Lead Systems Engineer - IAM
OCLC
- Dublin, OH
- Permanent
- Full-time
- Design, implement and maintain identity and access management solutions using Microsoft Active Directory, Entra (AzureAD), OAuth, SAML, and LDAP.
- Serve as an SME on Identity and Access Management to team members and assist staff across the organization.
- Automate common identity and access management tasks using modern development tooling
- Analyze existing platforms to identify opportunities for automation, improvement, and operational efficiency.
- Create and maintain standards surrounding documentation related to identity processes, procedures, and infrastructure configurations.
- Support Azure AD Identity, MFA, PIM, Access Packages, MyApps and MyAccess, Azure AD Security Conditional Access Policies, and Cloud Defender, including Defender for Identity.
- Implement IAM roles and policies in a multi-cloud environment.
- Lead efforts to provide user account lifecycle management, including creating, provisioning, securing, and deactivation of access.
- Partner with Global Security team to participate in yearly audits, recommend improvements, and assist with security incidents.
- Monitor, audit, and support the identity and access management systems.
- 8+ years working in an enterprise environment supporting end users as well as application stakeholders.
- Expert knowledge of Microsoft Active Directory, Group Policy, Microsoft EntraID, SCIM, SSO, federated identities and MFA technologies
- Demonstrated knowledge of infrastructure security concepts (Network Security, Password Policies, and Access Control)
- Experience with infrastructure automation tools such as Ansible, Quickbuild, Gitlab
- Demonstrated ability to automate processes through scripting languages (Python/PowerShell/bash)
- Exposure to Linux authentication management (SSSD/IPA/OpenLDAP)
- Experience with IAM best practice in AWS, GCP and Azure
- Familiarity with Privileged Identity Management solutions and concepts
- Experience with monitoring and performance management tools like Solarwinds, Azure LogAnalytics, KQL.
- Excellent verbal and written communication skills
- Mindset for continuous improvement