DESCRIPTION

Amazon's Customer Fulfillment Technology Security team is seeking a dynamic, multifaceted identity and access management (IAM) engineer to develop and implement the IAM program within Amazon's global Fulfillment Operations. You must be a "bar-raiser" in the design and implementation of strategic technologies and solutions for the massive scale of digital security systems. This is a visible role and will interact broadly across many technical teams. This is an ideal role for someone who wants to have a large impact on this fast-growing, cutting-edge business. This is not an administrative role. You will be creating and building Identity and Access Management solutions.

Job Responsibilities:
• Deliver products and services to enable effective Identity and Access Management throughout Operations
• Enforce compliance with IAM principals including: least privilege access, password management, Audit logging, RBAC, certificate issuance and revocation, and AAA solutions.
• Understand the Amazon identity management ecosystem holistically and identify existing services and capabilities that may solve existing problems
• Develop, deploy and maintain password management, user account lifecycle, certificate management and system authentication solutions within operations
• Engage with and influence the many stakeholders and interested parties to ensure compliance, security and operational functional requirements are met or exceeded
• Create and implement automated processes that reduce manual efforts and increase overall efficiency and scalability
• Develop monitoring and reporting on the health, effectiveness and efficiency of IAM services
• Improve the efficiency and scalability of operational systems and processes to accommodate the rapid growth of users

BASIC QUALIFICATIONS

• 5+ years of relevant work experience in the identity and access management field
• Bachelor's degree in engineering or related discipline
• Experience communicating with technical and non-technical stakeholders at all levels across multiple business units
• Experience establishing and maintaining strong working relationships with a wide variety of stakeholders (e.g. Legal, Business Development, Internal Audit, Fraud Prevention, Physical Security, Software Developer Community, Network Engineering, etc.)
• Experience building processes, project management, and release schedules
• Thorough understanding of common authentication standards (OAUTH, SAML, FIDO, etc)
• Deep knowledge of authentication protocols (LDAP, Kerberos, etc)
• Hands-on experience with OAuth 2.0, OpenID Connect and SAML 2.0 protocols and deployment

PREFERRED QUALIFICATIONS

• Sound knowledge of Microsoft .NET/C# programming, Active Directory Federation Services (ADFS)
• Familiarity with AWS Security controls and deployment
• Exposure to cloud AAA technologies (i.e. AWS)
• Knowledge and experience with Identity and Access Management technologies, particularly (AWS Cognito and Federate)
• Experience with user provisioning, system authorization, PKI, MFA, AAA solutions, and password vaulting systems and services
• 5+ years' experience working on large scale systems (as a developer, engineer, or program manager)
• Previous experience in factory, manufacturing or Industrial Control System environments
• CISSP in good standing
• Excellent problem-solving skills and development of creative solutions
• Excellent leadership, teamwork and collaboration skills
• Results oriented, high energy, self-motivated
• Naturally curious and continual learner
• Familiarity with Information security technologies and controls
• Familiarity with operations resiliency and failure mode analysis in large complex distributed systems
• Familiarity with service-oriented and web-service technologies

Amazon is an Equal Opportunity-Affirmative Action Employer - Minority / Female / Disability / Veteran / Gender Identity / Sexual Orientation.

We believe passionately that employing a diverse workforce is central to our success and we make recruiting decisions based on your experience and skills. We welcome applications from all members of society irrespective of age, gender, disability, sexual orientation, race, religion or belief.