Cyber Security Consultant at Careerbuilder in Minneapolis, Minnesota

Posted in Other 12 days ago.





Job Description:

**upon offer, candidates must complete a background and drug screen**

Position Summary:

* As a member of our Identity and Access Management (IAM) team, the Senior IAM Specialist/Engineer is responsible for providing foundational security services to protect enterprise assets. This position will help design, implement, and support IAM solutions in our diverse on-premises and cloud computing environments. The Senior IAM Specialist/Engineer will partner with internal groups and vendors to deliver IAM services that balance security and business needs.

Essential Responsibilities:

* Design, develop, implement, and support identity and access management solutions

* Provide direction, task assignment, and technical oversight to team members

* Provide technical expertise in one or more of the following areas:

* Privileged access management (PAM) including account discovery and vaulting, least privilege, session management and recording, and endpoint privilege management. Experience with CyberArk is strongly preferred.

* Centralized identity and access governance supporting security and regulatory compliance. Experience with SailPoint IdentityIQ is strongly preferred.

* Multi-factor authentication including tokens, biometrics, certificates, and adaptive authentication. Experience with RSA SecurID is strongly preferred.

* Develop scripts to automate account management activities such as provisioning, de-provisioning, security alerts, logging, access certification onboarding, and bulk account attribute configuration

* Leverage functionality provided by enterprise directory services including Active Directory, Azure AD, and LDAP

* Requires occasional work on nights, weekends, and holidays to perform system maintenance or respond to incidents as part of an on-call rotation

Minimum Requirements:

* Bachelor's degree with a concentration in computer science, technology, information security, information systems, or engineering or the equivalent combination of education, training, and experience

* Minimum of 8 years of experience in information security in an enterprise computing environment

* Minimum of 5 years of experience leading implementation of IAM solutions

* Relevant security certifications (e.g., CompTIA Security+, SANS/GIAC, CISSP, etc.) are highly desirable

* Project management experience with PMP and Agile (Scrum) certifications desirable

* IT service management experience with ITIL certification desirable

* Experience with information security standards and frameworks such as Critical Security Controls, DOE C2M2, NIST Cybersecurity Framework, and NIST SP 800 Series

* Knowledge of security regulations and compliance including NERC CIP, SOx, and HIPAA

* Excellent verbal and written communication skills

* Demonstrated leadership and presentation skills

* Proven risk assessment and mitigation skills

* Ability to excel in a team environment

*Identity and Access Administrator III - Cybersecurity*

Position Summary:

* As a member of our Identity and Access Management (IAM) team, the Identity and Access Administrator III is responsible for supporting foundational security services to protect enterprise assets. This position will administer IAM solutions in our diverse on-premises and cloud computing environments. The Identity and Access Administrator III will partner with internal groups and vendors to deliver IAM services that balance security and business needs.

Essential Responsibilities:

* Day-to-day administration and support of identity and access management solutions

* Technical support and administration in one or more of the following areas:

* Privileged access management (PAM) including account discovery and vaulting, least privilege, session management and recording, and endpoint privilege management. Experience with CyberArk is strongly preferred.

* Centralized identity and access governance supporting security and regulatory compliance. Experience with SailPoint IdentityIQ is strongly preferred.

* Multi-factor authentication including tokens, biometrics, certificates, and adaptive authentication. Experience with RSA SecurID is strongly preferred.

* Federated identity management including support for single sign-on (SSO), SAML, SCIM, OAuth, and OpenID connections. Experience with PingFederate is strongly preferred.

* Digital certificate and key management including X.509 public key infrastructure (PKI), Active Directory Certificate Services, SCEP, certificate lifecycle management tools, and hardware security modules (HSM)

* Develop scripts to automate account management activities such as provisioning, de-provisioning, security alerts, logging, access certification onboarding, and bulk account attribute configuration

* Review logs and error reports to solve or escalate issues

* Gather requirements and technical information to design and configure roles, platforms, and workflows

* Leverage functionality provided by enterprise directory services including Active Directory, Azure AD, and LDAP

* Requires occasional work on nights, weekends, and holidays to perform system maintenance or respond to incidents as part of an on-call rotation

Minimum Requirements:

* Two year college degree or equivalent combination of education and experience

* Minimum of 4 years of experience in information security in an enterprise computing environment

* Minimum of 2 years of experience supporting identity and access management solutions

* Relevant security certification (e.g., CompTIA Security+) is highly desirable

* IT service management experience with ITIL certification desirable

* Experience with administration of Windows and Linux/UNIX operating systems

* Experience with power shell scripting, databases and networking concepts. Java knowledge and bean shell scripting are good to have.

* Familiarity with information security standards and frameworks such as Critical Security Controls, DOE C2M2, NIST Cybersecurity Framework, and NIST SP 800 Series

* Knowledge of security regulations and compliance including NERC CIP, SOx, and HIPAA

* Excellent verbal and written communication skills

* Proven risk assessment and mitigation skills

* Ability to excel in a team environment