Identity and Access Management Engineer
SMUD · Sacramento, CA · 1 mo ago
HybridEngineeringFull-time
Duties and Responsibilities
- Serves on multi-departmental networking computer projects by planning, designing, developing, implementing and maintaining a network infrastructure including backup and recovery, physical and logical network design, network topology, network architecture, security architecture and corporate server complex architecture;
- Assisting in identifying and defining corporate level network computing projects;
- Developing technical standards and procedures;
- Developing the system design;
- Developing system and user acceptance tests;
- Installing and integrating systems;
- Performing post-implementation reviews;
- Providing technical consultation and solutions for technical issues.
Nature and Scope
This classification is comprised of two levels: Level "E" is the entry-level where incumbents are provided formal training and/or certification for progression to the journey-level of the classification. The incumbent is promoted/progressed to the journey level "J" upon successful completion of all training and/or certification requirements for the classification. Incumbents hired at the entry-level are required to successfully progress to the journey-level within 18 to 60 months, depending on the length of the training and/or certification program. If an employee is unsuccessful with progressing to the journey-level they will return to last class held or separate from SMUD.
Required Education
- A High School diploma or equivalent
Required Experience Qualifications
- Three or more (3+) years of progressively responsible relevant work experience in the areas of system planning, design, development, test, implementation, maintenance in a network based computing environment including utilizing network topologies and architectures for multi-vendor, multi-protocol networks.
Desirable Qualifications
- Five or more (5+) years of relevant work experience preferred.
- Ability to analyze user access requirements.
- Ability to assess IAM risks and recommend mitigations.
- Ability to evaluate IAM technologies and solutions.
- Ability to develop automated identity workflows.
- Ability to integrate services across cloud and on-premises environments.
- Knowledge of authentication, authorization, and access control methods.
- Knowledge of Identity, Credential, and Access Management principles.
- Knowledge of directory services technologies.
- Knowledge of PKI and certificate management.
- Knowledge of cloud security concepts.
- Knowledge of operating system administration.
- Knowledge of authentication protocols (Kerberos, LDAP, RADIUS, TACACS).
- Knowledge of SAML, OAuth, OpenID connect and federation standards.
- Knowledge of cloud identity providers and IAM architectures.
- Skill in configuring and administering directory services.
- Skill in implementing identity and access management solutions.
- Skill in troubleshooting identity and authentication issues.
- Skill in integrating cloud and on-premises identity systems.
- Skill in implementing privileged access management controls.
- Skill in designing role-based, and attribute-based access models.