CA

Sr. Identity And Access Management Engineer - Idaas

Federal Reserve Bank