Note: The job is a remote job and is open to candidates in USA. BlueCross BlueShield of Tennessee is hiring a Sr. Identity and Access Management Engineer on their Identity and Access Management team. In this role, you will strengthen and scale enterprise Identity Governance and Administration capabilities, focusing on the Saviynt platform and supporting backend IGA operations.
Responsibilities
- Engineering and implementation of security technology solutions centric to Identity and Access Management security, participating and/or assisting other team members in a rotating on-call schedule to promptly resolve high-priority issues that surface outside of normal business hours
- Implementation, integration, configuration, and monitoring of Identity and Access Management solutions to ensure system health and proper SSO, MFA, provisioning/deprovisioning, and reduction of system related errors, while ensuring compliance with corporate security standards and policies
- Provides input into Access Control design and implementation, Application Credentials, ABAC (Attribute-Based Access Control) and RBAC (Role Based Access Control) roles, User Access Policy Management, Privileged Access Management, User Entitlements, Workflow, and Rule centralization, while ensuring documentation is kept accurate with environment changes
- Scripting, automation, and orchestration to drive efficiencies within Identity and Access Management, while partnering with security and risk teams to implement and maintain security policies and configurations in accordance with corporate requirements and guidelines
- Assist in development/management of the password vault solution, while ensuring accounts are properly identified and setup in the centralized repository, actual application/system, and IAM solution with appropriate ownership across all three application/systems
Skills
- Bachelor's Degree in a Computer Sciences or Information Systems related field or equivalent work experience
- 5 years - Experience in Information Security and/or IT related experience required
- Comprehensive experience configuring and leveraging SSO and step-up authentication to support authorization, including federation services
- Demonstrated ability to lead, document, and meet deadlines for projects from milestones to tasks and identify ownership per project with implementation knowledge and expectations
- Demonstrated ability to interpret and translate technical and/or complex concepts into information meaningful to IAM team members and/or business personnel
- Proficient in Microsoft Office (Outlook, Word, Excel and PowerPoint)
- Proven analytical and problem-solving skills and ability to perform non-routine analytical tasks
- Proven ability to provide Security integration, automation, and configuration efforts with Security oversight for software in the BCBST environment
- Proven ability to determine Technical Security Baselines and ensure the baselines meet BCBST Policy and Standards
- Proficient understanding of troubleshooting approaches, including knowledge of underlying security tools, networking, server, application, and cloud environments
- Windows scripting and automation methodology (PowerShell, VBScript, Perl, Batch programming)
- Well-developed understanding of APIs, databases, and file connections for application connections
- Proven ability to plan, prioritize, organize, configure, and coordinate across multiple applications and systems
- Ability to work independently with minimal supervision or function in a team environment sharing responsibility, roles, and accountability
- CISSP certification
- CISA certification
- CRISC certification
- SANS certification
Benefits
- This is a remote, work-from-home position
- On-call rotation is required (1 week every 8 weeks)
- Occasional onsite presence is expected (approximately once per quarter)
Company Overview