IAM Active Directory Engineer, Lead- 100% REMOTE Opportunity

Company: USAA
Location: Sun City West
Posted on: January 6, 2022

Job Description:

Purpose of Job

USAA's Identity and Access Management (IAM) team is seeking a dedicated InfoSec IAM Active Directory Engineer, Lead. This person will be responsible for leading IAM enterprise directory services capabilities and will include working as a Lead on an operational team to manage security aspects of Active Directory. The candidate selected for this position will partner with IT, architecture, product owners and security engineers to ensure IAM directory services processes are operating effectively and implemented securely and in a compliant manner to align with IAM strategic objectives.

This role can work in a 100% Remote Work Environment or at one of our many locations across the US such as: San Antonio, Plano, Phoenix, Colorado, and Tampa.

Job Requirements

About USAA USAA knows what it means to serve. We facilitate the financial security of millions of U.S. military members and their families. This outstanding mission requires a dedication to innovative thinking at every level.
USAA Careers World Class Benefits (https://www.youtube.com/watch?v=APwPQizcENY) (31 seconds)

About USAA IT Our most meaningful qualification isn't technical, it's human. Here, we don't just sit in front of a screen. We stand behind our 12 million members who rely on us every day. We are over 5,000 employees strong, a passionately supportive and collaborative team built on agile principles. We've been a top-two Computerworld 100 Best Places to Work in IT five years in a row and were recently named a Top 50 Employer for Minority Engineers & IT by Workforce Diversity Magazine.

Primary Responsibilities:

* Identifies and handles existing and emerging risks that stem from business activities and the job role. * Ensure risks associated are effectively identified, measured, monitored, and controlled. * Follows written risk and compliance policies and procedures for business activities. * Influences and leads team efforts across the Information Security department and enterprise as an authority in their domain. * Researches and analyzes the latest capabilities of specific Information Security (e.g. Cloud services, encryption, PKI etc.) and IT technologies (e.g. operating systems, networks, storage, virtualization etc.). * Considered a guide in the USAA implementations of these technologies. * Reviews, interprets, and resolves disputes for Information Security baselines for specific technologies (e.g. operating systems, databases). * Leads the operations and maintenance for hardware and software of Information Security solutions and technologies (e.g. firewalls, intrusion prevention (IPS), web application firewalls (WAF), web proxies). * Initiates vendor roadmap discussions and feature requests. * Consults with Architects to plan future technical solutions. * Monitors and fixes highly sophisticated systems, tools and/or networking solutions. * Performs investigative research, analysis and troubleshooting to identify, resolve, and report highly sophisticated security issues. * Collaborates with Security Analysts to tune and improve Information Security solutions and technologies to keep up with the latest threats. * Guides the development of code/scripts/automation written to detect or prevent new threats that do not have commercial solutions available yet or to automate Information Security processes to increase efficiencies. * Designs and develops new tools/technologies as related to Information Security and shares them with the community. * Drives and directs quality work efforts. * Serves as the primary resource for multi-functional team members on escalated issues of a unique nature. * Maintains expert level knowledge of USAA Information Security standards as well as industry information security best practices, frameworks, laws and regulations.

Minimum requirements:

* Bachelors Degree Or 4 additional years of related experience beyond the minimum required may be substituted in lieu of a degree. * 8 years of related experience in Information Security, Cybersecurity, Identity and Access Management (IAM) and/or Information Technology with a security focus to include accountability for complex tasks and/or projects. * 6 years of related experience in AppSec, Cloud, Firewall, Web Proxies, Web Application Firewall, Intrusion Prevention Systems (IPS/IDS), Mainframe, Windows, Linux, Apple, Security Information and Event Management (SIEM), Identity and Access Management engineering and/or Security Orchestration, Automation, and Response (SOAR) solutions. * Experienced level of discernment in the areas of business operations, risk management, industry practices and emerging trends. * Sophisticated troubleshooting skills. (Packet analyzer a plus) * Programming or scripting experience (Python or PowerShell preferred).

When you apply for this position, you will be required to answer some initial questions. This will take approximately 5 minutes. Once you begin the questions you will not be able to finish them at a later time and you will not be able to change your responses.

Preferred experience:

* Operational experience with directory services technologies such as Active Directory, Azure AD, Radiant One, Okta universal directory * Solid understanding of application integrations into IAM federation solutions for enabling single sign on capabilities (ie. Okta, Ping, ForgeRock) * Experience in a lead technical role, setting technology direction for team and presenting technical concepts to senior leaders * Working experience implementing automation using APIs and scripting languages such as Python or PowerShell * Knowledge of on-prem or cloud directory services management * Ability to develop KRIs/KPIs through reporting and operational dashboards * Security certifications such as MCSE, CISSP, CCSK, CCSP, SANS or other vendor related certifications

The above description reflects the details considered vital to describe the principal functions of the job and should not be construed as a detailed description of all the work requirements that may be performed in the job.

Compensation: USAA has an effective method for assessing market data and establishing ranges to ensure we remain competitive. You are paid within the salary range based on your experience and market position. The salary range for this skill is: $ 117,600 - $ 211,700 * (this does not include geographic differential it may be applied based on your work location) Employees may be eligible for pay incentives based on overall corporate and individual performance or at the discretion of the USAA Board of Directors.

Geographical Differential: Geographic pay differential is additional pay provided to eligible employees working in locations where market pay levels are above the national average.

Shift premium: will be addressed on an individual-basis for applicable roles that are consistently scheduled for non-core hours.

Benefits: At USAA our employees enjoy best-in-class benefits to support their physical, financial, and emotional wellness. These benefits include comprehensive medical, dental and vision plans, 401(k), pension, life insurance, parental benefits, adoption assistance, paid time off program with paid holidays plus 16 paid volunteer hours, and various wellness programs. Additionally, our career path planning and continuing education assists employees with their professional goals. Please click on the link below for more details.
USAA Total Rewards (https://hrportal.ehr.com/usaa/Prospective-Employees)

Relocation assistance is Not Available for this position.

Keywords: USAA, Sun City West , IAM Active Directory Engineer, Lead- 100% REMOTE Opportunity, Engineering , Sun City West, Arizona