Security Engineer, Identity and Access Management (IAM)

About the positionResponsibilities• Develop and implement IAM policies and procedures• Design and implement systems that enhance the security of Kinaxis IAM Systems• Document and implement identity governance solutions, access certification and reporting• Troubleshoot and manage issues related to identities, systems access accounts, secrets, authentication, authorization, entitlements, and permissions• Conduct design reviews related to IAM and Secrets management, providing recommendations on control implementations based on findings• Build and maintain tools that improve the Identity and Access Management posture• Participate in the development and oversight of corrective actions relating to security issues as it relates to Identities and Secrets• Implement technologies to centrally integrate identity systems across the organization and automate solutions• Design, implement, and manage Identity Directories and identity services• Collaborate with cross-functional teams to understand access requirements, secrets management requirements and drive the design, development, and implementation of improvements to our IAM systems• Evaluate current secrets management posture and provide integration recommendations, ensuring alignment with organizational objectives• Design and implement secure sharing mechanisms for controlled access to secrets• Provide technical expertise and support for incident response related to IAM and secrets management• Collaborate with the Security Operations team to implement adequate account and secret monitoring and logging capabilities• Provide Level 3 support for IAM related internal issues and requests• Implement and maintain technologies to ensure audit and privacy compliance• Improve identity and access management solutions and systems for protection against evolving threats and efficiencyRequirements• BSc or BA in Information Security, Computer Science, Information Systems, or demonstrated equivalent experience• Minimum of 5 years' experience in Information Security (with at least 3 years as an IAM engineer or in a related position)• Certifications such as Certified Identity ManagementProfessional (CIMP), Certified Identity and Access Manager (CIAM) can enhance job prospects• CISSP, CCSP, Comptia Cloud+/Security +, CISM, or GIAC certifications is an advantage• Okta CertifiedProfessional and Okta Certified System Administrator preferred• Familiarity with cybersecurity best practices and industry standards• Strong communication skills, both verbal and written• Ability to manage competing priorities and simultaneous projects in a fast-paced environment with little supervisionNice-to-haves• Extensive knowledge and experience with identity and access management concepts such as single sign-on (SSO), multi-factor authentication, passwordless authentication etc.• Comprehensive knowledge and experience with authentication standards and technologies such as OAuth, OpenID Connect, SAML, LDAP etc. • Proficiency in using and configuring secrets management tools (e.g., HashiCorp Vault, PMP, etc.)• Experience with Privilege Identity Management (PIM) and Privilege Access Management (PAM) systems (e.g. Azure PIM, CyberArk etc.)• Extensive hands-on knowledge of identity and access management best practices, procedures, and software solutions such as CyberArk, Okta, etc.• Experience with security and compliance requirements/frameworks, including but not limited to ISO 27001, NIST frameworks, GDPR, HIPAA, SOX, PCI, SOC2, OWASP etc. • Experience with Directory services such as Azure IAM, bolthires IAM, Active Directory etc. • Working knowledge of PowerShell, Python, or other scripting languages is an advantage• Strong diagnostic and troubleshooting skills. Benefits• Flexible vacation and Kinaxis Days (company-wide day off on the last Friday of every month)• Flexible work options• Physical and mental well-being programs• Regularly scheduled virtual fitness classes• Mentorship programs and training and career development• Recognition programs and referral rewards• Hackathons Apply tot his job