Responsibilities The Identity and Access Management (IAM) Engineer at Meritage Homes is responsible for the strategic design, implementation, and management of IAM processes and technologies across cloud and on-premises systems. This role focuses on securing systems, applications, and data by utilizing platforms such as Microsoft Entra ID and Saviynt Identity Governance and Administration while adopting a Zero Trust architecture. The engineer will lead complex IAM projects, mentor team members, and ensure compliance with industry regulations and standards like SOX and NIST, fostering a culture of security through innovation and collaboration. Responsibilities and Duties: Leverage metrics, KPIs, and KRIs to monitor health of Identity posture Troubleshooting & Support: Provide advanced troubleshooting and support for IAM-related issues. Resolve complex technical problems and provide solutions to enhance system performance and security. Lead the design and execution of Meritage Homes’ IAM strategy, focusing on identity lifecycle processes such as onboarding, transfers, offboarding, and access provisioning. Manage and optimize identity management platforms like Microsoft Entra ID and Saviynt, extending core capabilities with workflows, APIs, and integrations. Support authentication, directory and SSO protocols to include MFA, LDAP, Kerberos, SCIM, SAML, OpenID Connect, Azure B2C, Hello for Business, and PKI. Coordinate with IT & Security leadership and project management on planning, execution, and reporting for concurrent IAM projects. Provide guidance to IAM professionals, developing and maintaining governance and certification programs that meet security requirements and compliance obligations. Partner with IT and Security teams to develop and maintain a Zero Trust security framework, ensuring the Confidentiality, Integrity, and Availability of company data. Implement automation solutions using IAM tools such as Saviynt, Entra ID, SCIM, REST APIs, ServiceNow, Azure AD Connect, and more. Drive efficiency through process improvements and integrations with ServiceNow. Design and enforce strong, centralized, authentication, authorization, and RBAC solutions across applications. Support the Identity Governance Administration (IGA) program by onboarding new platforms, developing workflows, and managing RBAC policies. Support Identity Risk and ITDR platforms such as Entra ID Identity Protection and Defender for Identity. Design and deploy passwordless authentication solutions Work with HR, IT, Security, and external vendors to ensure IAM systems and processes are optimized and compliant with security policies and best practices. Ensure IAM solutions adhere to regulatory standards such as SOX and NIST. Support security audits by providing detailed IAM reports and remediation strategies. Monitor IAM systems for stability, resolve functional and technical issues, and ensure continuous improvement in system performance and security. Qualifications Bachelor’s degree in Computer Science, Information Systems, or related field. 3+ years of experience in IAM, with hands-on expertise in platforms such as Microsoft Entra ID, Okta, Saviynt, Google Identity, or other IGA/IAM software. Familiarity with key management practices such as Key Vault, Secrets management, PKI In-depth knowledge of IAM principles, including OAuth, SAML, Single Sign-On (SSO), Auth0, PAM, PIM, and Multi-Factor Authentication (MFA). Experience managing identity lifecycle processes and enforcing RBAC policies. Experience with Group Policies (GPOs) and Conditional Access Polices Proven ability to mentor IAM teams, manage concurrent projects, and coordinate with leadership and stakeholders. Familiarity with security frameworks such as NIST CSF, and SOX compliance. Excellent communication skills, both written and verbal, with the ability to present technical concepts to executive and technical audiences. Proven analytical, diagnostic, and multitasking skills with a focus on execution and attention to detail Overview Experience working with cloud platforms (Azure, AWS, GCP) and associated IAM technologies. Knowledge and experience in REST/SOAP, SQL, JavaScript, and Postman Experience in scripting languages like PowerShell, Python, for IAM automation. Security certifications such as CISSP, Microsoft IAM Associate (SC-300), IGA-specific certifications Experience with Identity Threat Detection and Response (ITDR) Demonstrated experience in IAM governance and best practices for third-party access management. As an IAM Engineer at Meritage Homes, you will be a key player in ensuring the security and integrity of our identity management systems. Leverage cutting-edge technologies to safeguard our data and drive the adoption of IAM best practices across the organization. #LI-AJ2