Identity & Access Management Specialist

TCI has an immediate need for an Identity Access Management Specialist in Louisville, KY. This is NOT a remote opportunity. This is not a Corp2Corp opportunity. This is a contract-to-hire opportunity. SUMMARY The Identity Access Management Specialist will interact directly with employees and contractors on a global scale to accurately resolve requests, or incidents. Responsibilities of the team include Identity Lifecycle Management and access controls across multiple systems and applications in line with the firm's Security & Access control policies. The future state of IAM will be controlled using a centralized IGA tool, IdentityNow, where the goal will be to develop further integration with the firm’s various applications and services to ensure a consistent user experience and system driven security controls. Core hours are Monday through Friday, 9:00 a.m. to 5:30 p.m. ET, with one hour for lunch. Must be flexible for overtime as needed. RESPONSIBILITIES Responsible for administration of the firm's Identities, accounts, and access are carried out in accordance with the firm's policies and procedures; this may differ across different offices and regions due to different jurisdictional requirements. Maintaining and administering accounts and access to several applications and file stores. Assists in defining access rights and privileges and administering logical access controls in line with security policies. Apply access control modelling to further enhance access control capabilities and automation. Maintaining and configuring custom integrations from the IGA solution to endpoints Assists in defining access integration requirements and designing solutions to accomplish goals REQUIRED SKILLS 4+ years of experience in onboarding vendors/clients utilizing Active Directory and other user access tools in a large or enterprise company. Very strong knowledge with Active Directory, Applications and how to giveNTFS Permissions and proper access rights. Strong technical skills in the technologies: Office 365, Active Directory, Exchange 2016, Exchange Online, SIEM platforms like Qradar/Sentinel, Windows Explorer (NTFS permissioning), ADManager Plus, WorkDay, SailPoint IdentityNow, SailPoint File Access Manager, Powershell, PostMan, JSON, RESTful API, Symantec VIP, Secret Server In-depth knowledge of Access Control types including, but not limited to, RBAC, ABAC, MAC and DAC Experience in working with multiple forests and in-depth knowledge and understanding of Identity & Access Management, as well as broader Information Security concepts Experience with application integration using REST APIs DESIRED (Nice-to-have) SKILLS ITIL Foundation certification preferred. IdentityNow Essentials training preferred. Microsoft and SailPoint IdentityNow certifications advantageous. Security certifications advantageous.