Senior IAM Specialist

Xcel Energy   •  

Denver, CO

8 - 10 years

Posted 172 days ago

This job is no longer available.

Position Summary:

As a member of our Identity and Access Management (IAM) team, the Senior IAM Specialist is responsible for providing foundational security services to protect enterprise assets. This position will help design, implement, and support IAM solutions in our diverse on-premises and cloud computing environments. The Senior IAM Specialist will partner with internal groups and vendors to deliver IAM services that balance security and business needs.

 

Essential Responsibilities:

  • Design, develop, implement, and support identity and access management solutions
  • Provide direction, task assignment, and technical oversight to team members
  • Provide technical expertise in one or more of the following areas:
    • Digital certificate and key management including X.509 public key infrastructure (PKI), Active Directory Certificate Services, SCEP, certificate lifecycle management tools, and hardware security modules (HSM)
    • Multi-factor authentication including tokens, biometrics, certificates, and adaptive authentication
    • Federated identity management including support for single sign-on (SSO), SAML, SCIM, OAuth, and OpenID connections
    • Privileged access management (PAM) including account discovery and vaulting, least privilege, session management and recording, and endpoint privilege management
    • Centralized identity and access governance supporting security and regulatory compliance
  • Develop scripts to automate account management activities such as provisioning, de-provisioning, security alerts, logging, access certification onboarding, and bulk account attribute configuration
  • Leverage functionality provided by enterprise directory services including Active Directory, Azure AD, and LDAP
  • Ability to travel 25% of time
  • Requires occasional work on nights, weekends, and holidays to perform system maintenance or respond to incidents as part of an on-call rotation

 

Minimum Requirements:

  • Bachelor’s degree with a concentration in computer science, technology, information security, information systems, or engineering or the equivalent combination of education, training, and experience
  • Minimum of 8 years of experience in information security in an enterprise computing environment
  • Minimum of 5 years of experience leading implementation of identity and access management solutions
  • Relevant security certifications (e.g., CompTIA Security+, SANS/GIAC, CISSP, etc.) are highly desirable
  • Project management experience with PMP and Agile (Scrum) certifications desirable
  • IT service management experience with ITIL certification desirable
  • Experience with information security standards and frameworks such as Critical Security Controls, DOE C2M2, NIST Cybersecurity Framework, and NIST SP 800 Series
  • Knowledge of security regulations and compliance including NERC CIP, SOx, and HIPAA
  • Excellent verbal and written communication skills
  • Demonstrated leadership and presentation skills
  • Proven risk assessment and mitigation skills
  • Ability to excel in a team environment

12341