Responsibilities
The Identity and Access Management (IAM) Engineer at Meritage Homes is responsible for the strategic design, implementation, and management of IAM processes and technologies across cloud and on-premises systems. This role focuses on securing systems, applications, and data by utilizing platforms such as Microsoft Entra ID and Saviynt Identity Governance and Administration while adopting a Zero Trust architecture. The engineer will lead complex IAM projects, mentor team members, and ensure compliance with industry regulations and standards like SOX and NIST, fostering a culture of security through innovation and collaboration. Responsibilities and Duties:
- Leverage metrics, KPIs, and KRIs to monitor health of Identity posture
- Troubleshooting & Support: Provide advanced troubleshooting and support for IAM-related issues. Resolve complex technical problems and provide solutions to enhance system performance and security.
- Lead the design and execution of Meritage Homes' IAM strategy, focusing on identity lifecycle processes such as onboarding, transfers, offboarding, and access provisioning.
- Manage and optimize identity management platforms like Microsoft Entra ID and Saviynt, extending core capabilities with workflows, APIs, and integrations.
- Support authentication, directory and SSO protocols to include MFA, LDAP, Kerberos, SCIM, SAML, OpenID Connect, Azure B2C, Hello for Business, and PKI.
- Coordinate with IT & Security leadership and project management on planning, execution, and reporting for concurrent IAM projects.
- Provide guidance to IAM professionals, developing and maintaining governance and certification programs that meet security requirements and compliance obligations.
- Partner with IT and Security teams to develop and maintain a Zero Trust security framework, ensuring the Confidentiality, Integrity, and Availability of company data.
- Implement automation solutions using IAM tools such as Saviynt, Entra ID, SCIM, REST APIs, ServiceNow, Azure AD Connect, and more.
- Drive efficiency through process improvements and integrations with ServiceNow.
- Design and enforce strong, centralized, authentication, authorization, and RBAC solutions across applications.
- Support the Identity Governance Administration (IGA) program by onboarding new platforms, developing workflows, and managing RBAC policies.
- Support Identity Risk and ITDR platforms such as Entra ID Identity Protection and Defender for Identity.
- Design and deploy passwordless authentication solutions
- Work with HR, IT, Security, and external vendors to ensure IAM systems and processes are optimized and compliant with security policies and best practices.
- Ensure IAM solutions adhere to regulatory standards such as SOX and NIST.
- Support security audits by providing detailed IAM reports and remediation strategies.
- Monitor IAM systems for stability, resolve functional and technical issues, and ensure continuous improvement in system performance and security.
Qualifications
- Bachelor's degree in Computer Science, Information Systems, or related field.
- 3+ years of experience in IAM, with hands-on expertise in platforms such as Microsoft Entra ID, Okta, Saviynt, Google Identity, or other IGA/IAM software.
- Familiarity with key management practices such as Key Vault, Secrets management, PKI
- In-depth knowledge of IAM principles, including OAuth, SAML, Single Sign-On (SSO), Auth0, PAM, PIM, and Multi-Factor Authentication (MFA).
- Experience managing identity lifecycle processes and enforcing RBAC policies.
- Experience with Group Policies (GPOs) and Conditional Access Polices
- Proven ability to mentor IAM teams, manage concurrent projects, and coordinate with leadership and stakeholders.
- Familiarity with security frameworks such as NIST CSF, and SOX compliance.
- Excellent communication skills, both written and verbal, with the ability to present technical concepts to executive and technical audiences.
- Proven analytical, diagnostic, and multitasking skills with a focus on execution and attention to detail
Overview
- Experience working with cloud platforms (Azure, AWS, GCP) and associated IAM technologies.
- Knowledge and experience in REST/SOAP, SQL, JavaScript, and Postman
- Experience in scripting languages like PowerShell, Python, for IAM automation.
- Security certifications such as CISSP, Microsoft IAM Associate (SC-300), IGA-specific certifications
- Experience with Identity Threat Detection and Response (ITDR)
- Demonstrated experience in IAM governance and best practices for third-party access management.
As an IAM Engineer at Meritage Homes, you will be a key player in ensuring the security and integrity of our identity management systems. Leverage cutting-edge technologies to safeguard our data and drive the adoption of IAM best practices across the organization. #LI-AJ2
|