AWS Identity Access Management (IAM) Systems Engineer
Description:
:
AWS Identity Access Management (IAM) System Engineer- Remote or Hybrid
Nice to meet you!
We’re the leader in analytics. Through our software and services, we inspire customers around the world to transform data into intelligence - and questions into answers.
We’re also a debt-free multi-billion-dollar organization on our path to IPO-readiness. If you're looking for a dynamic, fulfilling career coupled with flexibility and world-class employee experience, you'll find it here.
About the job
We’re looking for an AWS Identity Access Management (IAM) System Engineer with a solid Amazon Web Services (AWS) background to join our IAM Engineering Services team. You will be responsible for expanding the capabilities of our customer and enterprise identity experience, while also continuing to help drive adoption of security best practice throughout SAS. This position supports the Identity & Access Management Program along with processes and technologies related to those services.
As an Information Systems Engineer, you will:
Represent the IAM Program with subject matter expertise in federation services/single sign-on, multi-factor authentication, user access automation, and identity governance.
Configure and manage Amazon Web Services (AWS), Okta, and other directory services and cloud identity systems. Provide operational support for these platforms.
Implement and support SSO federations for both internal and external customer environments.
Partner with identity architects to integrate applications within AWS reference architecture by providing technical requirements, implementation services, and operational support.
Deliver excellent customer service using a customer first and continuous improvement mindset.
Participate in 24x7 paid on call rotation.
Required qualifications:
5 years of Information Systems experience
Bachelor's degree in Computer Science, Mathematics, Engineering, or related field
3+ years of direct experience with setup and administration of identity and access management on the AWS cloud platform. This is a hard requirement for this position that must be met.
3+ years of direct experience with administering federation and SSO technology and participation in designing and executing SSO implementation processes.
Working knowledge of federated identity systems, directory services, role-based access control, multi-factor authentication, and SSO (including modern authentication and authorization standards and protocols such as SAML, OIDC, SCIM, and LDAP).
Familiarity with IAM disciplines including conditional access, managed workflows, and task auditability (monitoring and alerting for changes to accounts and resources).
Equivalent combination of related education, training and experience may be considered in place of the above qualifications.
You’re curious, passionate, authentic, and accountable. These are our values and influence everything we do.
Preferred qualifications
Experience with setup and administration of identity and access management on multiple major cloud providers like AWS, Azure and GCP.
Experience in the AWS cloud platform managing applications using app registration and admin consent, defining conditional access policies, and applying security configuration settings.
Experience with scripting (PowerShell or others) and simple programming to automate repetitive tasks and processes.
Familiarity with Privilege Access Management systems for secrets management.
Experience with technical document creation.
World-Class Benefits
Highlights include...
Comprehensive medical, prescription, dental and vision plans.
Medical plan options include...PPO with low annual deductible and copays.
HDHP combined with a health savings account with a contribution from SAS (no access to on-site health care center).
Onsite Health Care Center (HQ) that’s free to employees and family members enrolled in the PPO plan. There's a pharmacy too! Not local to HQ? The pharmacy will ship prescriptions for no additional charge!
An industry-leading 401k plan.
Generous time away including vacation time, a variety of paid holidays, and our much-loved U.S. Winter Wellness Break between December 25 and January 1.
Volunteer Time Off, parental leave and unlimited paid sick days.
Generous childcare benefits for all full-time employees.
Diverse and Inclusive
At SAS, it’s not about fitting into our culture – it’s about adding to it. We believe our people make the difference. Our diverse workforce brings together unique talents and inspires teams to create amazing software that reflects the diversity of our users and customers. Our commitment to diversity is a priority to our leadership, all the way up to the top; and it’s essential to who we are. To put it plainly: you are welcome here.
Additional Information:
To qualify, applicants must be legally authorized to work in the United States, and should not require, now or in the future, sponsorship for employment visa status. SAS is an equal opportunity/Affirmative Action employer. All qualified applicants are considered for employment without regard to race, color, religion, gender, sexual orientation, gender identity, age, national origin, disability status, protected veteran status or any other characteristic protected by law. Read more: . Also view the notice.
Resumes may be considered in the order they are received. SAS employees performing certain job functions may require access to technology or software subject to export or import regulations. To comply with these regulations, SAS may obtain nationality or citizenship information from applicants for employment. SAS collects this information solely for trade law compliance purposes and does not use it to discriminate unfairly in the hiring process.
SAS only sends emails from verified “(url removed)” email addresses and never asks for sensitive, personal information or money. If you have any doubts about the authenticity of any type of communication from, or on behalf of SAS, please contact
#SAS
Permanent