Job DescriptionHow will this role impact First Command? This role advances the organization's Identity and Access Management (IAM) maturity by implementing and improving identity controls across the user lifecycle. This role is responsible for enhancing governance, provisioning, authentication, authorization, access reviews, role design, and compliance capabilities, with a strong emphasis on SailPoint and related identity platforms. The position partners with business, risk, audit, infrastructure, and application teams to deliver scalable IAM enhancements that strengthen security, support regulatory expectations, and improve the user access experience.
What will the employee do in this role?- Provides subject matter expertise on Identity and Access Management strategy, governance, lifecycle processes, and platform capabilities so that effective and scalable IAM solutions can be developed and maintained
- Recommends and implements IAM controls for new and existing technologies, including joiner-mover-leaver processes, authentication, authorization, role-based access, segregation of duties, privileged access considerations, and access certification requirement
- Participates as a key member of the Security Incident Response Team (SIRT)
- Leads IAM enhancement initiatives, including role modeling, access review optimization, application onboarding, workflow improvements, and control implementation to ensure objectives, timelines, and compliance expectations are met
- Stay up to date on new information technologies and apply those innovations in the company's security standards and best practices
- Collaborates with business owners, application teams, infrastructure, audit, risk, compliance, vendors, and leadership to gather requirements, define access models, and implement IAM enhancements that align with policy and operational needs
- Evaluates cloud services and third-party applications for IAM onboarding, access governance, provisioning feasibility, certification support, and alignment with SailPoint and broader enterprise identity architecture
What skills and qualifications does the employee need? Education- Bachelor's degree in computer science, Information Technology, or an Engineering related field, or equivalent experience
- Preferred: SailPoint Certified Identity Security Administrator, SailPoint Certified Identity Security Engineer, or SailPoint Certified IdentityI Engineer
- Preferred: IAM-relevant certifications such as Certified Identity and Access Manager (CIAM) or Microsoft Certified: Identity and Access Administrator Associate
Work Experience- Minimum 5 years' experience working in an IT Security capacity
- Minimum of 3 years' working with SailPoint with an Identity and Access Management platform
- Experience with information security policy design
- Strong understanding of IAM and identity governance principles, including authentication, authorization, role-based access control, User access reviews, segregation of duties, and identity lifecycle management
Certifications - Relevant security certifications such as CIAM, CISSP, Microsoft Certified: Identity and Access Administrator Associate, CCSP, CCNA Security, and CCNP Security
Required Knowledge, Skills and Abilities- Hands-on experience implementing and administering IAM capabilities, including application onboarding, provisioning workflows, role design, policy configuration, access certifications, reporting, and control evidence support
- Experience integrating SailPoint with cloud platforms (e.g., Azure AD, AWS)
- Familiarity with Privileged Access Management (PAM) tools and concepts
- Diligence in producing and maintaining documentation and evidence, especially for compliance activities
- Detailed knowledge of ISO, NIST, and other information security standards, laws, and regulations
- Possess strong analytical skills
- Must be a self-starter and comfortable with self-directed learning on industry risks and changes
- Good oral and written communication skills
- Ability to speak confidently when dealing with internal constituents
- Identifying complex problems and reviewing related information to develop and evaluate options and implement solutions
- Incorporate industry IAM standards into practical security operations, network operations, and application development practices
- Working knowledge of the Agile framework
LI-NC1LI-Hybrid 
