Job DescriptionPosition Summary:The Cybersecurity Engineer - Identity and Access Management (IAM) will be responsible for deploying and maintaining the IAM functions at Vanderbilt University. This includes the design, implementation, and maintenance of IAM systems to ensure secure, easy, and appropriate access to Vanderbilt's resources and information.
The Engineer will work closely with the Associate Director and other cybersecurity leaders to ensure that Vanderbilt's Identity and Access Management processes and technologies are aligned with the university's overall cybersecurity strategy. The Engineer will be required to have deep administrative and engineering skills to maintain and develop Authentication and Directory systems.
Key Functions and Expected Performance:- Develop and maintain Vanderbilt's Authentication and Directory platforms to match our policies, procedures, technologies and focus on a great user experience. Technologies include but are not limited to Active Directory, MS Entra ID, PKI, CyberArk, Duo, and Ping.
- Work with IT and business stakeholders to ensure Authentication and Directory systems meet business needs while maintaining security and compliance standards.
- Conduct periodic reviews and assessments of IAM processes to identify areas for improvement and implement necessary changes.
- Monitor Authentication and Directory system logs and alerts to detect and respond to potential security incidents.
- Collaborate with other cybersecurity leaders to ensure that IAM processes align with Vanderbilt's overall cybersecurity strategy.
- Respond to incidents, outages and issues as needed.
- Oversee the maintenance of Vanderbilt security and IAM tools and technologies and collaborate with responsible stakeholders for Vanderbilt IT maintained infrastructure or applications.
- Maintain appropriate SLAs for tickets and other requests from our customers.
- Evaluate and select products and third-party providers to support initiatives.
Supervisory Relationships:This is an individual contributor position, reporting directly to the Associate Director for Identity and Access Management.
Education and Certifications:- Degree in Computer Science, Information Technology, Engineering, or related fields from an accredited 4-year college or university necessary
- Professional certifications, such as CISSP, CISM, or IAM, preferred
Experience and Skills:- 3-5 years of relevant experience in Identity and Access Management engineering necessary
- Strong understanding of IAM and Authentication technologies such as Active Directory, MS Entra ID, PKI, Duo, Ping, and CyberArk is necessary
- Strong understanding of IAM and authentication technologies and standards, such as LDAP, Excellent communication, and collaboration skills necessary
- SAML, OAuth, and Multi-Factor Authentication (MFA) experience necessary
- SailPoint experience is a plus
- Knowledge of cybersecurity frameworks and regulations, such as NIST, CMMC, NSPM-33 and FERPA a plus
- High degree of creativity, with an ability to manage priorities and effectively allocate resources to meet business objectives in a clear and pragmatic way necessary
- Excellent written and verbal communication skills, interpersonal and collaborative skills, and the ability to communicate security and risk-related concepts to technical and nontechnical audiences necessary
- High degree of initiative, and dependability able to work autonomously to manage the information security team while aligning to university direction and strategy necessary
- High level of personal integrity, as well as the ability to professionally handle confidential matters, and show an appropriate level of judgment and maturity necessary
- Demonstrated commitment to VUIT's Guiding Principles is necessary
Information Technology's Guiding Principles:- Trust and Respect- VUIT cultivates a community built on trust, mutual respect, and inclusivity, where all members feel valued and supported. We prioritize honesty, dignity, empathy, and a willingness to listen and understand.
- Professionalism- VUIT strives to maintain a culture of maturity, accountability, and integrity to best represent the University and self. Have a sense of humility and poise in your work and daily interactions.
- Collaborate- VUIT commits to being inclusive in solution design where we value sharing within and partnering across the university. We are intentional about including our colleagues and preventing silos.
- Bias-to-Action- VUIT is seen as a changemaker by exhibiting a decisive, self-starter, take-action approach with a willingness to make decisions without excessive deliberation. Personal initiative is recognized as a key part of the creative process.
- Communicate- Communication (written, verbal and non-verbal), within and outside VUIT, is open, thoughtful, welcoming, clear, proactive, concise yet complete, always honest, and delivered kindly.
- Innovate- VUIT pledges to be bold and challenge the status quo by inspiring a culture of creativity that promotes growth and advancement for the university.
- Celebrate Each Other- We are intentional in showing appreciation for the work of others by valuing and acknowledging meaningful contributions at all levels of the organization.
- Optimize- VUIT will practice continuous and thoughtful optimization of our solutions and services to increase our human and technological capacity. Capacity drives innovation.