What are the responsibilities and job description for the Identity Access & Management Engineer position at Bayview Asset Management, LLC?
Overview
POSITION SUMMARY:
We are seeking an experienced Identity Access & Management (IAM) Engineer to support our enterprise identity and access management initiatives. This role will focus on authentication, authorization, provisioning, privileged access management (PAM), and overall enterprise IGA administration. The IGA Engineer will play a key role in ensuring secure and efficient access to systems and applications while maintaining compliance with internal policies and regulatory requirements.
ESSENTIAL DUTIES AND RESPONSIBILITIES:
The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
While performing the duties of this job, the employee is regularly required to sit and use hands to handle, touch or feel objects, tools, or controls. The employee frequently is required to talk and hear. The noise level in the work environment is usually moderate. The employee is occasionally required to stand; walk; reach with hands and arms. The employee is rarely required to stoop, kneel, crouch, or crawl. The employee must regularly lift and/or move up to 10 pounds. Specific vision abilities required by this job include close vision, color vision, and the ability to adjust focus.
EEOC
Bayview is an Equal Employment Opportunity employer. All aspects of consideration for employment and employment with the Company are governed on the basis of merit, competence and qualifications without regard to race, color, religion, sex, national origin, age, disability, veteran status, sexual orientation, or any other category protected by federal, state, or local law.
POSITION SUMMARY:
We are seeking an experienced Identity Access & Management (IAM) Engineer to support our enterprise identity and access management initiatives. This role will focus on authentication, authorization, provisioning, privileged access management (PAM), and overall enterprise IGA administration. The IGA Engineer will play a key role in ensuring secure and efficient access to systems and applications while maintaining compliance with internal policies and regulatory requirements.
ESSENTIAL DUTIES AND RESPONSIBILITIES:
- Design, implement, and maintain IGA solutions to automate user provisioning, deprovisioning, and access reviews.
- Configure and manage role-based access control (RBAC), attribute-based access control (ABAC), and policy-based access controls.
- Develop workflows for user lifecycle management (Joiner-Mover-Leaver).
- Ensure compliance with internal security policies and external regulations.
- Enforce security policies related to authentication and access control.
- Implement and maintain PAM solutions to secure access to privileged accounts and credentials.
- Maintain and optimize IGA platform configurations.
- Monitor and troubleshoot identity-related incidents and service requests.
- Work with cross-functional teams to implement IAM best practices.
- Provide technical guidance on IAM strategies and solutions.
- Bachelor's degree in Computer Science, Cybersecurity, Information Systems, or a related field (or equivalent experience).
- 3-5 years of experience in Identity & Access Management.
- Hands-on experience with IGA platforms (e.g., SailPoint IdentityNow/IdentityIQ, Saviynt, Okta Identity Governance, Microsoft Entra ID Governance, One Identity, etc.).
- Strong knowledge of authentication protocols and technologies (LDAP, SAML, OAuth, OpenID Connect, Kerberos).
- Experience with PAM solutions (e.g., CyberArk, BeyondTrust, HashiCorp Vault, Thycotic/Delinea).
- Familiarity with Active Directory (AD), Azure AD (Entra ID), SCIM, and API-based integrations.
- Scripting skills in PowerShell, Python, or similar languages for automation.
- Understanding of regulatory requirements related to IAM (e.g., SOX, HIPAA, NIST, ISO 27001).
- Experience with Cloud IAM (AWS, Azure, GCP).
- Knowledge of Zero Trust Architecture (ZTA) principles.
- Relevant certifications: CISSP, CISM, GIAC, Microsoft SC-300, SailPoint Certified Engineer, Okta Certified Professional/Administrator, CyberArk Defender/Guardian, etc.
- This role can be a fully remote position based anywhere in the US with minimal to no travel required.
- Base compensation is expected to be $110,000-$135,000 with the opportunity for incentive compensation including bonus compensation.
The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
While performing the duties of this job, the employee is regularly required to sit and use hands to handle, touch or feel objects, tools, or controls. The employee frequently is required to talk and hear. The noise level in the work environment is usually moderate. The employee is occasionally required to stand; walk; reach with hands and arms. The employee is rarely required to stoop, kneel, crouch, or crawl. The employee must regularly lift and/or move up to 10 pounds. Specific vision abilities required by this job include close vision, color vision, and the ability to adjust focus.
EEOC
Bayview is an Equal Employment Opportunity employer. All aspects of consideration for employment and employment with the Company are governed on the basis of merit, competence and qualifications without regard to race, color, religion, sex, national origin, age, disability, veteran status, sexual orientation, or any other category protected by federal, state, or local law.
Salary : $110,000 - $135,000
