Security Engineer - Los Angeles

For immediate consideration email Ed Vitela at Robert Half

Job Overview:

You will play a key role in leading the implementation, support, and optimization of IAM solutions across the organization, ensuring secure and efficient management of identities, entitlements, and permissions.

Key Responsibilities:

• Identity & Access Management (IAM) Expertise:
• Lead the design, implementation, and ongoing support of IAM solutions, ensuring alignment with security best practices and organizational needs.
• Oversee and manage authentication, authorization, and access control systems, including role-based access (RBAC), least privilege, and segregation of duties policies.
• Define, implement, and maintain secure access control processes, policies, and frameworks that ensure appropriate access rights across all platforms and services.
• Directory Services Management:
• Administer and support directory services like Active Directory (AD), Azure AD, Okta, LDAP, and other identity management tools.
• Manage user accounts, roles, entitlements, and permissions across systems and applications, ensuring timely provisioning and de-provisioning of access.
• IAM System Implementation & Support:
• Lead successful IAM implementations from start to finish, ensuring they meet business and security requirements.
• Provide ongoing operational support and troubleshooting for IAM systems to ensure high availability, security, and efficiency.
• Collaborate with cross-functional teams to integrate IAM solutions with enterprise applications and cloud services.
• Access Control & Security Frameworks:
• Develop and enforce policies related to authentication, user access, and account management that align with industry standards (e.g., NIST, CIS, ISO 27001).
• Conduct regular reviews and audits of access rights, identifying opportunities to streamline or strengthen security measures.
• Implement and monitor multi-factor authentication (MFA), single sign-on (SSO), and other secure access technologies to enhance identity security.
• Compliance & Audits:
• Ensure IAM systems and practices adhere to regulatory requirements, including GDPR, HIPAA, SOX, and others.
• Support audits by providing detailed documentation of access control mechanisms, policies, and compliance posture.
• Maintain detailed records of user access requests, changes, and approvals to ensure compliance with internal controls and segregation of duties.
• Continuous Improvement:
• Stay current with emerging IAM technologies and industry trends, recommending improvements and upgrades to systems and processes.
• Conduct risk assessments and identify areas for improvement within existing IAM solutions and practices.

Qualifications:

• Bachelor's degree in Information Security, Computer Science, Information Technology, or a related field (or equivalent experience).
• 5+ years of experience in security engineering or IAM roles, with a proven track record of managing and implementing identity and access solutions.
• Strong understanding of authentication, authorization, role-based access control (RBAC), least privilege, and segregation of duties concepts.
• Proven experience with IAM tools and technologies, including Active Directory (AD), Azure AD, Okta, LDAP, or similar directory services.
• Experience with implementing and supporting MFA, SSO, and other secure authentication mechanisms.
• Familiarity with security standards and frameworks (e.g., NIST, CIS, ISO 27001, SOC 2).
• Strong troubleshooting skills and the ability to resolve complex IAM-related issues in a timely manner.
• Excellent communication skills, both written and verbal, with the ability to collaborate effectively across teams and explain technical concepts to non-technical stakeholders.

Preferred Qualifications:

• Certifications such as Certified Information Systems Security Professional (CISSP), Certified Identity and Access Manager (CIAM), Microsoft Certified: Azure Security Engineer, or similar IAM/security certifications.
• Experience with cloud-based IAM solutions and integrations (e.g., AWS IAM, Google Cloud Identity).
• Familiarity with automation tools for identity management (e.g., PowerShell, Ansible, Terraform).