HiringCafe
This job has expired

This job posting is no longer active and is not accepting applications. Explore similar roles below!

Posted 3w ago

IAM Engineer

@ Delaware North
View All Jobs
Buffalo, New York, United States
OnsiteFull Time
Responsibilities:Design Okta, Maintain tenants, Automate provisioning
Requirements Summary:Bachelor's degree in computer science, cybersecurity, information systems, or equivalent; 3-5 years IAM engineering; strong SAML 2.0, OAuth 2.0, OpenID Connect, SCIM; SaaS/on-prem integration; Okta expertise; scripting; compliance experience.
Technical Tools Mentioned:Okta, SAML, OAuth, OpenID Connect, SCIM, MFA, PowerShell, Python
Save
Mark Applied
Hide Job
Report & Hide
Job Description
Overview:

Delaware North is hiring a full-time IAM Engineer to join our team in Buffalo, New York. As an IAM Engineer, you will be responsible for establishing and advancing a secure, scalable, and user-centric Identity and Access Management capability across Delaware North. If you are analytical, strategic, and thrive in a dynamic environment, we encourage you to apply. 



Additional Details:

At Delaware North, we care about our team members' personal and professional journeys. These are just some of the benefits we offer: 

  • Medical, dental, and vision insurance
  • 401(k) with up to 4% company match 
  • Annual performance bonus based on level, as well as individual, company, and location performance
  • Paid vacation days and holidays
  • Paid parental bonding leave
  • Tuition and/or professional certification reimbursement
  • Generous friends-and-family discounts at many of our hotels and resorts


Responsibilities:
  • Design, implement, and maintain enterprise Okta tenants with workforce identity, lifecycle management, and high availability in mind 
  • Administer identity foundations, including Universal Directory, group rules, profile mastering, attribute mappings, and RBAC governance 
  • Automate provisioning and deprovisioning through Okta Workflows, API driven identity flows, and custom scripts to streamline operations 
  • Integrate cloud and on-premises applications with Okta using modern authentication standards and downstream SaaS connectivity 
  • Enforce least privilege access, Zero Trust principles, adaptive MFA, and risk-based authentication to strengthen identity security 
  • Monitor authentication activity, respond to identity-related incidents, and support incident response and root cause analysis efforts 
  • Partner with GRC, Security Operations, DevOps, and Cloud teams to meet regulatory requirements, secure CI CD integrations, and support audits and access reviews 
  • Document architecture and standards, evaluate emerging identity technologies, contribute to cybersecurity strategy, and mentor junior engineers 


Qualifications:
  • Bachelor's degree in computer science, cybersecurity, information systems, or equivalent experience   
  • Minimum of 3-5 years of experience in IAM engineering with experience in large, distributed enterprise environments 
  • Strong understanding of SAML 2.0, OAuth 2.0, OpenID Connect, SCIM provisioning, MFA and adaptive authentication frameworks, and directory services    
  • Experience integrating SaaS and on-prem applications 
  • Strong scripting skills with PowerShell, Python, or similar 
  • Experience supporting compliance frameworks such as SOX and PCI, and familiarity with Privileged Access Management tools 
  • Okta Certified Administrator or Okta Certified Professional 
  • Experience in hospitality, gaming, sports, or multi-site operational organizations 
  • Experience with cloud platforms AWS, Azure, and GCP  
  • Must be legally authorized to work in the US.