Position: Senior Identity and Access Management (IAM) Administrator

Our client is a leading global provider of IT transformation services is looking for a seasoned Senior Identity and Access Management (IAM) Administrator to join their Identity and Configuration Management Team. In this critical role, you will lead the design, implementation, and maintenance of a secure, efficient IAM program that supports the organization's cybersecurity strategy and enables business growth.

You will work closely with IT stakeholders, developers, and cybersecurity teams to ensure secure access to systems and data. Your responsibilities will span identity lifecycle management, Privileged Access Management (PAM), Role-Based Access Control (RBAC), certificate and configuration management, and IAM process automation.

Key Responsibilities:

• Lead IAM, certificate management, and system configuration projects aligned with business and cybersecurity objectives.
• Architect and maintain an enterprise-wide IAM program covering user access, RBAC, and PAM policies.
• Collaborate with IT teams to define and implement access control procedures based on compliance and regulatory standards.
• Manage the full identity lifecycle, including user provisioning, de-provisioning, and access changes.
• Administer centralized authentication services, MFA, and SAML-based login systems.
• Deploy and maintain a PAM solution to secure privileged access.
• Regularly audit access rights, ensuring least-privilege principles are enforced.
• Automate IAM processes using scripting languages like PowerShell and Python.
• Develop and document procedures for account management, certificate handling, and IAM system integrations.
• Stay updated on regulatory requirements and industry best practices to ensure compliance with IAM, PAM, and RBAC standards.
• Contribute to incident response by investigating and resolving access-related security incidents.
• Support compliance audits (CSOX, CMMC) with relevant IAM and system configuration documentation.
• Use tools such as Active Directory GPOs, Intune, SCCM, and Puppet to enforce configuration compliance and OS hardening aligned with CIS benchmarks.
• Utilize Azure and Intune to implement conditional access policies and meet organizational security needs.
• Manage the Public Key Infrastructure (PKI) and oversee certificate lifecycle automation.
• Serve as a subject matter expert in IAM during design and architecture reviews and evaluate new IAM initiatives.
• Perform additional duties as assigned.

Required Qualifications:

• Post-secondary education in Information Technology or Cybersecurity.
• Minimum 7 years of hands-on experience in identity and access management, PAM, encryption, and certificate administration.
• Proficiency with IAM technologies such as Microsoft Active Directory, LDAP, Azure EntraID, Okta.
• Strong experience managing PKI and automating certificate lifecycle processes.
• In-depth understanding of SSO protocols (SAML, OIDC, OAuth).
• Advanced scripting abilities in PowerShell and Python.
• Experience automating IAM tasks and integrating IAM systems via APIs.
• Expertise in managing identity lifecycle processes including user onboarding and role transitions.
• Working knowledge of compliance frameworks and standards such as NIST and CIS.
• Strong analytical and problem-solving skills with excellent attention to detail.
• Demonstrated ability to troubleshoot complex IAM issues across multi-platform environments.
• Familiarity with configuration management tools including Intune, SCCM, AD GPOs, Puppet.