Job Description

TITLE: IDENTITY AND ACCESS MANAGEMENT ENGINEER
STATUS: EXEMPT
REPORT TO: MANAGER – IT IDENTITY AND ACCESS MANAGEMENT
DEPARTMENT: IT – IAM AND APPS
JOB CODE: 11965
PAY RANGE: $102,000.00 - $105,000.00 ANNUALLY

GENERAL DESCRIPTION:
As an Identity and Access Management Engineer, you will play a pivotal role in shaping and executing IAM strategies, overseeing user access management procedures, and ensuring adherence to security and regulatory standards. This position requires you to work closely with cross-functional teams to enhance access management processes, address technology challenges, mitigate risks, and support organizational growth. Your leadership, technical acumen, and communication skills will be critical for driving success in this role. You must have a client-focused, team-oriented approach that balances operational needs and user experience to provide best-in-class identity security for the organization.
TASKS, DUTIES, FUNCTIONS:
1. Propose and implement technical IAM solutions that align with business objectives and enhance operational efficiency.
2. Serve as the primary escalation point for complex user or business stakeholder issues, providing expert resolution and guidance.
3. Collaborate with business teams to facilitate the migration of applications into IAM management, ensuring smooth transitions and integration.
4. Establish and maintain relationships with vendors. Regularly assess vendor performance and cost-effectiveness to ensure value.
5. Technical leader for projects related to IAM initiatives, including analysis, planning, design, implementation, and transition to operations.
6. Mentor team members. Develop and implement training programs to enhance technical skills and performance across all levels of the team.
7. Lead account lifecycle management, governance, and administration from inception to termination for all users. Manage access privileges of internal and external individuals.
8. Manage the day-to-day operations of IAM systems by monitoring system performance, configuration, maintenance and repair. Analyzes production system operations using tools such as monitoring, capacity analysis and outage root cause analysis to identify change that ensures continuous improvement in system stability and performance.
9. Applies advanced knowledge and understanding of concepts, principles, and technical capabilities to manage a wide variety of projects.
10. Fosters innovation and automation by developing and/or supporting the introduction of new and improved methods, products, procedures, or technologies.
11. Perform other duties as assigned.

PHYSICAL SKILLS, ABILITIES, AND EXERTION UTILIZED IN THE PERFORMANCE OF THESE TASK:
1. Effective oral and written communication skills
2. Must possess sufficient manual dexterity to skillfully operate on-line computer terminal, record machinery, and standard office equipment including adding machine, personal computer, and telephone.
ORGANIZATIONAL CONTACTS & RELATIONSHIPS:
1. INTERNAL: Works closely with IT teams and is likely to have contact with leadership teams throughout the organization.
2. EXTERNAL: Vendors and government agencies.
QUALIFICATIONS:
1. EDUCATION: Bachelor’s degree in computer science, Information Technology, or a related field. Equivalent work experience may be considered in lieu of 4-year degree.
2. EXPERIENCE: Minimum of 5 years in IAM engineering, architecture or equivalent roles.
3. KNOWLEDGE/SKILLS:
◦ Experience in engineering IAM projects, including planning, execution, and delivery within defined timelines and budgets.
◦ Proven ability to mentor a team, manage projects, and work collaboratively across departments.
◦ Proficiency in IAM technologies (e.g., One Identity, Okta, SailPoint, Entra, Microsoft Azure AD, CyberArk, etc.). Demonstrated expert level knowledge of PowerShell scripting.
◦ Strong understanding of identity governance, authentication protocols (e.g., SAML, OAuth, OpenID Connect), and access management.
◦ Experience with IAM architecture and integration with enterprise systems.
◦ Strong analytical and problem-solving skills to address complex IAM challenges. Demonstrated problem solving ability that allows for effective and timely resolution of system issues including but not limited to production outages.
◦ Excellent verbal and written communication skills to effectively interact with technical and non-technical stakeholders.
◦ Strong organizational skills, attention to detail, and the ability to handle multiple priorities.
PHYSICAL REQUIREMENTS:
1. Prolonged sitting and moving throughout the workday, with occasional mobility required.
2. Corrected vision within the normal range.
3. Hearing within the normal range required. A device to enhance hearing will be provided if needed.
4. Ability to lift 30 lbs. as may be required.
5. Occasional movements throughout the department daily to interact with staff, accomplish tasks, etc.
LICENSES / CERTIFICATIONS:
Microsoft Certified: Identity and Access Administrator Associate (Required)
Microsoft Certified: Azure Administrator Associate (Desired)

#LI-Remote
Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.
THIS JOB DESCRIPTION PROVIDES AN OVERVIEW OF THE GENERAL SCOPE AND LEVEL OF WORK EXPECTED TO BE PERFORMED, BUT IT IS NOT AN EXHAUSTIVE LIST OF ALL DUTIES OR RESPONSIBILITIES ASSOCIATED WITH THE POSITION. THE CREDIT UNION RESERVES THE RIGHT TO MODIFY, ADD, OR REMOVE DUTIES AS NEEDED WITHOUT ADVANCE NOTICE. EMPLOYEES MAY BE REQUIRED TO PERFORM ADDITIONAL TASKS AND DUTIES AS DIRECTED BY THEIR SUPERVISOR, PROVIDED SUCH TASKS ARE WITHIN THE EMPLOYEE’S KNOWLEDGE, SKILLS, AND ABILITIES, OR CAN BE PERFORMED WITH REASONABLE TRAINING. NOTHING IN THIS JOB DESCRIPTION ALTERS THE AT-WILL EMPLOYMENT RELATIONSHIP OR LIMITS THE CREDIT UNION’S RIGHT TO ASSIGN OR REASSIGN DUTIES AND RESPONSIBILITIES TO THIS POSITION AT ANY TIME.
REV. 1/9/2026