Sr. IAM Engineer

Company Details

Berkley Technology Services (BTS) is a dynamic company committed to providing world class IT services. We offer a unique culture, enabling our team members to be on the cutting edge of technology while delivering high quality solutions. We are looking for outstanding individuals who will bring unique perspectives, insight and innovation to our teams. BTS, a member company of W. R. Berkley Corporation, has facilities located in Des Moines, Iowa and Wilmington, Delaware.

Our functions include working with various third parties to develop, integrate, and support insurance systems of WRBC's operating units. BTS strives to provide these functions in a holistic manner including helpdesk support, system connectivity, and operational support. Additional responsibilities include coordinating communications regarding best practices in the use of our supported systems and researching new technology. At BTS, there are opportunities associated with being a part of an established and empowering corporation while maintaining a positive personal working environment. Additionally, we provide a competitive compensation and benefits package including a casual dress code. BTS is constantly growing and expanding to meet the changing demands of one of the most successful insurance organizations in the world. Visit us at berkley-bts.com to learn more information.

The Company is an equal employment opportunity employer. 

Responsibilities

The Sr. Identity and Access Management Systems Engineer is responsible for all IAM related activities and architecture, including support and care of existing IAM systems. Design and build of new systems, working closely with shared services teams, applications teams, and business units to meet support and project goals.

• In-depth experience with Okta, Federation, SSO & MFA technologies
• Creation and Continuous Improvement on RBAC for both on prem and Azure functionality
• Scripting (PowerShell) / Automation of I&AM Practices
• Strong ADFS Experience
• Ability to communicate detailed oauth grant types and flows including risks associated with specific flow types
• Clear understanding and ability to communicate the access control mechanisms for REST API’s
• Serve as liaison to vendors (e.g. Microsoft, Okta,etc ) to facilitate problem resolution.
• Work with application teams to understand Okta and SSO integration abilities
• Participate and develop an IAM strategy and roadmap for enterprise stakeholders.
• Have experience migrating large systems over multiple years
• Serve as a Lead Engineer on engagements and work directly with Project Management, Account Management, and Customer teams.
• Ability to speak confidently about the role of authn and authz
• Develop the planning, architecture, and oversee the implementation of policies and procedures to ensure system provisioning and maintenance is consistent with company goals, industry best practices, and regulatory requirements.
• Conduct research on emerging products, services, protocols, and standards in support of systems software procurement and development efforts.
• Exposure with NTLM, Windows-Integrated Auth, Kerberos
• Manage end user accounts, permissions, access rights, and storage allocations in accordance with best-practices regarding privacy, security, and regulatory compliance.
• Participate and adhere to defined incident, problem and change management best practices.
• Excellent communication skills particularly across functional technical areas.
• Mentor and cross train other team members in key skill sets.

Qualifications

• High School Diploma or equivalent required; 6-14 years of experience with a Bachelor’s degree preferred.
• Extensive knowledge and hands on experience with SAML, ADFS (or Federation Service), MFA, and Okta.
• oauth and OIDC Protocol Experience
• Experience leading and managing projects
• Superior problem-solving skills
• Ability to master new technologies and applications quickly
• Excellent communication, time management, organization, and planning skills
• Strong communication skills, both written and verbal