Identity and Access Management (IAM) Engineer (Long-Term Contracting)

Address: Across the street from Grand Central

Days in office: 3 days in office Comp: $ 130 / hr ( Corp to Corp or 1099 only )

Firm: Alternative Investment Firm

__________________________________________________________________________________________________________________

We are seeking a highly skilled and strategic IAM Architect to lead the design, implementation, and governance of enterprise-wide identity and access management solutions. This role will focus on Identity Governance and Administration (IGA), Access and Entitlement Management, and Privileged Access Management (PAM) to ensure secure, compliant, and efficient access to systems and data across the organization.

Key Responsibilities

Architecture & Strategy

· Design and maintain the enterprise IAM architecture roadmap aligned with business and security objectives.

· Define IAM standards, patterns, and best practices across IGA, access management, and PAM domains.

· Collaborate with enterprise architects, security teams, and business stakeholders to align IAM solutions with enterprise architecture.

Identity Governance & Administration (IGA)

· Architect and implement IGA solutions including identity lifecycle management, role-based access control (RBAC), and policy enforcement.

· Lead integration of HR systems, directories, and applications for automated provisioning/deprovisioning.

· Define and enforce governance processes for access reviews, certifications, and segregation of duties (SoD).

Access and Entitlement Management

· Design and implement access control models (RBAC, ABAC, PBAC) for enterprise applications and systems.

· Define entitlement models and manage access policies across cloud and on-prem environments.

· Ensure consistent enforcement of least privilege and zero trust principles.

Privileged Access Management (PAM)

· Architect and deploy PAM solutions to secure and monitor privileged accounts and sessions.

· Define policies for credential vaulting, session recording, and just-in-time (JIT) access.

· Integrate PAM with SIEM, SOAR, and other security tools for real-time monitoring and response.

Governance, Risk & Compliance

· Ensure IAM solutions comply with regulatory requirements (e.g., SOX, GDPR, HIPAA).

· Support audits and assessments by providing evidence of controls and processes.

· Conduct risk assessments and recommend mitigation strategies related to identity and access.

Leadership & Collaboration

· Provide technical leadership to IAM engineers and project teams.

· Mentor junior staff and contribute to the development of IAM capabilities across the organization.

· Engage with vendors and partners to evaluate and implement IAM technologies.

Qualifications

Required:

· Bachelor’s degree in Computer Science, Information Security, or related field.

· 8+ years of experience in IAM with at least 3 years in an architecture or lead role.

· Deep expertise in IGA platforms (e.g., SailPoint, Saviynt), PAM tools (e.g., CyberArk, BeyondTrust), and access management solutions (e.g., Okta, Azure AD).

· Strong understanding of identity protocols (SAML, OAuth, OIDC, LDAP, SCIM).

· Experience with cloud IAM (AWS, Azure, GCP) and hybrid environments.

Preferred:

· Relevant certifications (e.g., CISSP, CISM, TOGAF, Certified Identity and Access Manager).

· Experience with DevSecOps and infrastructure-as-code (e.g., Terraform, Ansible).

· Familiarity with Zero Trust Architecture and NIST 800-53/800-207 frameworks.

Soft Skills

· Strong analytical and problem-solving skills.

· Excellent communication and stakeholder management abilities.

· Ability to work independently and lead cross-functional teams.