The University of Texas at Arlington
Senior Identity Access Management Specialist.
The University of Texas at Arlington, Arlington, Texas, United States, 76000
Job Summary
The Senior Identity Access Management Specialist is responsible for designing, implementing, and managing advanced identity, access, and authentication. This role drives future-state planning, automation, governance, privileged access, and identity lifecycle management while enhancing security frameworks and aligning IAM strategies with institutional goals. The ideal candidate will have deep expertise in IAM technologies, automation, and risk mitigation, ensuring secure, scalable, and efficient identity management.
The annual salary for this position ranges from $69,700-$84,000. The final offer will be based on the candidate’s experience, qualifications, and overall fit for the role.
Essential Duties and Responsibilities
Manage and automate identity lifecycle processes, including user provisioning, deprovisioning, and role-based access controls across directory services.
Diagnose and resolve complex identity and access management issues to ensure seamless authentication and authorization for users.
Develop, enforce, and optimize security policies, access controls, and governance frameworks to protect institutional data and systems.
Work closely with IT, security, and compliance teams to integrate IAM solutions with enterprise infrastructure and security frameworks.
Stay up to date with evolving IAM technologies, industry best practices, and regulatory compliance requirements.
Perform in-depth analysis of IAM-related issues, identifying root causes and implementing long-term solutions.
Develop and maintain IAM performance metrics, audits, and reports to track system health, security compliance, and user access trends.
Lead IAM projects, mentor junior team members, and contribute to strategic initiatives that enhance identity and access management capabilities.
Performs other duties as assigned
Minimum Qualifications
Bachelor’s degree in Computer Science, Information Systems or a related field,
Five (5) years of experience in Identity and Access Management (IAM), Public cloud architect level certification, such as Azure AZ305 or similar or nine (9) years of an equivalent mix of education and relevant experience in similar role.
Preferred Qualifications
Master’s degree in Computer Science, Information Systems or a related field.
Seven (7) years of experience in Identity and Access Management in complex higher education environments, serving academic research and administrative functions of a large public university.
Three (3) years advanced coding.
Experience installing, configuring, and running CAS, Shibboleth and LDAP services for eDirectory.
Demonstrated expertise in dynamic project environments by leveraging industry-leading project management methodologies to optimize schedule management, deliver comprehensive status reports, and effectively communicate and mitigate project risks and issues.
One or more advanced certification such as CISSP, CIAM, or similar.
Knowledge, Skills and Abilities
Hands-on scripting and development skills (Java, SQL, and PowerShell).
Hands-on experience Active Directory and other directory technologies.
Ability to provide excellent customer service.
Ability to communicate effectively both orally and in written form to a variety of constituents at varying levels of authority within the organization.
Ability to think analytically and critically to break down and resolve problems.
Ability to read, understand, and follow high-level policies and guidelines and apply those guidelines to daily responsibilities.
Proficiency in role-based access control (RBAC), attribute-based access control (ABAC), access governance (IGA), and privileged access management (PAM).
Experience in enterprise directory services (e.g., Active Directory, eDirectory), one or more cloud-based IAM solutions (e.g., Entra ID, AWS IAM), two or more authentication methods (e.g., MFA, SSO) and protocols (e.g., Kerberos, LDAP, OAuth, OIDC, SAML).
Proficient in one or more scripting languages (e.g., PowerShell, Python), as well as server administration (e.g., Windows Server, Red Hat Enterprise Linux (RHEL).
Must possess strong analytical skills to effectively evaluate complex problems and develop strategic solutions.
Skilled in developing middleware and applications that integrate with databases, LDAP directories, and third-party services using vendor APIs and SDKs.
Other Requirements
Applicants for this position must pass a Criminal Justice Information Systems (CJIS) fingerprint-based background check and maintain CJIS eligibility. Due to CJIS requirements related to system access, the following will result in being disqualified for this position : Felony Convictions, Felony Deferred Adjudication, Class A Misdemeanor, Class B Misdemeanor Convictions in the last 10 years, Class A Misdemeanor Deferred Adjudication, Class B Misdemeanor Deferred Adjudication in the last 10 years, an Open Arrest for Any Criminal Offense (Felony or Misdemeanor), and ALL Family Violence Convictions regardless of class.
This position requires use of information which is subject to the International Traffic in Arms Regulations (ITAR) and / or the Export Administration Regulations (EAR), Non-U.S. persons selected must meet eligibility requirements for access to export-restricted information.The ITAR / EAR defines a U.S. person as a U.S. Citizen, U.S. Permanent Resident (I.e., ‘Green Card Holder’), Political Asylee, or Refugee.
Workplace and Eligibility Conditions
All Information Technology staff – regardless of their unique position – are expected to perform their assigned duties in a manner consistent with professional standards, with full awareness of responsibilities toward managing personal and institutional data, with priority regard to delivering customer service, with an understanding of the 24 / 7 nature of IT and the responsibilities that creates for them as individuals, and in a constructive and effective collaboration with colleagues.
Benefits Eligible Yes CBC Requirement It is the policy of The University of Texas at Arlington to conduct a criminal background check on any applicant who is under final consideration for employment with the University.This position may have access to critical infrastructure as defined by Section 113.001(2) of the Texas Business and Commerce Code. If so, to be hired for and continue to be employed in this position you must maintain the security or integrity of the infrastructure as set forth in Texas Executive Order GA-48. By assuming this position, and if you have access to critical infrastructure , you authorize the University to conduct routine background checks.
#J-18808-Ljbffr
The annual salary for this position ranges from $69,700-$84,000. The final offer will be based on the candidate’s experience, qualifications, and overall fit for the role.
Essential Duties and Responsibilities
Manage and automate identity lifecycle processes, including user provisioning, deprovisioning, and role-based access controls across directory services.
Diagnose and resolve complex identity and access management issues to ensure seamless authentication and authorization for users.
Develop, enforce, and optimize security policies, access controls, and governance frameworks to protect institutional data and systems.
Work closely with IT, security, and compliance teams to integrate IAM solutions with enterprise infrastructure and security frameworks.
Stay up to date with evolving IAM technologies, industry best practices, and regulatory compliance requirements.
Perform in-depth analysis of IAM-related issues, identifying root causes and implementing long-term solutions.
Develop and maintain IAM performance metrics, audits, and reports to track system health, security compliance, and user access trends.
Lead IAM projects, mentor junior team members, and contribute to strategic initiatives that enhance identity and access management capabilities.
Performs other duties as assigned
Minimum Qualifications
Bachelor’s degree in Computer Science, Information Systems or a related field,
Five (5) years of experience in Identity and Access Management (IAM), Public cloud architect level certification, such as Azure AZ305 or similar or nine (9) years of an equivalent mix of education and relevant experience in similar role.
Preferred Qualifications
Master’s degree in Computer Science, Information Systems or a related field.
Seven (7) years of experience in Identity and Access Management in complex higher education environments, serving academic research and administrative functions of a large public university.
Three (3) years advanced coding.
Experience installing, configuring, and running CAS, Shibboleth and LDAP services for eDirectory.
Demonstrated expertise in dynamic project environments by leveraging industry-leading project management methodologies to optimize schedule management, deliver comprehensive status reports, and effectively communicate and mitigate project risks and issues.
One or more advanced certification such as CISSP, CIAM, or similar.
Knowledge, Skills and Abilities
Hands-on scripting and development skills (Java, SQL, and PowerShell).
Hands-on experience Active Directory and other directory technologies.
Ability to provide excellent customer service.
Ability to communicate effectively both orally and in written form to a variety of constituents at varying levels of authority within the organization.
Ability to think analytically and critically to break down and resolve problems.
Ability to read, understand, and follow high-level policies and guidelines and apply those guidelines to daily responsibilities.
Proficiency in role-based access control (RBAC), attribute-based access control (ABAC), access governance (IGA), and privileged access management (PAM).
Experience in enterprise directory services (e.g., Active Directory, eDirectory), one or more cloud-based IAM solutions (e.g., Entra ID, AWS IAM), two or more authentication methods (e.g., MFA, SSO) and protocols (e.g., Kerberos, LDAP, OAuth, OIDC, SAML).
Proficient in one or more scripting languages (e.g., PowerShell, Python), as well as server administration (e.g., Windows Server, Red Hat Enterprise Linux (RHEL).
Must possess strong analytical skills to effectively evaluate complex problems and develop strategic solutions.
Skilled in developing middleware and applications that integrate with databases, LDAP directories, and third-party services using vendor APIs and SDKs.
Other Requirements
Applicants for this position must pass a Criminal Justice Information Systems (CJIS) fingerprint-based background check and maintain CJIS eligibility. Due to CJIS requirements related to system access, the following will result in being disqualified for this position : Felony Convictions, Felony Deferred Adjudication, Class A Misdemeanor, Class B Misdemeanor Convictions in the last 10 years, Class A Misdemeanor Deferred Adjudication, Class B Misdemeanor Deferred Adjudication in the last 10 years, an Open Arrest for Any Criminal Offense (Felony or Misdemeanor), and ALL Family Violence Convictions regardless of class.
This position requires use of information which is subject to the International Traffic in Arms Regulations (ITAR) and / or the Export Administration Regulations (EAR), Non-U.S. persons selected must meet eligibility requirements for access to export-restricted information.The ITAR / EAR defines a U.S. person as a U.S. Citizen, U.S. Permanent Resident (I.e., ‘Green Card Holder’), Political Asylee, or Refugee.
Workplace and Eligibility Conditions
All Information Technology staff – regardless of their unique position – are expected to perform their assigned duties in a manner consistent with professional standards, with full awareness of responsibilities toward managing personal and institutional data, with priority regard to delivering customer service, with an understanding of the 24 / 7 nature of IT and the responsibilities that creates for them as individuals, and in a constructive and effective collaboration with colleagues.
Benefits Eligible Yes CBC Requirement It is the policy of The University of Texas at Arlington to conduct a criminal background check on any applicant who is under final consideration for employment with the University.This position may have access to critical infrastructure as defined by Section 113.001(2) of the Texas Business and Commerce Code. If so, to be hired for and continue to be employed in this position you must maintain the security or integrity of the infrastructure as set forth in Texas Executive Order GA-48. By assuming this position, and if you have access to critical infrastructure , you authorize the University to conduct routine background checks.
#J-18808-Ljbffr