Engr- IAM Sr

2 weeks ago


Shelton CT United States Franchise World Headquarters, LLC Full time
Engr- IAM Sr - Technology Infra Ops & Support Shelton, CT 06484, USA Req #1485 Tuesday, October 8, 2024

Region: Shelton, CT USA

Ready for a fresh, new career? Look no further because one of the world's most iconic brands can help you get there.

Why Join Us?

At Subway, "better" is baked into our DNA. We are a brand that believes in continued improvement ... in our lives, our businesses, and our planet. From the handshake that started our very first sandwich shop to earning our position as one of the world's leading restaurant brands, we've always embraced change and the path ahead. And today, we're making better living way easier.

Our purpose is about more than the food we serve in our restaurants. It's centered on fueling healthy businesses and healthier lives. It is one of the most exciting times to join the Subway team and contribute to our transformational journey.

About the Role:

We have an exciting opportunity to support our Technology team as a Sr. IAM Engineer based in Shelton, CT. The Sr. IAM Engineer will be responsible for the analysis, implementation, maintenance, and assist with design of all layers of IAM applications, which includes Authorization/Authentication/Accounting, Identity and Account Creation/Management/Provisioning. This role will also handle Role-based Access Control (RBAC) configuration and management, Single Sign On implementation, Process Improvement, Process Automation, IAM Break/Fix and IAM Enhancements. The IAM Engineer will work with other members of team, and manager, to ensure compliance with Franchise World HQ standards for security, privacy, and accessibility as defined by the Information Security Team. In addition, engineer will lead and direct the implementation of a new IDP tool in Subway's environment, OKTA.

If you feel that this is the role for you, and you are successful with your application, be ready to be Bold, Empowered, Accountable, and ready to have Fun in a fast paced and agile working environment.

Responsibilities include but are not limited to:

  • Project Work:

    • This includes the setup of new configurations and baselines around IAM within the IDP. This includes conditional access policies, RBAC, new SCIM setup, new governance
    • Initial set up and configuration of a new IDP solution (OKTA) with an ability to perform architecture diagraming that will be used as the benchmark for future efforts. Utilize best practice frameworks and maturity models to set the future growth of the program as a whole
    • Manage technology projects and system activities

    Operations:

    • Aligns with Industry best practices and establishes Subway policies and procedures accordingly
    • Design and implement sustainable solutions to be used for authentication, authorization, user life-cycle management, role-based access control, privileged account management (PAM), audit, and monitoring.
    • Develop and oversee the implementation of Information Security Procedures and Policies relative to Identify
    • Design and implement appropriate security controls to identify vulnerabilities and risks for access to systems and applications
    • New SSO setup, IAM incident resolution and root cause analysis, complex onboarding/offboarding, upgrades/patching, change tickets, MFA management, group and access cleanup, audits, HR downstream changes, tool management, etc
    • Conduct investigations and audits of identity gaps and vulnerabilities and evaluate the implications
    • Collect business and functional requirements in Identity and Access Management area
    • Establishes IDM and Directory related standards
    • Reviewing service/application logs
    • Partner closely with Information Security
    • Experience with ticketing tools such as ServiceNow
    • Participate in team on-call rotation for production support

    Continuous Improvement:

    • This involves modernization and optimization of the IAM program as a whole to a higher-level maturity. Improving upon SCIM, further automation of workflows, introducing new industry standard functions (such as passwordless authentication), improve identity lifecycle, conditional access policies, RBAC flows, etc.
    • Manage and improve policies to improve our risk framework while performing vulnerability remediation to guide the improvement initiatives
    • Assess the quality of controls and use performance indicators to create an action plan to fill gaps

Qualifications:

  • Bachelors Degree Preferred - Computer Science, Information Technology, Information Security. Cyber Security - OR- Related Experience Preferred
  • 8+ years experience in information security, infrastructure
  • 5+ years experience in IAM, PAM, ZTNA and security governance
  • 5+ years experience in PowerShell scripting
  • 5+ years experience in Active Directory/Azure Active Directory
  • 5+ years experience in Microsoft Exchange
  • 3+ years experience as an OKTA Certified Administrator
  • 3+ years experience in setting up and/or managing APIs
  • Strong understanding of PKI, encryption, certificate management, tokenization
  • Experience setting up/managing SCIM, RBAC, SSO, MFA to the IDP
  • Experience in Azure Active Directory and Active Directory, OKTA or similar IDPs required (Saviynt, etc.)
  • Database and API data parsing with Powershell experience
  • Experience with cloud computing services such as AWS and Azure for the purpose of SCIM and managing access a plus
  • Querying languages such as SQL against tools such as Splunk or Dynatrace. Rapid7 desirable
  • GPO creation best practices
  • Authentication Server Software
  • Experience with risk management data and analysis
  • Strong problem-solving and communication skills

What do we Offer?

  • Insurance Plans (Medical/Life)
  • Pension/401K/RSP (country specific)
  • Competitive Bonus
  • Mobility Allowance
  • Tuition Reimbursement
  • Company Holidays
  • Employee Resource Groups
  • Volunteering time
  • And Many More.....

The Company is only considering applicants who are currently authorized to work in the country the position is based. AA/EOE/M/F/D/V

Actual pay is determined based on a number of job-related factors including skills, education, training, credentials, qualifications, scope and complexity of role responsibilities, geographic location, performance, and working conditions.

Other details
  • Job Family Security Engineering
  • Pay Type Salary
Apply Now
  • Shelton, CT 06484, USA
Share this job: RequiredPreferredJob Industries
  • Other

  • Engr

    1 month ago


    Shelton, United States Franchise World Headquarters, LLC Full time

    Engr- IAM Sr - Technology Infra Ops & Support Shelton, CT 06484, USA Req #1485 Tuesday, October 8, 2024 Region: Shelton, CT USAReady for a fresh, new career? Look no...

  • Engr

    4 weeks ago


    Shelton, United States Franchise World Headquarters, LLC Full time

    Engr- IAM Sr - Technology Infra Ops & Support Shelton, CT 06484, USA Req #1485 Tuesday, October 8, 2024 Region: Shelton, CT USAReady for a fresh, new career? Look no...

  • Sr. Practice Director

    2 weeks ago


    Georgia, VT, United States Hobbsnews Full time

    Why WWT? Founded in 1990, World Wide Technology (WWT), a global technology solutions provider leading the AI and Digital Revolution, with $20 billion in annual revenue, combines the power of strategy, execution and partnership to accelerate digital transformational outcomes for large public and private organizations around the world. Through its Advanced...


  • Frisco, TX, United States TIAA Full time

    Sr. Principal CIAM Architect TIAA is seeking a Sr. Principal CIAM Architect. This role will support the organization’s mission critical systems and will lead complex architecture requirements to convert end-user needs into technical solutions. The Principal CIAM Architect will design, develop, and enhance services that are across every interaction between...

  • Sr Cloud Engineer

    2 weeks ago


    Santa Monica, CA, United States Apex Systems Full time

    Job#: 2051105 Job Description: Apex Systems is looking for an experienced cloud engineer to join an exciting new project for one of our clients in the Los Angeles, CA area. Job Title: Sr Cloud Engineer Duration: 12 month contract with potential for extension Pay Rate: $75-85/hr BOE Requirements: 5 years of demonstrated experience working with public...

  • Sr. Manager, Cyber

    2 weeks ago


    McLean, VA, United States Capital One Full time

    Sr. Manager, Cyber & Identity Risk Management As a Senior Risk Manager at Capital One, you will be part of the Capital One Retail Risk Office and focus primarily on risk management related to cybersecurity and IAM. We are seeking an experienced cybersecurity risk professional, who excels in a team environment, displays strong leadership skills, and motivates...


  • Hartford, CT, United States Ariel Partners Full time

    We are looking for a Sr. Active Directory Identity Management Consultant to assist with researching and migrating existing applications and integrations currently leveraging the on-premises Active Directory (AD) at CUNY’s 25 colleges. The consultant will provide expertise in migrating authentication mechanisms to Oracle Access Manager (OAM) Federation used...


  • Seattle, WA, United States Amazon Full time

    AWS Sr. Security Engineer - IAM, Amazon Foundational Security Services (AFSS) Job ID: 2678547 | Amazon.com Services LLC We are open to hiring candidates to work out of one of the following locations:Seattle, WA, USA Amazon Foundational Security Services (AFSS) is a high visibility team that solves security challenges at a massive scale. We are looking for...


  • Milwaukee, WI, United States Northwestern Mutual Full time

    At Northwestern Mutual, we are strong, innovative and growing. We invest in our people. We care and make a positive difference. A modern IAM organization is essential to the success of Northwestern Mutual, our employees, field force and clients. We are looking for an experienced leader to take on an exciting and challenging role of...


  • McKinney, TX, United States Globe Life Inc. Full time

    Sr. Cloud Data Engineer (Hybrid) Primary Duties & Responsibilities At Globe Life, we are committed to empowering our employees with the support and opportunities they need to succeed at every stage of their career. Our thriving and dynamic community offers ample room for professional development, increased earning potential, and a secure work...


  • Palo Alto, CA, United States xage, inc Full time

    Software Engineer – Full Stack (Palo Alto, CA) August 21, 2024 Xage is the first and only zero trust real-world security company. Powered by the Xage Fabric, the company’s Identity & Access Management, remote access, and dynamic data security solutions allow customers to secure, manage, and transform operations. With its distributed, scalable, and...


  • San Francisco, CA, United States Amazon Full time

    Sr. Partner Solutions Architect - Security Job ID: 2828540 | Amazon Web Services, Inc. Amazon Web Services is leading the next paradigm shift in computing and is looking for a world-class candidate for the role of Partner Solution Architect, Security, within our Amazon Partner Organization (APO) to work with our strategic security Independent Software...


  • San Francisco, CA, United States Amazon Full time

    Sr. Partner Solutions Architect - Security Job ID: 2828540 | Amazon Web Services, Inc. Amazon Web Services is leading the next paradigm shift in computing and is looking for a world class candidate for the role of Partner Solution Architect, Security, within our Amazon Partner Organization (APO) to work with our strategic security Independent Software...


  • Reston, VA, United States Fannie Mae Full time

    Job Description As a valued colleague on our team, you will contribute to developing data infrastructure and pipelines to capture, integrate, organize, and centralize data while testing and ensuring the data is readily accessible and in a usable state, including quality assurance. THE IMPACT YOU WILL MAKE The Sr. Data Encryption Engineer role will offer you...


  • El Segundo, CA, United States Axient Full time

    Axient Axient advances defense and civilian missions from aerospace to cyberspace with advanced technologies.Check out this NEW Opportunity with Axient! Axient is looking for a Senior Cybersecurity Analyst/Engineer to support the STS-3 (we are the Prime) in El Segundo, CA. Will provide direct Assessment & Authorization support to the Information Systems...

  • Sr Director

    2 weeks ago


    San Jose, CA, United States Tbwa ChiatDay Inc Full time

    Sr Director - Security Compliance and Governance San Jose, California, United States Who We Are At OKX, we believe that the future will be reshaped by Crypto, ultimately contributing to every individual's freedom. OKX began as a crypto exchange giving millions of people access to crypto trading and over time becoming among the largest platforms in the...


  • Reston, VA, United States The Fannie Mae Full time

    Full-time Target Hiring Range (1): 119000 Target Hiring Range (2): 155000 Company Description At Fannie Mae, futures are made. The inspiring work we do helps make a home a possibility for millions of homeowners and renters. Every day offers compelling opportunities to use tech to tackle housing’s biggest challenges and impact the future of the industry....


  • Reston, VA, United States Fannie Mae Full time

    Job Description As a valued colleague on our team, you will contribute to developing data infrastructure and pipelines to capture, integrate, organize, and centralize data while testing and ensuring the data is readily accessible and in a usable state, including quality assurance.THE IMPACT YOU WILL MAKEThe Sr. Data Encryption Engineer role will offer you...


  • Woodland Hills, CA, United States Ekman Associates, Inc Full time

    Job Description Remember to check your CV before applying Also, ensure you read through all the requirements related to this role. Title: Senior Application Security Engineer Location: Remote - Southern California preferred Ekman Associates is a management consulting firm that specializes in developing business, digital, and technology strategy,...

  • Solutions Engineer

    2 weeks ago


    Palo Alto, CA, United States xage, inc Full time

    Xage is the first and only zero trust real-world security company. Powered by the Xage Fabric, the company’s Identity & Access Management, remote access, and dynamic data security solutions allow customers to secure, manage, and transform operations. With its distributed, scalable, and easy-to-operate Fabric, Xage solves the complex digitization...