Identity and Access Management Administrator
UNCG
Posting Details Position Information Position Number 999595 Functional Title Identity and Access Management Administrator Position Type Staff Position Eclass EP - EHRA 12 mo leave earning University Information Located in North Carolina’s third largest city, UNC Greensboro is among the most diverse, learner-centered public research universities in the state, with nearly 18,000 students in eight colleges and schools pursuing more than 150 areas of undergraduate and over 200 areas of graduate study. UNCG continues to be recognized nationally for academic excellence, access, and affordability. UNCG is ranked No. 1 most affordable institution in North Carolina for net cost by the N.Y. Times and No. 1 in North Carolina for social mobility by The Wall Street Journal — helping first-generation and lower-income students find paths to prosperity. Designated an Innovation and Economic Prosperity University by the Association of Public and Land-grant Universities, UNCG is a community-engaged research institution with a portfolio of more than $67M in research and creative activity. The University’s 1,100 faculty and 1,700 staff help create an annual economic impact for the Piedmont Triad region in excess of $1B. Primary Purpose of the Organizational Unit Plan, design, implement and support stable and secure enterprise central and client IT systemsinfrastructure. ITS Enterprise Systems supports more than 21,000 students, faculty, and staff byadministering and/or supporting the campus enterprise server infrastructure, enterprise databases, and client computing infrastructure. All the core technology services offered by the University rely on the successful design, development, implementation, growth, maintenance, and monitoring of the campus systems infrastructure. Position Summary The primary purpose of this position is to participate in the technical system design, deployment, and management of ITS and customer identity and access solutions, along with maintaining a coordinated register of centrally managed attribute and role-based access controls. In addition, this position will ideate novel solutions to multi-faceted identity complexes to safeguard critical and confidential information belonging to the university. This position will participate in the discovery of new technologies and implementation and configuration of systems and applications in support and optimization of Identity Governance and Role Based Access Control (RBAC). This position will provide knowledge of the interactions between technologies and applications across product lines.
This position examines external and internal technology, long-term trends, and implications of alternative approaches, and articulates those concepts to other internal staff. This position will utilize in-depth knowledge of software engineering, cloud technologies and data engineering to define target architectures, patterns, and processes in support of customer identity and access solutions. This position will lead and/or support tool and technology selection and drive standardization and reuse of industry leading technology across the organization. This position will lead and/or support the evaluation and selection process for application packages to satisfy solution requests and related university needs.
This position collaborates with ITS Enterprise Systems management in setting guidelines and standards to ensure systems are consistent with ITS’ and UNCG’s long-term strategies. This position provides technical direction to project teams and understands and can explain the interrelationship of multiple concepts and can translate these concepts, ideas, and situations into clear, understandable, and simple terms. Minimum Qualifications Bachelor’s Degree with 3 – 5 years of experience in Identity and access management or equivalent combination of education/experience 5 years of working within a complex identity lifecycle management environment, including user and group synchronization Working understanding of modern database schema design Working understanding of MFA, conditional access, and zero trust architecture Knowledge of Single Sign-on protocols such as SAML or TGT Ability to implement federated identity management (IdP and SPs) 3+ years of experience with cross-platform provisioning/de-provisioning workflows Working knowledge of SCIM standards Proficient in RBAC and ABAC access control practices Working understanding of PAM and least privilege principles Working understanding in using RESTfun APIs and webhooks for integrations and automation Proficient in scripting languages such as PowerShell and Python Additional Required Certifications, Licensures, and Certificates Preferred Qualifications 5+ years of experience in a centralized access management platform Proficient in DevOps and ITIL concepts Proficient knowledge in (a) cloud platform 5 years of experience in a higher education complex identity lifecycle environment, including user and group synchronization Special Instructions to Applicants Recruitment Range Salary commensurate with experience Org #-Department Info Technology Services - 23101 Job Open Date 09/04/2024 For Best Consideration Date 09/11/2024 Job Close Date Open Until Filled Yes FTE 1.000 Type of Appointment Permanent If time-limited, please specify end date for appointment. Number of Months per Year 12 FLSA Exempt Key Responsibilities ________________________________________________________________________________________________________________________ Percentage Of Time 50% Key Responsibility Technical Solution Development Essential Tasks Serve as an active team member in the selection, application, analysis, implementation, and management of technology to support the provisioning and deprovisioning of identities that are needed to interact with the electronic resources of the institution. Seamlessly integrate solutions with technically complex systems that have broad enterprise-wide impact. Assist in the translation of functional goals to technical plans. Provide feedback to team members, customers, and leadership regarding variance from set standards. Assist with the development, implementation, and support of RBAC. Ensure all evidence of authorization is documented and archived according to internal standards. Manage directory account permissions via RBAC. Act as the subject matter expert for Identity Governance and RBAC Percentage Of Time 20% Key Responsibility Technical Planning, Organization, and Reporting Essential Tasks Assist in long-term project planning and operation planning in the institutions’ IAM environment. Prepare or maintain project and operational tasks that accompany the appropriate development/management lifecycle. Develop and maintain detailed documentation on standard operating procedures, system configurations, and technical settings for internal team use, end user support, and other ITS teams as needed. Coordinate with stakeholders to understand role-specific requirements and implement solutions accordingly. Generate reports to perform in-depth analysis and data collection for issues associated with IAM. Perform regular security assessments and audits to identify and mitigate vulnerabilities. Percentage Of Time 15% Key Responsibility Technical Support Essential Tasks Apply knowledge and skills to analyze and troubleshoot complex problems. Support ITS and University IT team members in resolving complex technical issues related directly or indirectly to customer identity and access solutions. Develop and maintain technical documentation in a timely manner. Provide second-level support to end-users, addressing and resolving issues related to system access and performance. Percentage Of Time 10% Key Responsibility Customer Service Essential Tasks Promote a positive customer relationship. Assist customers with defining requirements, solutions, and responding to issues in an effective manner. Assist in training ITS and University IT team members on system functionalities and best practices. Percentage Of Time 5% Key Responsibility Professional Development Essential Tasks Maintain a thorough knowledge of the IAM / IAG landscape. Stay up to date on technology trends, changing tools, mandates, policies, and standards. Attend professional development sessions, where applicable and cost-effective – which may include offsite week-long and/or virtual training sessions. ADA Checklist ADA Checklist
This position examines external and internal technology, long-term trends, and implications of alternative approaches, and articulates those concepts to other internal staff. This position will utilize in-depth knowledge of software engineering, cloud technologies and data engineering to define target architectures, patterns, and processes in support of customer identity and access solutions. This position will lead and/or support tool and technology selection and drive standardization and reuse of industry leading technology across the organization. This position will lead and/or support the evaluation and selection process for application packages to satisfy solution requests and related university needs.
This position collaborates with ITS Enterprise Systems management in setting guidelines and standards to ensure systems are consistent with ITS’ and UNCG’s long-term strategies. This position provides technical direction to project teams and understands and can explain the interrelationship of multiple concepts and can translate these concepts, ideas, and situations into clear, understandable, and simple terms. Minimum Qualifications Bachelor’s Degree with 3 – 5 years of experience in Identity and access management or equivalent combination of education/experience 5 years of working within a complex identity lifecycle management environment, including user and group synchronization Working understanding of modern database schema design Working understanding of MFA, conditional access, and zero trust architecture Knowledge of Single Sign-on protocols such as SAML or TGT Ability to implement federated identity management (IdP and SPs) 3+ years of experience with cross-platform provisioning/de-provisioning workflows Working knowledge of SCIM standards Proficient in RBAC and ABAC access control practices Working understanding of PAM and least privilege principles Working understanding in using RESTfun APIs and webhooks for integrations and automation Proficient in scripting languages such as PowerShell and Python Additional Required Certifications, Licensures, and Certificates Preferred Qualifications 5+ years of experience in a centralized access management platform Proficient in DevOps and ITIL concepts Proficient knowledge in (a) cloud platform 5 years of experience in a higher education complex identity lifecycle environment, including user and group synchronization Special Instructions to Applicants Recruitment Range Salary commensurate with experience Org #-Department Info Technology Services - 23101 Job Open Date 09/04/2024 For Best Consideration Date 09/11/2024 Job Close Date Open Until Filled Yes FTE 1.000 Type of Appointment Permanent If time-limited, please specify end date for appointment. Number of Months per Year 12 FLSA Exempt Key Responsibilities ________________________________________________________________________________________________________________________ Percentage Of Time 50% Key Responsibility Technical Solution Development Essential Tasks Serve as an active team member in the selection, application, analysis, implementation, and management of technology to support the provisioning and deprovisioning of identities that are needed to interact with the electronic resources of the institution. Seamlessly integrate solutions with technically complex systems that have broad enterprise-wide impact. Assist in the translation of functional goals to technical plans. Provide feedback to team members, customers, and leadership regarding variance from set standards. Assist with the development, implementation, and support of RBAC. Ensure all evidence of authorization is documented and archived according to internal standards. Manage directory account permissions via RBAC. Act as the subject matter expert for Identity Governance and RBAC Percentage Of Time 20% Key Responsibility Technical Planning, Organization, and Reporting Essential Tasks Assist in long-term project planning and operation planning in the institutions’ IAM environment. Prepare or maintain project and operational tasks that accompany the appropriate development/management lifecycle. Develop and maintain detailed documentation on standard operating procedures, system configurations, and technical settings for internal team use, end user support, and other ITS teams as needed. Coordinate with stakeholders to understand role-specific requirements and implement solutions accordingly. Generate reports to perform in-depth analysis and data collection for issues associated with IAM. Perform regular security assessments and audits to identify and mitigate vulnerabilities. Percentage Of Time 15% Key Responsibility Technical Support Essential Tasks Apply knowledge and skills to analyze and troubleshoot complex problems. Support ITS and University IT team members in resolving complex technical issues related directly or indirectly to customer identity and access solutions. Develop and maintain technical documentation in a timely manner. Provide second-level support to end-users, addressing and resolving issues related to system access and performance. Percentage Of Time 10% Key Responsibility Customer Service Essential Tasks Promote a positive customer relationship. Assist customers with defining requirements, solutions, and responding to issues in an effective manner. Assist in training ITS and University IT team members on system functionalities and best practices. Percentage Of Time 5% Key Responsibility Professional Development Essential Tasks Maintain a thorough knowledge of the IAM / IAG landscape. Stay up to date on technology trends, changing tools, mandates, policies, and standards. Attend professional development sessions, where applicable and cost-effective – which may include offsite week-long and/or virtual training sessions. ADA Checklist ADA Checklist
R for Rare (0-30%), O for Occasional (30-60%), F for Frequent (60-90%), C for Constant (90-100%).
Physical Effort Hand Movement-Repetitive Motions - F, Reading - f, Writing - f, Hearing - f, Talking - f Work Environment Inside - c Applicant Documents Required Documents Resume/CV Cover Letter List of References Optional Documents Supplemental QuestionsRequired fields are indicated with an asterisk (*).
* Are you eligible to work in the United States without sponsorship?(Open Ended Question)
Confirm your E-mail: Send Email
All Jobs from UNCG