IAM Engineer

Job Seekers can review the Job Applicant Privacy Policy by clicking here.

Job Description:

Work Schedule:

Will have to work night shifts and weekends. - REMOTE

Summary
The identity and access management (IAM) engineer position is a practitioner role working under the leadership of Information Security management. The IAM engineer helps define, establish, maintain, and manage identities across the organization. The engineer manages and maintains access to systems and applications following rigorous security, engineering, and governance principles, especially when provisioning and de-provisioning access. This position works closely with IT, cybersecurity operations, incidence response, business units, and third parties. In addition, the IAM engineer helps with provisioning, governing access, SSO, directory services, technical integrations and supporting behavioral analytics.
Essential Functions

• Implement and configure global identity solutions and capabilities including Identity Governance, Single Sign On (SSO), Multi-Factor Authentication (MFA), privileged accounts, automation, and behavior analytics systems.
• Make recommendations and implement improvements in automation, onboarding, and provisioning configurations to improve the end-user experience.
• Document access workflows, policies, and exceptions, and maintain integrity of implemented identity solutions for audit reviews.
• Work closely with security leadership, teammates, and stakeholders to evaluate and implement access models that align with organizational risk posture.
• Assess and resolve IAM issues that occur across the employee base, as well as with external entities.
• Evaluate business impact and risk exposure based on the level of access granted and make recommendations where improvements should be made.
• Work closely with incident responders during potential incidents and escalate to management as needed.

Additional Responsibilities

• Frequently interact with business units to understand their plans, risk posture and tolerance, and how IAM supports their vision and business obligations with security in mind.
• Performs other duties as assigned.

Skills and Abilities

• Familiarity with administering directory services, Windows and Azure AD, SSO, MFA and role-based access control (RBAC)
• Experience administering IAM systems, access controls, security and risk management, and security governance fundamentals
• High degree of integrity, trustworthiness and confidence; represents the company and its management team with the highest level of professionalism
• Demonstrates excellent judgment and decision making skills
• Organized, with the ability to prioritize and complete tasks within defined SLAs
• Understanding of service design, delivery concepts and control frameworks
• Strong verbal and written communication skills
• Track record acting with integrity, taking pride in work, seeking to excel, and being curious and flexible
• Ideally familiar with one or more regulatory requirements and laws such as, but not limited to, PCI, Federal Financial Institutions Examination Council (FFIEC), Sarbanes-Oxley (SOX), HIPAA, GDPR and GLBA, CCPA, NY DFS Cybersecurity RegulationAdditionally, experience in one or more of the following preferred: ISO 17799, ISO 27001, ITIL and NISTintermediate required
• Experience with one or more scripting languages (e.g., Python, PowerShell, Bash) intermediate preferred

Qualifications

• H.S. diploma/GED required
• Bachelor's degree preferred Information Security, Computer Science, Information Technology, Information Assurance, or related technical field.
• Three (3) years or more Information Security or Information Technology practitioner experience required
• Two (2) years or more Related security systems administration with IAM solutions, and preferably some experience with endpoint, network or application security solutions. required
• Ideally familiar with one or more regulatory requirements and laws such as, but not limited to, PCI, Federal Financial Institutions Examination Council (FFIEC), Sarbanes-Oxley (SOX), HIPAA, GDPR and GLBA, CCPA, NY DFS Cybersecurity Regulation. Additionally, experience in one or more of the following preferred: ISO 17799, ISO 27001, ITIL and NIST. intermediate required
• Experience with one or more scripting languages (e.g., Python, PowerShell, Bash) intermediate preferred
• Other Security+, CISSP, GSEC, GISF, or related Information Security certification

Travel
1-10%
DOT Regulated
None

Job Category

Compensation Information:

The compensation offered to a candidate may be influenced by a variety of factors, including the candidate’s relevant experience; education, including relevant degrees or certifications; work location; market data/ranges; internal equity; internal salary ranges; etc. The position may also be eligible to receive an annual bonus, commission, and/or long-term incentive plan based on the level and/or type. Compensation ranges for the position are below:

Pay Type:

Minimum Pay Range:

Maximum Pay Range:

Benefits Information:

For all Full-time positions only: Ryder offers comprehensive health and welfare benefits, to include medical, prescription, dental, vision, life insurance and disability insurance options, as well as paid time off for vacation, illness, bereavement, family and parental leave, and a tax-advantaged 401(k) retirement savings plan.

Ryder is proud to be an Equal Opportunity Employer and Drug Free workplace.

All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, sex, sexual orientation, gender identity, age, status as a protected veteran, among other things, or status as a qualified individual with disability.

Important Note:

Some positions require additional screening that may include employment and education verification; motor vehicle records check and a road test; and/or badging or background requirements of the customer to which you are assigned. 

Security Notice for Applicants:

Ryder will only communicate with an applicant directly from a [@ryder.com] email address and will never conduct an interview online through a chat type forum, messaging app (such as WhatsApp or Telegram), or via an online questionnaire.  During an interview, Ryder will never ask for any form of payment or banking details and will never solicit personal information outside of the formal submitted application through www.ryder.com/careers.

Should you have any questions regarding the application process or to verify the legitimacy of an interview or Ryder representative, please contact Ryder at [email protected] or 800-793-3754.

Current Employees:

If you are a current employee at Ryder, please click here to log in to Workday to apply using the internal application process.

Job Seekers can review the Job Applicant Privacy Policy by clicking here.