Staff IAM Engineer

Role Name: Staff Identity and Access Engineer         

Description:

This would be a senior position that would be acting as the SME of Rivian’s identity management platform and services. This position requires technical knowledge and experience in implementing and supporting enterprise Identity Access Management platforms and systems. The role is responsible for the development and design of IGA system architecture, integrations and frameworks in an automated, measurable, and repeatable manner that aligns tightly with business needs with a big picture mindset.

Requirements:

• 6+ years relevant experience in Identity Solution Management.
• 4+ years architecting and leading SailPoint IdentityNow implementations including application onboarding, customized workflows, access requests, certification campaigns, rules reports and enhanced automation for desired results to meet business requirements.
• Experience when dealing with large quantities and types of identities.

• Strong hands-on scripting experience. Preferably Python & JS working with JSON/XML/SOAP as well as interacting via REST.

• Experience with integrations to HR System of Records (Authoritative Source), ServiceNow Applications integration (Access Requests/etc), Active Directory, Azure Active Directory, AWS and others.
• Experience facilitating Privileged and Regular user access reviews.
• Experience working with Role Based Access Controls (RBAC) and understanding joiner, leaver, and mover scenarios while leveraging reliable data points for automation.
• Strong troubleshooting and collaboration capability with experience related to connected systems. This can range from security/network protocols to business processes.
• Experience in gathering SailPoint IdentityNow & Business requirements, completing attribute mappings, sync between source systems and SailPoint IdentityNow.
• Experience working within an SOX environment
• Experience with AWS environment and resources
• Knowledge of SSO configurations (OIDC, SAML2) with MFA (Azure Conditional Access Policies).
• Knowledge of Microsoft Active Directory (On Prem) and Azure Active Directory (more than just users and groups)
• Leadership skills and qualities which enable you to work with peers and various levels of management
• Cloud, automation, big picture, and security focused mindset.

Responsibilities:

• Work with stakeholders to understand business processes, internal control risk management, IT controls and related standards and implement them/make them more efficient
• Provide documentation, test cases, test plans and support processes for the platform/integrations.
• Perform Regular and Privileged User Access Reviews (UARS) regularly to satisfy compliance requirements
• Communicate to clients and partners aspects of both the product and the implementation at the technical and functional level appropriate for the situation

• Work with other teams to improve and stabilize data flow from HRIS platforms to connected systems/applications
• Design, develop, test, implement, and document workflows, custom connectors, and other custom software to meet client requirements
• Find areas of opportunity to automate where needed to help alleviate of manual tasks

• Identify, analyze, and address problems to resolve issues in a way that minimizes negative impact and risk to the organization

• Participate in an enterprise company change management process for teams’ efforts
• Lead Peer review implementations for production deployments
• Cross train team members around best practices for IdentityNow/automations or processes
• Lead efforts in working with support for IAM Solution related issues
• Participate in on-call rotation to provide excellence of service to the organization
• Participate in work/project/sprint planning efforts

Job Type: Full-time

Education:

• Bachelor's degree or higher required; Advance degree in IT related field or extensive experience in SailPoint implementation and deployment.