Recognized as a strong resource within the company for Identity & Access Management Services and Platforms
A career at New York Life offers many opportunities. To be part of a growing and successful business. To reach your full potential, whatever your specialty. Above all, to make a difference in the world by helping people achieve financial security. It's a career journey you can be proud of, and you'll find plenty of support along the way. Our development programs range from skill-building to management training, and we value our diverse and inclusive workplace where all voices can be heard. Recognized as one of Fortune's World's Most Admired Companies, New York Life is committed to improving local communities through a culture of employee giving and service, supported by our Foundation . It all adds up to a rewarding career at a company where doing right by our customers is part of who we are, as a mutual company without outside shareholders. We invite you to bring your talents to New York Life, so we can continue to help families and businesses "Be Good At Life." To learn more, please visit LinkedIn , our Newsroom and the Careers page of www.NewYorkLife.com .
Job Listing Detail
A career at New York Life offers many opportunities. To be part of a growing and successful business. To reach your full potential, whatever your specialty. Above all, to make a difference in the world by helping people achieve financial security. It's a career journey you can be proud of, and you'll find plenty of support along the way. Our development programs range from skill-building to management training, and we value our diverse and inclusive workplace where all voices can be heard. Recognized as one of Fortune's World's Most Admired Companies, New York Life is committed to improving local communities through a culture of employee giving and service, supported by our Foundation. It all adds up to a rewarding career at a company where doing right by our customers is part of who we are, as a mutual company without outside shareholders. We invite you to bring your talents to New York Life, so we can continue to help families and businesses "Be Good At Life." To learn more, please visit LinkedIn, our Newsroom and the Careers page of www.NewYorkLife.com.
About the Identity and Access Management Program
The Identity & Access Management (IAM) program is a multi-year initiative focused on upgrading to best-in-class systems and processes in order to build a strong foundation for our organization's information security. MyAccess is a new platform that was introduced through the IAM Program with the strategic goal to streamline the process of requesting, managing, reviewing and certifying access to applications. It provides self-service functionality and an enhanced user experience.
Serving as an IAM Engineer provides a unique opportunity to help shape and influence the way in which we drive one of the most strategic initiatives at New York Life. The position will be responsible for collaborating with matrixed teams across technology and the business to ensure their people, processes and technologies are properly integrated and managed via our IAM solutions. It is expected that the IAM Engineer will provide advice to management related to any program challenges or opportunities encountered on a day to day basis. The role will be responsible for driving the onboarding efforts of applications to the SailPoint Identity IQ product while providing technical architecture advice to key program stakeholders. This role will also be responsible for operating in a program team environment where detailed status and control updates are required to be provided for management consumption. The role will also be responsible for planning and directing the day to day functional activities of the business/technical staff from each application team they are assigned. This individual will often have to learn on their own and remain on the cusp of new technologies in the IAM space. This position will report into the Identity and Access Governance Functional Lead.
Implements the strategy to address internal or external business and regulatory issues
Proactively identifies and solves complex problems that impact the management and direction of the business
Contributes to the development of functional strategy
Works on multidisciplinary projects and processes
Perform the requirements, design, development, testing and implementation activities related to scalable IAM solutions that meet business requirements, policies, and IS standards.
Architect and design solutions that integrate with new or existing IAM platforms including provisioning, de-provisioning and integration of applications for authentication
Work with stakeholders to define and document business requirements and technical design documentation for the development of new connectors and robotics automation for business and technology applications
Work with stakeholders to define and document new applications within SailPoint Identity IQ for automated and semi-automated provisioning, including related SoD, custom provisioning forms/work items
Engineer, deploy, and maintain new data subsystems used in Identity Management and Access Management ecosystems, i.e. audit log repository and reporting, IAM Data Analytics capability that spans our multiple warehouses and repositories, ETL plant for effective and efficient data manipulation in and out of Identity Management and Access Management (IAM) context as well as between our own systems, and the seamless migration off and decommission of legacy repositories.
Assist with the development and maintenance of IAM related policies, standards and processes
Define and document requirements for enhanced IAM services such as base account provisioning and password sync (Password interceptor & Desktop Reset)
Maintain alignment of IAM vision with Information Security objectives and business requirements
Establish a continual service improvement plan and improve overall IAM service, focusing on operational, process and resource efficiency
Establish and provide metrics that provide visibility in to performance, control compliance and efficiency of the IAM effort
Assist with development and maintain process and control documentation supporting IAM services
Assist with the development and delivery of training materials related to IAM processes and technologies
Design, engineer and support a database to host Identity Management and Access Management (IAM) Reference Data required to support our Identity Management and Access Management business processes. This may be enhancements or an aggregation of existing repositories, EMP and EPR.
Consult with key business stakeholders to evaluate functional requirements and translate these requirements into information security solutions.
Provide guidance to business partners about applicability of information security to meet business needs.
Support the documentation and accreditation processes necessary to ensure that new IT systems meet the organization's information security requirements.
Respond to crisis or urgent situations to mitigate immediate and potential threats. Investigates and analyzes all relevant response activities.
Ensure that IS security architecture, designs, plans, controls, processes are aligned with IS strategy and standards.
Represent Information Security in cross-functional meetings and projects.
Perform other duties and/or special projects as assigned
Advance IAM by driving policy and standard adoption and compliance
Core Technical Requirements:
4+ years of experience in information technology, with a focus on information security in one or more of the following areas: IAM, cyber threats, security operations, data loss prevention, threat intelligence, security architecture, policy/governance
4+ years of experience in configuring and administering SailPoint IIQ and Security IQ
Experience with configuring and maintaining SailPoint Identity IIQ, specifically performing role mining, RBAC, access certifications, workgroups, workflows
Experience in deploying SailPoint IIQ and Security IQ, including full development of workflows, provisioning forms, custom forms, base account provisioning, password management, reports, access certifications, out-of-the-box connectors, custom connectors
Knowledge of federated identity and web services security concepts such as SAML, Liberty ID-FF and ID-WSF, WS-Federation, OpenID, OAuth and WS-Security
Familiarity of RPA tools and related implementations
Experience in SOX/MAR documentation and related controls
4+ years documenting business and technical requirements, project plans, issues/risks
4+ years project management experience using both waterfall and agile methodologies
4+ years of experience managing projects through the full system development lifecycle
4+ years of experience with developing and maintaining run support procedures, standards and controls, including aggregation review and issue resolution, SoD violation reviews, NPE tracking and follow-up, native control reviews, password masking and encryption best practices
4+ years of architecture experience in a hands-on role
4+ years of experience with Active Directory, ODSEE or Ping
4+ years of experience with Windows, Linux and Solaris Operating Systems knowledge
4+ years of experience with one or more directories such as CA Directory, Oracle Directory, AD, Ping, or IBM Directory Server
4+ years of experience with one or more databases such as Oracle, IBM and MS SQL etc.
4+ years of experience with: major operating systems such as Microsoft Windows and Unix; mainframe security packages such as TopSecret, ACF2 and RACF; and/or leading packaged application solutions for ERP systems, Active Directory, Exchange, CRM systems or portals
Bachelor's degree in Computer Science, Information Systems or equivalent related field preferred, with a minimum of 4 years of experience in Information Technology OR in lieu of the Bachelor's degree, a minimum of 5 years of experience in Information Technology.
- Master's degree in Computer Science, Information Systems preferred
- CISSP, J2EE or equivalent a plus
If you have difficulty using or interacting with any portions of this Web site due to incompatibility with an Assistive Technology, if you need the information in an alternative format, or if you have suggestions on how we can make this site more accessible, please contact us at: (212) 576-5811.
Job Segment: Oracle, Social Media, Database, Information Systems, Engineer, Technology, Marketing, Engineering