IAM Engineer II
The Capital Group
“I can succeed as an IAM Engineer II at Capital Group.”
As an InfoSec IAM Engineer II, you will be a contributing member of the Identity and Access Management (IAM) Engineering team and will help engineer security systems and tools for the enterprise.
Under general supervision, The IAM Engineer II will directly contribute to the stability, integrity, and smooth operation of information technology systems that support CG’s business functions. The IAM Engineer II will utilize programming, operations, engineering skills and training to provide a portfolio of security services for The Capital Group Companies by working closely with more senior engineers.
The IAM Engineer II will play a pivotal role in operational support of IAM systems by applying proven communication, analytical, and problem-solving skills to help identify, communicate, and resolve normal and complex issues to minimize outage and maximize the benefit of these systems.
“I am the person Capital Group is looking for.”
Core Responsibilities:
- Under general supervision, contribute to the stability, integrity, and smooth operation of information technology systems that support CG’s business functions.
- Implement and support security capabilities through effective engineering, release management, and operational rigor.
- Contribute to the planning, design, engineering, and operations of security solutions, focusing on IAM technologies.
- Safeguard privileged access with respect to key high-risk security platforms.
- Operate and support multiple security hardware and software technologies designed to protect information and prevent data leakage.
- Proactively identify issues and look for efficiencies to improve platform reliability.
- On call support (outside of standard business hours) for platforms supported by the IAM Engineering team.
Required Skills/Abilities:
- Hands on experience in either AWS IAM or Azure EntraID-
- Working knowledge of Okta or related identity providers
- Understanding common network attacks, attack methods, and network defense architectures
- Understanding common design, development, and deployment concepts for high-availability, distributed applications and integration solutions
Core requirements:
- 2 years’ experience working in an information security engineering function or similar.
- A bachelor’s degree in computer science, Information Security, or a related field (or equivalent work experience).
- Understanding of secure coding and development practices as it pertains to Software and Systems Development Lifecycles, Agile/Kanban experience preferred.
- Minimum 2 years’ experience Understanding of common identity and access management and privileged access platforms such as, (Active Directory must be an admin here), CyberArk, and cloud related security services or SailPoint preferred
- General programming experience or training with a modern programming language such as .Net, Python, PowerShell (active directory runs on this) or Java and common understanding of object-oriented design methodologies, patterns, best practices,
- Minimum 1-year General working knowledge of security protocols and standards like Security Assertion Markup Language (SAML), WS-Security, transport layer security (TLS), public/private key infrastructure (PKI or certificates)
- CISSP certification is a plus
Working conditions:
- Production operations support, releases/deployments of features and solutions
- On call support of platforms as subject matter expert
- Weekend work during upgrades or security incident responses
- Support or run Disaster Recovery exercises for the IAM Engineering platforms
Southern California Base Salary Range: $92,423-$147,877
San Antonio Base Salary Range: $75,980-$121,568
In addition to a highly competitive base salary, per plan guidelines, restrictions and vesting requirements, you also will be eligible for an individual annual performance bonus, plus Capital’s annual profitability bonus plus a retirement plan where Capital contributes 15% of your eligible earnings.
You can learn more about our compensation and benefits here.
* Temporary positions in Canada and the United States are excluded from the above mentioned compensation and benefit plans.
We are an equal opportunity employer, which means we comply with all federal, state and local laws that prohibit discrimination when making all decisions about employment. As equal opportunity employers, our policies prohibit unlawful discrimination on the basis of race, religion, color, national origin, ancestry, sex (including gender and gender identity), pregnancy, childbirth and related medical conditions, age, physical or mental disability, medical condition, genetic information, marital status, sexual orientation, citizenship status, AIDS/HIV status, political activities or affiliations, military or veteran status, status as a victim of domestic violence, assault or stalking or any other characteristic protected by federal, state or local law.