Identity & Access Management (IAM) Engineer III

Allegiant

$150K — $183K *
Information Technology
5 - 7 years of experience
Job Overview by Ladders

Qualifications

  • Bachelor's Degree in cybersecurity or Computer Science
  • 7+ years in Identity & Access Management or related security roles
  • IAM or Cyber certifications required
  • Hands-on experience with IGA, PAM, SSO, MFA solutions
  • Strong scripting skills (PowerShell, Python, Bash, etc.)
  • Experience with IAM integration for SaaS and custom applications
  • Understanding of Zero Trust and identity-centric security principles

Responsibilities

  • Architect and support enterprise IAM solutions across IGA, PAM, SSO, MFA.
  • Manage identity architecture for cloud and hybrid environments.
  • Design identity lifecycle management and access governance processes.
  • Lead application onboarding into SSO, MFA, and IGA platforms.
  • Enforce role-based access control (RBAC) and least-privilege models.
  • Implement PAM for privileged accounts and secrets management.
  • Serve as a subject matter expert in identity security incidents and compliance.

Benefits

  • Opportunity for visa sponsorship
  • Access to ongoing professional training and development
  • Collaborative work environment with cross-functional teams
  • Potential for involvement in strategic IAM initiatives
  • Ability to mentor junior engineers
  • Participation in a reputable company in the essential services sector
Full Job Description
Summary
We are seeking a Senior Identity & Access Management (IAM) Engineer to design, implement, and manage enterprise identity solutions across on premises and cloud environments. This role will serve as a technical authority for IAM architecture, leading initiatives across Identity Governance & Administration (IGA), Privileged Access Management (PAM), Single Sign On (SSO), and Multi Factor Authentication (MFA), while ensuring secure, scalable, and compliant identity services. The ideal candidate combines deep, hands on engineering experience with strong architectural skills and can partner closely with security, infrastructure, cloud, and application teams.

Visa Sponsorship Available
No

Minimum Requirements
Combination of Education and Experience will be considered. Must be authorized to work in the US as defined by the Immigration Act of 1986. Must pass a Criminal Background Check.
Education: Bachelor's Degree in cybersecurity or Computer Science.
Certification: IAM or Cyber related certifications.
Years of Experience: Minimum seven (7) years of experience in related field.

Preferred Requirements
• Strong hands on experience implementing and supporting IGA, PAM, SSO, MFA, and identity federation solutions.
• Experience implementing Conditional Access, adaptive authentication, and Zero Trust identity controls.
• Experience securing machine identities, service accounts, and workload identities.
• Familiarity with Identity Threat Detection & Response (ITDR) concepts and tooling.
• Strong understanding of Active Directory, LDAP, Kerberos, and enterprise directory services.
• Experience designing and implementing enterprise IAM architectures.
• Solid understanding of authentication and authorization protocols (SAML, OAuth 2.0, OpenID Connect, LDAP).
• Experience managing cloud identity services (Azure AD / Entra ID, AWS IAM, GCP IAM).
• Strong scripting or automation skills (PowerShell, Python, Bash, or similar).
• Experience integrating IAM with SaaS, cloud, and custom applications.
• Strong understanding of Zero Trust and identity centric security principles.
• Ability to translate business requirements into secure technical solutions.
• Experience with common IAM platforms (e.g., SailPoint, Saviynt, Okta, Ping, CyberArk, BeyondTrust, Delinea).
• Experience supporting regulatory or compliance frameworks (SOX, PCI, HIPAA, SOC 2).
• Cloud security or IAM related certifications (e.g., CISSP, CCSP, Microsoft Identity certifications, AWS Security).
• Experience with access reviews, certification campaigns, segregation of duties (SoD), and audit remediation activities.
• Experience with CI/CD pipelines and Infrastructure as Code (Terraform, ARM, CloudFormation).

Job Duties
• Architect, engineer, and support enterprise IAM solutions across IGA, PAM, SSO, and MFA platforms.
• Own and manage the organization's identity architecture, including cloud and hybrid identity models.
• Design and implement identity lifecycle management (joiner, mover, leaver) and access governance processes.
• Lead onboarding and integration of applications into SSO, MFA, and IGA platforms.
• Design and enforce role-based access control (RBAC) and least-privilege access models.
• Implement and manage PAM solutions for privileged accounts, service accounts, and secrets management.
• Manage cloud identity platforms (e.g., Azure AD / Entra ID, AWS IAM, GCP IAM) and their integrations.
• Develop and maintain IAM standards, architecture diagrams, and technical documentation.
• Serve as a subject matter expert for identity-related security incidents, audits, and compliance efforts.
• Collaborate with application, cloud, infrastructure, and security teams to deliver secure identity solutions.
• Mentor junior IAM engineers and contribute to IAM strategy and roadmap planning.
• Evaluate IAM tools and technologies and recommend improvements or new capabilities.
• Other duties as assigned. Architect, engineer, and support enterprise IAM solutions across IGA, PAM, SSO, and MFA platforms.
• Ability to lead cross functional initiatives and influence identity security standards across the enterprise.
• Experience integrating IAM platforms with SIEM, SOAR, and security monitoring solutions.
• Experience using REST APIs and automation frameworks to integrate IAM systems.
• Familiarity with Git based workflows and Agile delivery methodologies.
• Own and manage the organization's identity architecture, including cloud and hybrid identity models.
• Experience managing hybrid identity environments, including Active Directory, Microsoft Entra ID, AWS IAM, and GCP IAM.
• Design and implement identity lifecycle management (joiner, mover, leaver) and access governance processes.
• Lead onboarding and integration of applications into SSO, MFA, and IGA platforms.
• Design and enforce role based access control (RBAC) and least privilege access models.
• Implement and manage PAM solutions for privileged accounts, service accounts, and secrets management.
• Manage cloud identity platforms (e.g., Azure AD / Entra ID, AWS IAM, GCP IAM) and their integrations.
• Develop and maintain IAM standards, architecture diagrams, and technical documentation.
• Serve as a subject matter expert for identity related security incidents, audits, and compliance efforts.
• Collaborate with application, cloud, infrastructure, and security teams to deliver secure identity solutions.
• Mentor junior IAM engineers and contribute to IAM strategy and roadmap planning.
• Evaluate IAM tools and technologies and recommend improvements or new capabilities.
• Ensure any direct reports understand and apply our Customer Commitment and customer service standards to their daily responsibilities as appropriate.
• Model Allegiant's customer service standards in personal actions and when providing leadership direction.
• Other duties as assigned.

Physical Requirements
The Physical Demands and Work Environment described here are a representative of those that must be met by a Team Member to successfully perform the essential functions of the role. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions of the role.

Office/IT - While performing the duties of this job, the Team Member is regularly required to stand, sit, talk, hear, see, reach, stoop, kneel, and use hands and fingers to operate a computer, key board, printer, and phone. May be required to lift, push, pull, or carry up to 50 lbs. May be required to work various shifts/days in a 24 hour situation. Regular attendance is a requirement of the role. Exposure to moderate noise (i.e. business office with computers, phones, printers, and foot traffic), temperature and light fluctuations. Ability to work in a confined area as well as the ability to sit at a computer terminal for an extended period of time. Some travel may be a requirement of the role.

Essential Services Provider
Allegiant as a national air carrier is deemed an essential service provider during declared national and state emergencies. Team Members will be required to report to their assigned trip or work location during national and state emergencies unless prohibited by local, state or federal order.

$150,000 - $183,700 a year

Similar Jobs

More Jobs at Allegiant

More Information Technology Jobs

Find similar Identity & Access Management (IAM) Engineer III jobs: