Engineer II, Information Security Assurance & Response

Join our team - and take the next step in achieving a fulfilling career!

What We Do

At CardWorks, we aim to help people connect with possibility and opportunity using our financial servicing expertise. Building meaningful, long-term relationships with consumers, our employees, and our clients is what matters most.

Who We Are

CardWorks Servicing, LLC provides end-to end operational servicing functions for credit cards, secured cards, and installment loans.  We service consumer and small business loans across the credit spectrum and offers backup servicing and due diligence services to capital providers and trustees.

Merrick Bank is an FDIC-insured Utah Industrial Loan Bank.  Merrick operates three main business lines:  credit cards, recreational lending, and merchant services.

Carson Smithfield, LLC provides a variety of post-charge-off debt recovery services, including digital self-service, IVR, live agent, and external agency management.

Position Summary: The Identity and Access Management (IAM) Engineer II will work with the Merrick Bank and CardWorks IT and information security teams. They will be involved in day-to-day activities regarding identity and access creation, risk-based access control, attribute-based access control, role-based access control, privileged access management, access modifications and access terminations specifically on Azure AD / Entra ID. They will engage in the support of tools and services within and external to the information IT and information security teams.  The IAM Engineer will design solutions, engineer integrations, configure changes, set-up processes, provide reporting, instruct other teams on said processes and integrations as well as manage tools and data.  They implement, operate, monitor, and improve information security processes and systems that protect the Companies data, customers, and computer systems from business disruption, data/identity compromise, cyber fraud, and regulatory criticism.     Essential Functions: Utilize information security tools and develop processes. Perform identity and access tasks based on daily process and or procedure. Participate in identity and access planning, design and feedback. Support application integrations with IAM suite of applications and tools. Create APIs where necessary to automate lifecycle management. Investigate, troubleshoot and fix issues and errors generated by IAM tools. Use a variety of tools to monitor tool operations, outages, errors, data integrity, etc. Work with others to assist with gathering information during penetration testing, incident handling/digital forensics, identity theft, and other types of identity or access concerns. Assist and/or Implement tools, processes, and communications that support information security initiatives. Participate in tactical projects as they arise to clarify and respond to identified security risks across different technical domains. Collaborate with engineers to implement standardized practices and follow routine processes to promote secure systems and proper visibility. Assists in the development of security policies and procedures. Provide metrics and reporting. Monitor and maintain the health of the Azure AD / Entra ID environment. Education and Experience: 3 years of administrator work experience in Azure AD / Entra ID. 3 years of work experience in IAM, cybersecurity engineering, and IAM tools. Bachelor’s degree in computer or cybersecurity-related studies, or equivalent broad experience required, five (5) years of related and equivalent experience accepted in lieu of education requirement. CISSP, CCSK, CompTIA Cloud , GCSA, CCSP, AWS Security Certification, CIST, CIAM, CIMP, CAMS or other recognized certifications are also desirable Familiarity with highly-regulated industries, and specifically the banking industry (including PCI, SOX, SOC 1 & 2, and FDIC regulations) is desirable.   Summary of Qualifications: Ability to perform administrative configuration of Azure AD / Entra ID. Ability to support integrations into AzureAD / EntraID. Strong knowledge of APIs. Strong understanding of SSO, oauth, OpenID and SAML. Strong understanding of Azure AD including lifecycle management for all account types. Ability to analyze, interpret and correct data inconsistencies, errors, gaps, and inaccuracies for impact. Strong understanding of IAM principles including details for joiner, mover, leaver operations. Strong understanding of IAM workflows from systems of record to IAM apps to downstream applications. Strong knowledge of AWS. Experience with Sailpoint a plus. Experience with Workday integrations Experience with PowerShell scripting and automation.

Our Employee Value Proposition

• Competitive Pay, including a Bonus Target or Variable Pay Incentive Program 
• Benefits Package -Medical, Dental, and Vision (plus much more) 
• 401(k) Plan with Company Match 
• Short- & Long-Term Disability 
• Wellness Programs 
• Group Life and AD&D Insurance 
• Paid Vacation, Sick Days and bank Holidays 
• Employee Engagement Activities including Employee Appreciation Day, DEI Employee Resource Groups, Corporate Social Responsibility, Service Recognition

We offer a total rewards package comprised of a competitive base rate of pay, variable pay incentive programs based on the role, and a comprehensive benefit suite.  Offered rates of pay are determined based on job-related knowledge, relevant experience, skills, certifications, and geographic location.

We are an equal opportunity employer, and we evaluate qualified applicants without regard to race, color, religion, sex, national origin, disability, veteran status or any other legally protected characteristic.  We will conduct a thorough background check for all hires in compliance with applicable.