IT Engineer

The Identity Access Management (IAM) Engineer supports, implements, and enhances enterprise Identity Access Management systems. This role includes Active Directory and Entra ID environments to ensure secure and efficient access controls. The ideal candidate will collaborate with stakeholders to align IAM solutions with business needs and maintain compliance with security standards 

This position is required to report to the SHI Somerset NJ or SHI Austin office location as determined by SHI management.  

Since 1989, SHI International Corp. has helped organizations change the world through technology. We’ve grown every year since, and today we’re proud to be a $14 billion global provider of IT solutions and services.

Over 17,000 organizations worldwide rely on SHI’s concierge approach to help them solve what’s next. But the heartbeat of SHI is our employees – all 6,000 of them. If you join our team, you’ll enjoy:

• Our commitment to diversity, as the largest minority- and woman-owned enterprise in the U.S.
• Continuous professional growth and leadership opportunities.
• Health, wellness, and financial benefits to offer peace of mind to you and your family.
• World-class facilities and the technology you need to thrive – in our offices or yours. 

Include, but not limited to: 

• Continuously review, improve, and contribute to transforming the Identity Access practices.   
• Provide status updates on projects, presenting findings to senior leadership routinely.    
• Strong understanding of Identity and Access Management (IAM) User Lifecycle Processes, including User Activity Monitoring, Access Re-Certification, Reporting, and IAM Standards.    
• Experience with IAM Operational tasks – User provisioning, Platform Configuration, Role design/mining, build and execute periodic access reviews.  
• Ability to Implement/Customize IAM workflows, forms, rules, provisioning, and certifications.  
• Ability to onboard third-party and cloud applications using the IGA platform and outside of the IGA platform.   
• Ability to drive identity management strategically across the enterprise in a zero-trust model aligning with IAM standard practices.   
• Evaluate an application's user base to determine if the application requires RBAC (Role-Based Access Controls).   
• Support day-to-day security controls including but not limited to creating access and control, and monitoring.   
• Maintain security governance and policies for the business, groups, products & security access types ensuring we can pass audit reviews.    

• Minimum 3-5 years of identity experience or comparable experience to the role
• Bachelor’s degree in computer science or related field or equivalent experience

• Familiarity with InfoSec concepts, issues, and practices.   
• Knowledge of development methodologies and DevOps practices.  
• Experience working with cloud infrastructure solutions (ex. AWS, Azure, GCP).  
• Experience with Identity software (Entra ID, SailPoint, Saviynt, CyberArk).  
• Experience with MFA solutions, SSO, and CPAM-privileged access management software.   
• Experience with PAM Operational tasks – Creating credential vaults, defining access control policies/platforms, user provisioning and entitlements, managing applications credentials, key management, and user access policy management.   
• Experience with modern API protocols.   
• Experience with Active Directory and Azure Active Directory concepts, including users, computers, groups, and policies.   
• Solid understanding of protocols, services, and traffic flows for authentication. 

Preferred Skills:   

• Programming languages: Java or PowerShell & SQL, Computer networking, OS fundamentals (Windows/UNIX/Linux)   
• Experience with scripting in Python, PowerShell   
• Experience with O365 and Exchange Engineering a plus 

• Microsoft Certified: Identity and Access Administrator Associate   
• - CompTIA Security+ or equivalent   

• The estimated annual pay range for this position is $70,000 - $125,000. The compensation for this position is dependent on job-related knowledge, skills, experience, and market location and, therefore, will vary from individual to individual. 
• Equal Employment Opportunity – M/F/Disability/Protected Veteran Status