Principal Identity & Access Management Engineer

Overview

Principal Identity & Access Management Engineer – Northeastern University. This role contributes to the Identity and Access Management (IAM) program across Northeastern University’s global campus system.

Job Summary

Reporting to the Associate Vice President - Infrastructure, the Principal Identity Access Management Engineer contributes to IAM component designs, IAM service development, service integration, implementation, and operations of university-wide IAM services for all faculty, staff, students, parents, alumni, vendors, and University technology partners.

The Principal IAM engineer is proficient with modern approaches to IAM, including Microsoft Azure/AD/SSO, OAuth, OpenID, and SAML; expert knowledge of identity provisioning with IGAs (e.g., Saviynt); and RBAC. Experience with DevOps/SRE methodologies and automation/IaC/GitOps is expected. The candidate should be able to build partnerships, lead technical teams, and manage complex projects.

This position is hybrid; working three days onsite is required. Regrettably, the university is unable to sponsor for this role now or in the future.

Qualifications

• Bachelor’s degree in Information Systems or Computer Science and/or equivalent combination of education and work experience.
• Seven years of professional IT experience, preferably building or operating programs within Identity and Access Management.
• Expert knowledge of Microsoft’s AzureAD/SSO/Active Directory with strong focus on access control via RBAC/ABAC.
• Well-versed in information security issues affecting educational entities and cloud-based application service providers.
• Ability to assess computer systems and business processes for security risks.
• Excellent interpersonal, communication, and presentation skills, including formal report writing experience.
• Experience working in Agile teams with Scrum/Kanban/etc.

Preferred Qualifications

• 3 years’ experience with coding in Python or Groovy to transfer/manipulate identity data and automate processes.
• Experience with Saviynt’s IGA platform.
• Experience with Grouper and Shibboleth.

Key Responsibilities & Accountabilities

• Responsible for technical delivery and integration for authentication, authorization, identity provisioning, and identity governance/administration (IGA) across all University systems, audience types, and applications.
• Drive optimizations for IAM team operational performance and ensure nimbleness, agility, and responsiveness of IAM services to university systems and applications.
• Perform tasks to ensure customer satisfaction and departmental SLAs without direct supervision.
• Provide Tier 1, 2, and 3 support to customers on IAM services.
• Provide accurate and effective documentation on issues and problems.
• Provide training and documentation to Tier 1 support and other team members on emerging issues.
• Responsible for IAM system production support (may require outside regular hours as needed).
• Establish success metrics for the IAM program to measure reliability and availability of IAM environments.

Position Type

Information Technology

Details

• Seniority level: Mid-Senior level
• Employment type: Full-time
• Job function: Engineering and Information Technology
• Industries: Higher Education

Additional Information

Northeastern University considers factors such as candidate work experience, education and skills when extending an offer.

Northeastern has a comprehensive benefits package for benefit-eligible employees, including medical, vision, dental, paid time off, tuition assistance, wellness & life, retirement, and commuting & transportation. This information is available from Northeastern University’s benefits office.

All qualified applicants are encouraged to apply and will receive consideration for employment without regard to race, religion, color, national origin, age, sex, sexual orientation, disability status, or any other characteristic protected by applicable law.