This is a Remote Position

The Identity and Access Management (IAM) Engineer will provide services to assist and support the organizations in architecting, designing and implementing identity and access management solutions and guide the other operations team in managing the identity life cycle.

Main duties and responsibilities:

Develop, implement and monitor strategic, comprehensive enterprise IAM frameworks, guidelines and best practices with focus on ensuring that the integrity, confidentiality and availability of information is managed and controlledLead the IAM projects and design activities to respond to complex requirements focused on cybersecurityLiaise with the business teams, application teams, IT operations teams and cyber security teams for developing, designing and implementing IAM solutionsWork and troubleshoot complex IAM integration issues with identity repositories (LDAP, Active Directory, etc.)Design and Implementation of Role Based Access Controls, Multi-Factor authentication, Conditional access, MFA and adaptive IAM based on organization requirements using risk based approachDevelop a reporting mechanism based on metrics to monitor progress, to measure efficiency and effectiveness of systems/framework, and to facilitate resource allocationProvide regular reporting on the current status of the information security systems/frameworks to senior management and business unit heads as part of a strategic enterprise risk management programDevelop and oversee effective disaster recovery policies and standards to align with enterprise business continuity management program goals, focused for IAM service.Coordinate the development of implementation plans and procedures to ensure that business‐critical services are recovered in case of a security event. Provide direction, support and in‐house consulting in these areasKeep up to date with security issues and best practices related to risk management. Monitor emerging threats trends, and advise relevant stakeholders on the appropriate courses of actionPerform other related duties and fulfill responsibilities as required

Experience and Skills:

Preferred:

Five years experience in two or more of the following areas: Enterprise Identity and access managementCloud based identity federation and integration with complex custom applicationsIAM governance and risk managementIAM consulting engagementsStrong understanding of the various Identity and Access Management platforms including OIM, Okta, Azure Identity Management, AWS IAM, etcStrong understanding with Federation Protocols (Oauth, SAML, OpenID), and Single Sign On (SSO) modelsAbility to understand technical and business aspects of IT risk, and to communicate those risks to management, business and technical units so that the organization can make informed decisions regarding appropriate levels of information security controlStrong analytical and problem-solving skillsAbility to act calmly and competently in high-pressure, high-stress situationsExcellent written and verbal communication skills, interpersonal and collaborative skillsIAM certification from Microsoft, Oracle, Okta, Azure, AWS or Google

Desirable:

Project management skills and ability to manage multiple projects under strict timelinesExperience with security incident response and management processAt least one professional security management certification, such as a Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or other similar credentials

Fresenius Medical Care maintains a drug-free workplace in accordance with

EO/AA Employer: Minorities/Females/Veterans/Disability/Sexual Orientation/Gender Identity

The rate of pay for this position will depend on the successful candidate’s work location and qualifications, including relevant education, work experience, skills, and competencies. Rate: $94,700-157,800

Benefit Overview: This position offers a comprehensive benefits package including medical, dental, and vision insurance, a 401(k) with company match, paid time off, parental leave and potential for performance-based bonuses depending on company and individual performance

EOE, disability/veterans