Descriptions & requirements

About the role:

As a Senior Identity Access Management (IAM) Analyst with TQL, you will serve as a technical lead for IAM projects, mentor junior analysts, and partner closely with IT, security, HR, and business stakeholders to ensure that only the right people have the right access to the right resources at the right time - supporting TQL’s commitment to secure, efficient and scalable operations. This role will involve designing, configuring and supporting IAM solutions while collaborating with stakeholders to modernize identity management processes across the organization.

What’s in it for you: 

$105,000 - $150,000 base salary, benefits package and company perks Advancement opportunities with aggressive and structured career paths TQL's IT Team offers a hybrid work environment with the ability to work remotely 40 hours per month Access to the latest emerging technologies Reimbursement for continuous education and technical training We win wherever we go – Voted a 2019-2024 Computerworld Best Places to Work in IT

What you’ll be doing:

Collaborate with the IAM Architect to implement access governance process in alignment with enterprise policies and industry best practicesDesign roles (role-based access control and attribute-based access control), workflows and certifications for implementation in IAM systems and Privileged Access Management (PAM) solutionsDefine and control identification, authentication and privileges in an extended Microsoft environmentCollaborate with HR and IT to ensure user lifecyle events (onboarding, offboarding, role changes) are accurately and promptly reflected in systemsCollaborate with Application Security team and DevOps teams to ensure service accounts (non-human identities) are appropriately securedConfigure and maintain IAM and PAM systems, including connectors, provisioning rules and application onboardingWrite code for custom connectors within the IAM system for applications without out-of-the-box connectorsImplement and troubleshoot integrations for SSO, SAML, OIDC and SCIM following architecture guidelinesDevelop user access/activity reports to support access recertification, business unit and regulatory requestsIdentify areas for automation and continuous improvement of the IAM function to enable the business to operate more efficiently and effectivelyProvide training and support to internal teams and end-users on IAM processes and tools

What you need:

Bachelor's degree in computer science, technology, or a related field required4-5 years hands-on IAM experience in enterprise environments requiredRelevant certifications preferred (e.g. Microsoft Certified: Identity and Access Administrator Associate, Okta Certified Professional, SailPoint Certified Engineering, CyberArk Trustee, etc)Scripting or programming experience (PowerShell, Python, Java or C#) for automation and integrationsProficiency with IAM tools such as SailPoint, Microsoft Entra ID, Okta or CyberArkStrong working knowledge of directory services (Active Directory, Azure AD) and cloud identity platforms (AWS, Azure, GCP)Advanced of IAM principles, RBAC/ABAC, MFA, SSO and provisioning workflowsAbility to configure and troubleshoot IAM systems with minimal supervision

Where you'll be: 4289 Ivy Pointe Blvd Cincinnati, OH 45245