IAM Engineer

At Ensono, our Purpose is to be a relentless ally, disrupting the status quo and unleashing our clients to Do Great Things!  We enable our clients to achieve key business outcomes that reshape how our world runs. As an expert technology adviser and managed service provider with cross-platform certifications, Ensono empowers our clients to keep up with continuous change and embrace innovation.

We can Do Great Things because we have great Associates. The Ensono Core Values unify our diverse talents and are woven into how we do business. These five traits are the key to achieving our purpose: Honesty, Reliability, Curiosity, Collaboration, and Passion.

About the role and what you'll be doing:   The IAM Engineer is responsible for designing, implementing, and maintaining identity and access management solutions with a particular emphasis on vulnerability management across systems and applications. This role leverages automation (including PowerShell scripting) integrates with leading IAM platforms such as CyberArk, and collaborates with security and IT teams to ensure robust access controls and risk mitigation.

Key Responsibilities:

• Design, deploy, and manage IAM solutions, including privileged access management using tools such as CyberArk and other life cycle management platforms.
• Develop and maintain automation scripts (primarily in PowerShell) to streamline IAM processes, user provisioning, access reviews, and remediation activities.
• Integrate IAM systems with enterprise applications, cloud platforms, and infrastructure, ensuring secure and efficient access management.
• Configure and manage user, group, and role-based access controls across multiple environments.
• Collaborate with vulnerability management teams to baseline and manage risks due to vulnerabilities in systems and applications.
• Enable authenticated scanning for critical systems and validate remediation efforts.
• Ensure IAM and vulnerability management processes comply with regulatory requirements and internal security policies.
• Assist with audit requirements by providing evidence of access controls, scan results, and remediation activities.
• Monitor and respond to security events related to identity and access, escalating issues as necessary.
• Communicate technical findings and recommendations to stakeholders through detailed reports and presentations.

We want all new Associates to succeed in their roles at Ensono. That's why we've outlined the job requirements below. To be considered for this role, it's important that you meet all Required Qualifications. If you do not meet all of the Preferred Qualifications, we still encourage you to apply. 

Required Qualifications:

• Bachelor’s degree in Information Technology, Computer Science, Cybersecurity, or related field, or equivalent experience.
• Hands-on experience with IAM platforms (CyberArk, Forge Rock, IGL, etc.) and vulnerability management tools.
• Strong experience with automation scripting (PowerShell required).
• Strong understanding of access control models, privileged access management, and vulnerability assessment methodologies.
• Experience with cloud platforms, enterprise applications, and hybrid environments.
• Excellent analytical, problem-solving, and communication skills.
• Must be a US citizen due to client requirements.

Preferred Qualifications:

• Certifications in IAM, cybersecurity, or vulnerability management (e.g., CyberArk Certified Delivery Engineer, CompTIA Security+, CISSP).
• Experience with additional automation tools and scripting languages.
• Familiarity with regulatory compliance frameworks (PCI-DSS, GDPR, HIPAA, etc).

Why Ensono?

Ensono is a place to make better happen – for our clients and for your career. You can do great things through innovation or collaboration, by learning or volunteering, or to promote diversity and inclusion. You can do great things for your own health or for a healthier planet. Whatever it means to you to do great things we want Ensono to be the place you can do it. 

We are a client-facing business, but we do encourage clients to allow us to work remotely most of the time so if you are not required to be on a client site, you can choose to work from home or in our Ensono offices.

Some of our benefits include:

• Unlimited Paid Days Off
• Three health plan options through Blue Cross Blue Shield
• 401k with company match
• Eligibility for dental, vision, short and long-term disability, life and AD&D coverage, and flexible spending accounts
• Paid Maternity Leave, Paternity Leave, and Sabbatical Leave
• Education Reimbursement, Student Loan Assistance or 529 College Funding
• Enhanced fertility coverage
• Wellness program
• Depending on location, ability to take advantage of fitness centers
• Flexible work schedule

As of the date of this posting, a good faith estimate of the current pay scale for this role is $95,000 to $135,000 annually based on a full-time schedule. Please note that placement in the range may vary based on numerous factors including but not limited to skills, experience, internal equity, and business needs. In addition to base salary, other compensation programs, depending on eligibility, include an annual bonus plan based on company and individual performance, and an equity grant under our Associate Equity Appreciation Program.

Ensono is an Equal Opportunity/Affirmative Action employer. We are committed to providing equal employment to our Associates and building a diverse and inclusive workforce. All qualified applicants will be considered without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability, or other legally protected basis, in accordance with applicable law.

Pay transparency nondiscrimination statement/posting OFCCP’s pay transparency policy can be found on OFCCP’s website.

If you need accommodation at any point during the application or interview process, please let your recruiter know or email [email protected].