Identity and Access Manager

Feb 06, 2018
Institution Type
Four-Year Institution

Identity and Access Manager

Department : Pacific Technology Security

Campus : Stockton

Posting Number : 201301262P

Full or Part Time : Full Time

Number of Months : 12

Work Schedule
Work performed during standard business hours.

Open Date : 01/31/2018

Open Until Filled : Yes

Position Summary Information
Primary Purpose
Identity and Access Management (IAM) Manager will partner with other Information Services (IS) departments and business stakeholders to develop and implement Identity and Access Management capabilities that enable the full lifecycle management of Pacific account identities, credentials and entitlements according to security, privacy and compliance requirements. Provides operational leadership of the IAM team and will manage the IAM Program at Pacific.

Essential Functions
1. Leads in direction, security architecture oversight, and management of identity integrations and contact data between University systems, including ERP, CRM, and other systems.

2. Collaborates with stakeholders across the University to understand and document IAM business processes currently in use and assist in developing and implementing scalable processes based on best practice.

3. Manages day-to-day operation of identity management functions currently provided by information security team, including authentication, approval of exceptions, investigation, and other tasks.

4. Ensures documentation of all University identity management systems, including business process, integration architecture, flow charts, source code, and other documentation deemed necessary is maintained.

5. Serves as main contact for consultation, support and integration of enterprise single sign-on, identity federation, and integration services with departmental IT staff, outside organizations, and vendors to design, evaluate and implement services.

6. Working with stakeholders, vendors, and IT, identifies, documents, and leads remediation of information security and operational issues impacting University identity management systems.

7. Leads in developing a vision and execution plan for centralizing and updating IAM to meet University policy and industry best practices using technologies such as multi-factor authentication, single sign-on, and federated identity management.

8. Provides reports and presentations on the status of identity management systems to management and technical staff.

9. Maintains a deep understanding of best practices and standards for IAM in higher education through contact with professional and trade organizations, peers, technical partners, and other sources.

10. Performs other related duties incidental to the work described herein.

Minimum Qualifications
  • Five (5) years of experience working in Identity and Access Management function, or related IT Security environment.
  • Two (2) years of experience leading the development, design and implementation of IAM solutions.

    Preferred Qualifications
  • Bachelor's degree with concentration in Business, Management, Information Technology/Services or related field
  • One (1) or more information security or identity and access management certifications are preferred. Examples include but are not limited to: CIAM, CAMS, CISA etc.
  • Certification in IAM products including SailPoint, Oracle, ForgeRock, Ping, Okta, CA, Microsoft.
  • Excellent troubleshooting and problem-solving skills and ability to research and learn outside of formal training.
  • Ability to work in a team environment, take direction and guidance, prioritize, and meet deadlines for wide-ranging technical projects.
  • Working knowledge of security, privacy, audit and compliance requirements applicable to IAM in higher education and healthcare (e.g. HIPAA, FERPA, PCI DSS, etc.).
  • Well-versed in IAM principles and policy, such as segregation of duties analysis, access reviews, provisioning/de-provisioning, authorization and authentication protocols, and access governance.
  • Deep understanding of Active Directory, including security, group structures, and policies.
  • Working knowledge of federation and authorization platforms such as Active Directory Federation Services, CAS, Windows CardSpace, Windows Identity Foundation, and Active Directory Rights Management Services.
  • Experience developing and maintaining IDMS systems. Microsoft Identity Manager, Forefront Identity Manager, or systems common to higher education are preferred.
  • Understanding of single-sign-on integrations using Active Directory and some combination of LDAP, CAS, SAML, or federated services.

    Physical Requirements
    The physical demands described here are representative but not definitive of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

    Requires extended periods of sitting and repetitive hand/wrist motion while using office equipment and computer input devices such as keyboard, mouse, etc. Occasional standing, walking, climbing stairs, bending, stooping and reaching. Occasional lifting up to 25 pounds.

    Work Environment/Work Week/Travel:
    Work performed during standard business hours.

    Hiring Range: Min $26.45 per hour to Max $44.19 per hour, non-exempt

    To apply, visit:

    Background Check Statement
    Applicants who are selected as final possible candidates must be able to pass a criminal background check

    AA/EEO Policy Statement
    University of the Pacific is an affirmative action and equal opportunity employer dedicated to workforce diversity. In compliance with applicable law and its own policy, Pacific is committed to recruiting and retaining a diverse faculty and staff and does not discriminate in its hiring of faculty and staff, or in the provision of its employment benefits to its faculty and staff on the basis of race, color, religion, national origin, ancestry, age, genetic information, sex/gender, marital status, military and veteran status, sexual orientation, medical condition, pregnancy, gender identity, gender expression, or mental or physical disability.

  • Similar jobs

    Similar jobs