IAM Specialist

Xcel Energy   •  

Denver, CO

5 - 7 years

Posted 244 days ago

This job is no longer available.

Position Summary:

As a member of our Identity and Access Management (IAM) team, the IAM Specialist is responsible for providing foundational security services to protect enterprise assets. This position will help design, implement, and support IAM solutions in our diverse on-premises and cloud computing environments. The IAM Specialist will partner with internal groups and vendors to deliver IAM services that balance security and business needs.


Essential Responsibilities:

  • Design, develop, implement, and support identity and access management solutions
  • Technical support and administration in one or more of the following areas:
    • Digital certificate and key management including X.509 public key infrastructure (PKI), Active Directory Certificate Services, SCEP, certificate lifecycle management tools, and hardware security modules (HSM)
    • Multi-factor authentication including tokens, biometrics, certificates, and adaptive authentication
    • Federated identity management including support for single sign-on (SSO), SAML, SCIM, OAuth, and OpenID connections
    • Privileged access management (PAM) including account discovery and vaulting, least privilege, session management and recording, and endpoint privilege management
    • Centralized identity and access governance supporting security and regulatory compliance
  • Develop scripts to automate account management activities such as provisioning, de-provisioning, security alerts, logging, access certification onboarding, and bulk account attribute configuration
  • Leverage functionality provided by enterprise directory services including Active Directory, Azure AD, and LDAP
  • Requires occasional work on nights, weekends, and holidays to perform system maintenance or respond to incidents as part of an on-call rotation


Minimum Requirements:

  • Bachelor’s degree with a concentration in computer science, technology, information security, information systems, or engineering or the equivalent combination of education, training, and experience
  • Minimum of 5 years of experience in information security in an enterprise computing environment
  • Minimum of 3 years of experience implementing identity and access management solutions
  • Relevant security certifications (e.g., CompTIA Security+, SANS/GIAC, CISSP, etc.) are highly desirable
  • IT service management experience with ITIL certification desirable
  • Experience with information security standards and frameworks such as Critical Security Controls, DOE C2M2, NIST Cybersecurity Framework, and NIST SP 800 Series
  • Knowledge of security regulations and compliance including NERC CIP, SOx, and HIPAA
  • Excellent verbal and written communication skills
  • Proven risk assessment and mitigation skills

Ability to excel in a team environment

Requisition Number: 12342