Calance Job Opening - IAM Engineer/Architect - Can be remote but hybrid ideal

Calance Job Opening

Job Title	IAM Engineer/Architect - Can be remote but hybrid ideal - ID:43468
Duration	6 Months to Hire
Start Date	ASAP
Job Skills	For this role, the biggest emphasis is AWS identity experience, RBAC - role-based access control. AWS is quite a mess Savvy enough to understand how we leverage native AWS solutions to figure out their issues as far as privileged access management. They are a CyberArk shop (on-prem solution), SailPoint IdentityIQ (on-prem). Kent, stakeholder, is looking for more SaaS solutions for these. Hybrid engineer/architect - hands-on but also strategic and articulate the vision to executive leadership, but also deep technically Has some good PAM engineers focused on CyberArk
Location	Santa Ana , CA (Remote)

Leads security engineering efforts for Microsoft and Identity Management platforms including cloud. This role will be central to delivering strategic identity and access management solutions that strengthen the security posture. You will take ownership of the design, implementation, and management of Microsoft solutions, including Workforce Identity and B2B, and ensuring comprehensive identity and access management (IAM) services across the organization.

How You'll Contribute
� Lead complex technical engineering discussions for purpose to create solutions designed to drive innovation while ensuring solutions are designed for secure deployment in the cloud and other platforms.
� Collaborate with Operations, Governance, and Engineering teams to ensure the secure development, deployment, and optimization of access management services.
� Drive innovation, establish best practices, and influence the future architecture of identity security while being hands-on in developing solutions.
� Make recommendations on integration strategies, engineering solutions, platforms and application infrastructure required to successfully implement a complete solution providing best practice advice to customers to optimize product effectiveness.
� Build a trusted advisory relationship with strategic customers across the business and engage with Architects and senior management to identify customer priorities, technical objections and design strategies encompassing the entire ecosystem to deliver business value.
� Perform market research on best-of-breed technologies and lead the engineering team to develop successful proof-of-concepts to test and learn new capabilities.
� Lead discussions with business partners to clearly understand opportunities and identify innovative ways to leverage technology to solve complex business issues.
� Design, develop and enhance technical architecture patterns and frameworks for others to leverage across the enterprise.
� Work with customers, stakeholders, product managers, and product owners to understand and maintain a high-level understanding of the current and upcoming requirements for the system
� Understand and communicate the nonfunctional requirements for the system.
� Evaluate design alternatives, and perform cost benefit analysis.
� Develop and maintain whatever models and documentation are necessary to describe how the system does what it is intended to do, including recommended domain and user case models
� �Define and split large architectural objectives into smaller incremental objectives.
� Present the technological vision of the solution during planning, provide domain models and exemplary use cases that describe larger system behavior, and participate actively in interactively during the planning process.
� Champion change by serving as a resource to help teams make appropriate system and component level design decisions during implementation.
� Top level technical expert in one or more highly specialized phases of applications programming.
� Research, design, write, test and implement complex software applications and systems.
� Provide practical, actionable approaches to overcoming technical and procedural challenges in implementing strategy.
� Lead Cloud Identity governance.
� Champion change; drive and set technical direction affecting multiple groups/business units.
� Provide leadership by instructing, mentoring and training team members within and outside the work group.
� Work with other engineers to establish common roadmaps in support of upcoming user and business needs.
� Interact with and influence senior management on technical matters requiring coordination between organizations.
� Provides technical consulting on complex projects.
� Required to perform duties outside of normal work hours based on business needs.

Required Education, Experience, Certification/Licensure
� Bachelor's Degree or equivalent combination of education and experience.
� Typically have 15+ years of directly related experience. At least 10 years of experience in enterprise-level security engineering
� Extensive experience with Microsoft Entra ID, Active Directory and Azure, AWS, OCI, GCP Cloud
� In-depth knowledge of modern authentication protocols (SAML, OAuth2, etc.)
� Expertise in implementing IAM lifecycle management, provisioning, single sign-on (SSO), multi-factor authentication (MFA), and role-based access control (RBAC)
� Strong understanding of identity lifecycle management, access control, and security policies
� Experience working with distributed team is preferred.
� Expertise with Cloud Security configurations that are agnostic in execution.
� Expertise with developing multiple tiers of multi-tiered IAM Cloud integrations.
� Expertise in designing Identity based Security models for Cloud platforms.
� Constantly updating technical knowledge and skills and mentoring others to increase the skill level of the department and the company.
� Must have conceptual understanding of Cloud container domain technologies.
� Ability to convey technical and conceptual ideas/topics to non-technical personnel.
� Presentation skills
� Strong organizational or Project Management skills
� Devises or modifies procedures to solve complex problems considering computer equipment capacity and limitations, operating time, and form of desired results.
� Responsible for program design, coding, automated testing, debugging, and documentation.
� Responsible for quality assurance review of architectural objectives
� Has full technical knowledge of all phases of Cloud Identity relationships
� Identifies problems, anticipates effects across business communities, research best practice alternatives, prepares presentations, drives solutions, tests to confirm, gains consensus from a broad business community, and implements customized solutions.
� Troubleshoots and drives solutions on a wide variety of complex problems.
� Works to define drive and implement broad based conceptual issues.
� Acts independently under broad direction.
Actively identifies issues, seeks out solutions and makes recommendations to the broad business community to apply customized solutions to solve business problems.

Pay Range - 70-110/hr

ATL-DOM01

*CONTACT US*		*ABOUT CALANCE*
recruiting@calance.com ATL-DOM01		Calance is a global IT Services firm specializing in end-to-end solutions for Development, Managed Service, Security, SAP, Project Control Integration and IT Staffing.Operating in the United States and India, Calance helps clients bring their ideas and strategies to life through talent, technology and tenacity.

Warning About Recruiting Scams

While we encourage you to apply for jobs at Calance, please beware of recruiting scams contacting individuals for job vacancies, asking for assessments and personal information. Please beware of emails from calanceusa.com email id, which is NOT a legitimate Calance email address. Please be vigilant in confirming that official Calance emails include the @calance.com email address domain. If in doubt, please visit the Calance website at https://www.calanceus.com and contact us if you have any concerns.

To spot scams, know that honest employers will never ask you to pay upfront fees for a job or for equipment. And they won’t ask you to pay them using cash, Zelle or PayPal. Anyone who does is a scammer. To avoid these scams, never give out personal information before doing some research. Contact the company, go to the company’s website. If you can’t confirm the job is real, it could be a scam.