The Identity & Access Management Engineer (IAM Engineer) is responsible for identifying, delivering and supporting the technology used to deliver Sidley'soverall Identity & Access Management program, which is designed to ensure the Firm's user identities, accounts, credentials and system access are fully and completely managed for all system users. The Engineer is responsible for the current technology in place (Okta Verify/SSO, Microsoft/Azure AD, Delinea, etc) and ensuring successful operations, interoperability and general well-being. The incumbent will work proactively with IAM Manager and IAM Architect and various IT and business departments to implement services that meet Sidley's current and future IAM needs.

The IAM Engineer is a proven technologist and a hands on problem solver, as well as an effective internal consultant, who will regularly advise others on access and security/risk related issues. The incumbent must possess domain competencies in a number of related disciplines, including security, risk, access control, overseeing backend technology with Okta, ARS/AD/Azure (on premises and Cloud based) authentication, multi factor authentication and entitlements reviews.

Duties and Responsibilities:

• Work with the IAM Manager to build out and oversee the IAM function's technical controls and its related activities including planning, solutioning, testing, reporting and delivering IAM services.
• Oversee the implementation of all current solutions to ensure they are configured appropriately and are delivering maximum value for the Firm. Review current documentation such as Procedures, run books, and Knowledge Base Articles used by the Service Desk. Review and/or establish Best Practices where applicable
• Engage and interact with other IT Departmental Engineers to ensure future efforts (ours and theirs) result in continued uninterrupted delivery of all IAM services.
• Demonstrate extensive understanding of IAM concepts such as directory services, SSO, federation, MFA, provisioning, access certification, roles and SOD.
• The analysis, design, implementation, and maintenance of all layers of IAM applications, including Authorization / Authentication and Account Creation / Management / Provisioning / Retirement in data repositories. Including; strategy, organizational design, process re-engineering and technology implementation.
• Functional areas and work experience should include; fine-grained access control, policy driven security, Identity Governance, Access Management, and Privileged access management, user provisioning/de-provisioning, and federation.
• Provide support with respect to requirements gathering, project management and delivery of one or more Identity platforms, such as SailPoint (Identity IQ), Okta, and Saviynt.
• Serve as the central point of contact for information security and IAM policy and process related issues.
• Address Vulnerabilities, Pentest findings and audit issues in a timely manner.
• Participate in a 24x7x365 on-call rotation
• Stay abreast of industry trends, solution landscape and market conditions and update peers and management accordingly.
• Other duties, as assigned.

Education and/or Experience:

Required:

• Bachelor's degree or equivalent combination of education and/or experience.
• Minimum of 3 years of experience in a Technical IAM related role, ranging from technical tool evaluation/selection, implementation and operations. Cloud based utilization and cloud adoption a must.
• Experience with Microsoft Active Directory (Azure AD) and GPO management, Windows Desktop and Server environments.
• Experience with IT Security and Governance Risk and Compliance functions and their needs.
• Working knowledge of IT management frameworks such as Control Objectives for Information and Related Technology (COBIT) and/or Information Technology Infrastructure Library (ITIL).
• Experience developing, deploying, integrating and supporting IAM services within a larger IT organization showcasing strengths in teamwork and establishing successful partner ships.

Preferred:

• Multiple years of Legal Industry or Financial Services experience
• Experience initiating new technologies and delivery high level services
• Experience interacting with senior/executive members and presenting material in a simple straight forward manner
• Industry specific training or certification

Other Skills and Abilities:

The following will also be required of the successful candidate:

• Strong organizational skills
• Strong attention to detail
• Good judgment
• Strong interpersonal communication skills
• Strong analytical and problem-solving skills
• Able to work harmoniously and effectively with others
• Able to preserve confidentiality and exercise discretion
• Able to work under pressure
• Able to manage multiple projects with competing deadlines and priorities

#LI-OE1

#LI-Hybrid

The target salary range for this role is:
$150,000 - $180,000 if located in Illinois and Texas

Salaries vary by location and are based on numerous factors, including, but not limited to, the relevant market, skills, experience, and education of the selected candidate. Our compensation package also includes bonus eligibility and a comprehensive benefits program. Benefits information can be found at Sidley.com/Benefits.