Identity Engineer - Saviynt EIC (5-10 yrs)

Job Description :

The Identity Engineer leverages extensive experience in identity systems and security to develop strategies and implement optimal identity and access solutions. Under the supervision of Identity Manager/Architect, the Identity Engineer will support and advance Gen Re Identity and Access Management services.

Candidate must have strong hands-on technical acumen, and must demonstrate expertise in identity architectures, technologies, and risks. Candidate must be highly collaborative and is expected to partner effectively with other teams on an ongoing basis.

Position Responsibilities :

- Applies strong logic and principles-based reasoning to define solutions and justify proposals.

- Contributes to the development and maintenance of the Identity solutions - Saviynt EIC, Ping One SSO, Entra Id SSO integrations.

- Works closely with other IT leads to ensure that Identity and Access Security is appropriately addressed in the definition, design, implementation and operation of all IT services, systems and platforms.

- Researches, designs and advocates for relevant Identity architectures and solutions supporting security requirements of the enterprise, its customers, business partners and vendors.

- Specifies requirements, policies, and technologies for enterprise Identity Management.

- Maintains familiarity with IT security vulnerabilities, threats, exploits and mitigations.

Experience/Skills :

- Strong conceptual thinking and communication skills the ability to translate complex business and technical requirements into effective and comprehensible solutions.

- Extension experience with Saviynt EIC in implementation and operational role.

- Extensive hands-on experience with Identity technologies, standards, and practices (i.e. LDAP, x509, Kerberos, RBAC, Privileged Access Management, Radius, SAML, OAuth2, OpenID connect, Multi-factor Authentication, Single-sign-on).

- Expertise with Active Directory and Group Policy management.

- Extensive hands-on experience operating one or more Federation technologies (i.e. ADFS, Ping, Okta).

- Experience with cloud identity platforms and services (i.e. Azure AD, AWS IAM).

- Familiarity with SAP IAM.

- Expertise with certificate management and PKI services.

- Expertise with securing cloud and mobile identities.

- Excellent problem diagnosis abilities.

- Proficiency with scripting / programming languages (i.e. Python, Ruby, PowerShell).

- Familiarity with international data privacy and HIPPA regulations and best practices.

- Familiarity with security-specific architecture methodology (i.e. SABSA).

- Familiarity with a relevant enterprise architecture methodology (i.e. Zachman Framework, TOGAF).

The following are not essential but are highly valued :

- Professional experience in application or infrastructure penetration testing.

- Demonstrable experience creating, securing and managing Cloud infrastructures (i.e. AWS, Azure,.

Education :

- Bachelor's or Master's degree in computer science, information systems or other related field, or equivalent work experience.

- Professional security management certification, such as a ISC(2) Certified Information Systems Security Professional (CISSP), SANS GIAC Information Security Professional (GISP), GIAC-Security Expert (GSE), or GIAC Certified Enterprise Defender ( GCED ), IMI Certified Identity Management Professional ( CIMP ), Certified Identity and Access Manager ( CIAM ).