IAM Engineer - NYC (only W2)

Title: IAM Engineer

Company: NYULangone Health

Location: 1x a week at 1 Park, NYC

Openings: 2

Duration: 6-month contract extensions

Must be comfortable receiving health screens and flu vaccinations.

Must-haves:

• 4 years of experience as an Engineer focused on identity and access management for an enterprise-level company (AD, Entra, Azure, AWS & GCP )
• Strong knowledge of IAM concepts, frameworks, and technologies (e.g., RBAC, ABAC, SSO, MFA)
• Proficiency with IAM tools and platforms.
• Experience with scripting and automation for identity management processes (e.g., PowerShell, Python, Terraform).
• Bachelor’s degree in computer science, Information Technology, or a related field.

The certifications are Huge Plus:

• SC-300: Microsoft Identity and Access Administrator
• AZ-305: Designing Microsoft Azure Infrastructure Solutions
• AZ-500: Microsoft Azure Security Technologies

Day-to-Day

We are looking for an Active Directory Engineer for an enterprise healthcare organization in New York City. He/She will be responsible for designing, implementing, and managing Entra ID and Azure IAM solutions that protect the organization's critical assets. This candidate will set up and manage access controls in Azure and create cloud environments following best practices. They will collaborate with cross-functional teams to ensure that our cloud infrastructure is secure, scalable, and efficient. Below are additional responsibilities:

• Design, implement, and manage Azure RBAC policies to enforce least privilege access across Azure resources.
• Develop and maintain cloud landing zones in Azure, following established frameworks (e.g., Cloud Adoption Framework, Well-Architected Framework).
• Collaborate with security teams to ensure compliance with industry standards and best practices.
• Monitor and audit access permissions, recommending changes as necessary.
• Provide guidance and support to development teams on Azure security best practices.
• Create and maintain documentation related to RBAC configurations and landing zone architectures.
• Troubleshoot and resolve issues related to Azure security and access control.
• Implements the Identity and Access Management systems and solutions. Review system, user, and administrative roles and accounts and understand access levels for platforms. Leads cross-functional teams through the entire implementation process.
• Creates accurate documentation of IAM-related technical requirements, designs, infrastructure, and support processes.
• Contributes to the development of overall IAM technical strategies, designs, standards, and procedures that support business strategies.
• Supports in troubleshooting and solving a wide variety of security-focused IAM issues.
• Ensures compliance with corporate policies and procedures, ethical practices, and regulatory guidelines. Performs other duties as assigned.