[Remote] Senior Systems Engineer Identity Access Management - Fully Remote
Note: The job is a remote job and is open to candidates in USA. NMDP is a leader in providing identity and access management solutions, and they are seeking a Senior Systems Engineer to provide technical leadership in Identity & Access Management and IT Productivity & Collaboration services. The role involves designing, implementing, and administering identity governance and enterprise identity services, ensuring secure and reliable operations across various platforms.ResponsibilitiesDesign, implement, and maintain IAM/IGA capabilities (directory services, SSO/federation, and privileged access) using Okta, Active Directory, and Microsoft Entra to deliver secure, reliable accessLead discovery and solution delivery for IAM initiatives (requirements, design, build, testing, and rollout); evaluate options and recommend best-fit approaches with internal teams and vendorsAutomate identity lifecycle (joiner/mover/leaver; provisioning/deprovisioning) and related administration using scripting and modern tooling to reduce manual effort and riskDefine and enforce access governance (RBAC/ABAC), policies, workflows, and secure access patterns (SSO/MFA/conditional access alignment and least-privilege role design), including periodic access reviewsSupport security and compliance by remediating identity-related vulnerabilities and supporting audits, penetration tests, and access reviews with evidence, reporting, and corrective actionsOnboard and integrate applications and platforms (SaaS and Microsoft 365) using standards-based connectors/integrations; partner with application owners to validate requirements, data flows, and security controlsOwn and administer Microsoft 365 and collaboration services (Teams, SharePoint/OneDrive, Exchange Online) and adjacent SaaS tools, including hybrid identity/access integrations and roadmap executionOperate and improve services through monitoring, dashboards/alerts, incident and problem management (RCA/post-incident reviews), and on-call participation; troubleshoot authentication/authorization/provisioning issues to restore servicePlan, test, and deliver changes using NMDP change management and ITSM practices; validate outcomes and transition to steady-state supportCreate and maintain documentation and enablement (standards, runbooks, procedures, and knowledge articles); support tiered support and knowledge transfer with Service Desk/L2Support privileged access practices using approved vaulting and secrets management (e.g., Delinea Secret Server) for administrative accounts, service accounts, and automation credentialsPartner with Procurement/Vendor Management on renewals, licensing optimization, and vendor escalations; identify cost-saving opportunities through usage analysis and right-sizingEvaluate and adopt new features and products (including collaboration AI capabilities) via pilots, guardrails, and measured rolloutsOther duties as assignedSkillsKnowledge of IAM/IGA concepts and practices, including identity lifecycle (joiner/mover/leaver), provisioning/deprovisioning, and access recertificationKnowledge of identity standards and protocols (SAML, OAuth/OIDC, SCIM) and how they are used for SSO/federation and application integrationsKnowledge of Okta, Active Directory, and Microsoft Entra ID administration and configuration concepts (tenant/directory structure, groups, app assignments, conditional access/access policies)Knowledge of privileged access management principles and controls (least privilege, role-based access, privileged roles/accounts, access request/approval workflows)Knowledge of security and compliance practices related to identity services, including logging/monitoring, vulnerability remediation, audit evidence collection, and access reviewsKnowledge of enterprise IT operations practices (incident/problem management, change control) and creating/supporting technical documentation such as procedures and runbooksAbility to demonstrate strong interpersonal and organizational skills, demonstrated success in working both independently and in a team environmentAbility to demonstrate above-average written and oral communication skillsAbility to demonstrate strong analytical and creative problem solving, and the ability to manage multiple and rapidly changing prioritiesAbility to work effectively both independently and collaboratively across technical and non-technical teamsAbility to communicate clearly in writing and verbally, including translating technical concepts for varied audiencesAbility to analyze complex issues, solve problems systematically, and manage multiple priorities in a fast-changing environmentAbility to have hands-on experience with the relevant technologies and solutions for fulfilling the activities in the accountabilities sectionEducation: Bachelor's degree in computer science, Management Information Systems, Computer Science, Information Security or related field (or equivalent related experience and/or education)Experience: Minimum of five or more years of experience in engineering and supporting solutions in a heterogeneous enterprise IT environmentModern Workplace/Automation: Defines and completes project tasks, including scripting, related to workplace automation, leveraging Intune, SharePoint (including migrations), Viva, PowerApps, Power Automate, Microsoft Power Platform, etcStrong experience with Okta tenant configuration and core components (policies, claims, scopes, access policies) beyond day-to-day administrationExperience partnering with application developers and using Okta APIs to automate integrations and workflowsExperience with log management and reporting tools (e.g., Varonis, Okta reporting) for monitoring and investigationBenefitsMedicalDentalVisionLife and disabilityAccident/critical illness/hospitalWell-beingLegalIdentity theftPet benefitsRetirementPaid time off/holidaysLeaveIncentive plansCompany OverviewNMDP is a non-profit organization that specializes in cell therapy, offering treatments and cures for blood cancer and disorders. It was founded in 1987, and is headquartered in Minneapolis, Minnesota, USA, with a workforce of 1001-5000 employees. Its website is https://www.nmdp.org.