Senior Engineer - Identity & Access Management (Remote)
United Airlines
- USA
- $106,000-137,000 per year
- Permanent
- Full-time
- Manage and provide support for the implementation and administration of CIAM platform
- Respond to break/fix requests, monitor environment, support Digital Technology in any organizational change process for development, QA, and production environments
- Respond to Level 2 tickets including bugs, outages, and new feature request
- Ensure CIAM solutions adhere to regulatory, compliance, and internal requirements
- Maintain CIAM policies, standards, and procedures
- Provide reports as requested for compliance. Work with Cyber Defense and other CDR departments as needed
- Ensure CIAM security is aligned with the overall security strategy to reduce risk to the organization
- Collaborate with development teams and other CIAM service consumers
- Provide guidance on the implementation and usage of CIAM capabilities in enterprise systems
- Collaborate with other IAM team members to provide guidance on IAM related matters and provide recommendations to solution design and system support
- Bachelor's degree (STEM) with 4 or more years of proven ability in related field
- An experienced level of understanding of Enterprise or Customer Identity & Access Management, Single Sign-On, Multi-Factory Authentications (MFA), and Authentication, Privileged Access Management (PAM), Identity Governance & Administration concepts
- In depth understanding of identity Protocols and technologies: OpenID Connect (OIDC,) OAuth, SAML, AD-Fed, API Gateways, SCIM, and platforms such as Ping Identity, Okta, MS Azure, and ForgeRock
- Knowledge of fraud prevention and detection, identity proofing and identity verification technologies
- Expertise of modern software lifecycle development and automated cloud infrastructure deployment
- Understanding of policies that reflect system security objectives
- Ability to determine how a security system works (including its resilience and dependability capabilities) and how changes in conditions, operations, or the environment will affect these outcomes
- Understanding of at least one of these area specific tools; Jumio, ThreatMatrix, BehavioSec,
- Must be legally authorized to work in the United States for any employer without sponsorship
- Successful completion of interview required to meet job qualification
- Reliable, punctual attendance is a crucial function of the position
- Master's degree (Cybersecurity, Risk Management, Computer Science)
- CISA, CISM, CISSP
- 6 or more years of proven ability in related field
- Knowledge of organizational standards and policies (ISO, NIST)
- Knowledge of compliance regulations (SOX, PCI, FAA, GDRP, PII)