Cybersecurity Engineer - IAM

caa· Creative Artists Agency
Apply Now ↗
📍 Nashville, TNFull time
Full timeCreative Artists Agency

About this role

Job Description

Summary 

This is a hands-on security position working within the Information Security group and with the internal IT department at large. We are looking for candidates who have a passion for cyber security, identity management, and threat response. You will provide domain expertise to design and develop the capabilities of the identity and access management platform and the automation of application deployment pipelines to the platform.  

The Role

In this role, you will be an essential partner and technical specialist for identity and access platform development and provide thought leadership on overall security and authentication across various workflows. You will be a key part of our efforts to enable the business needs in a highly collaborative organization. The environment is fast-paced and commonly on the leading edge of technology, including early adoption of various cloud services along with the challenges of integrating those services into our security practice. 

 

Responsibilities 

  • Provide design, evaluation, analysis, testing, debugging and implementation of identity and access management programs to support the company’s strategy 

  • Maintain configuration, updates, and overall administration of the identity access management platform 

  • Have a deep understanding of user lifecycle management; including provisioning/de-provisioning, access requests, user entitlements and audit & validations 

  • Maintain standards for access management across the company and department 

  • Collaborate with HRIS, IT service owners, and service desk to troubleshoot and fulfill identity related workflows 

  • Knowledge of identity governance workflows with the concepts of attestation and auditing. 

  • Integrate new applications into the identity access management platform through RESTful APIs, JDBC, flat file, or built-in connectors and configure aggregation, provisioning, and entitlements 

  • Automate identity workflows and processes for lifecycle management, auditing, reporting, governance and self-service 

  • Provide and maintain a RESTful identity API to downstream services 

  • Play an active role in CAA’s security incident response efforts, working to identify and mitigate information security threats 

 

 

Required Capabilities 

  • A minimum of 4 years in Information Technology, ideally with a focus on information security 

  • A minimum of 2 years’ experience in identity and access management or CyberSecurity 

  • A Bachelor’s or Master’s Degree in a relevant field of work 

  • Experience scripting in at least one of the following languages:  PowerShell, Python, JavaScript 

  • Experience with the deployment and support of Zero Trust Identity architecture and infastructure 

  • A strong understanding of the fundamental operations of servers, operating systems, networks, firewalls, cloud applications, and infrastructure 

  • Experience in automation and integration with SaaS applications 

  • Understanding of OAuth, SAML and OpenID frameworks 

  • Experience in lifecycle management and provisioning and de-provisioning 

  • Knowledge of different MFA and compensating controls for identity 

  • Knowledge of privilege identity management, privileged access management, and concepts of just in time provisioning, just enough access, and principal of least privilege 

 

 

Desired Capabilities 

  • Set up and integrated Single Sign-On with various SaaS vendors 

  • Account set-up and access management 

  • Using and coding against REST APIs  

  • Knowledge and experience of SCIM provisioning and integration 

  • Worked closely with human resources and help desk support staff 

  • Experience supporting and following identity framework or IDaaS 

  • An understanding of the NIST framework and using a continuous improvement loop 

 

Desired Skills 

Azure AD, Active Directory, AD Connect, Azure Automation, Power Automate, SAML, OpenID, WS-Fed, SSO, SCIM, OAuth, Programming (java, python), PowerShell, RESTful APIs, MSSQL, OGNL, GraphQL, Workday, SailPoint, Okta, Ping Federate, PingID, Splunk, RBAC

 

Environment 

CAA has a service oriented collaborative environment where we help our colleagues then focus on our own work.

Creative Artists Agency, LLC (the “Company”) is committed to a policy of Equal Employment Opportunity and will not discriminate on the basis of race (inclusive of traits historically associated with race, including hair texture and protective hairstyles), color, religion, creed, gender or sex (including pregnancy, childbirth, breastfeeding or related medical conditions), national origin, ancestry, age, physical disability, mental disability, medical condition, genetic information, family and medical care leave status, military or veteran status, marital status, family status, sexual orientation, gender identity, gender expression, political affiliation, an employee’s or their dependent’s reproductive health decision making (e.g., the decision to use or access a particular drug, device or medical service), or any other characteristic protected by applicable law.

The absence of a permanent address is not a bar to employment. The Company does not discriminate against individuals based on housing status, including the absence of a fixed address.

The Company also complies with the Americans with Disabilities Act and applicable state and local laws with regard to providing reasonable accommodation for qualified individuals with disabilities.

CAA does not accept unsolicited resumes from third-party recruiters unless they were contractually engaged by CAA to provide candidates for a specified opening. Any such employment agency, person or entity that submits an unsolicited resume does so with the acknowledgement and agreement that CAA will have the right to hire that applicant at its discretion without any fee owed to the submitting employment agency, person or entity.

Frequently Asked Questions

Is the salary disclosed for the Cybersecurity Engineer - IAM position at caa?
The salary for this Cybersecurity Engineer - IAM role at caa is not publicly listed. Click "Apply Now" to learn more about the compensation package on their official careers page.
Where is the Cybersecurity Engineer - IAM position at caa located?
This Cybersecurity Engineer - IAM role at caa is based in Nashville, TN. The position is listed as on-site or hybrid. Check the full job description or apply directly to confirm the work arrangement.
Is the Cybersecurity Engineer - IAM role at caa full-time or part-time?
This is listed as a Full time position. It is posted as a Cybersecurity Engineer - IAM role in the Creative Artists Agency department at caa.
Which team or department does the Cybersecurity Engineer - IAM at caa belong to?
This Cybersecurity Engineer - IAM position is part of the Creative Artists Agency department at caa. See the full job description for more information about the team structure and responsibilities.
How do I apply for the Cybersecurity Engineer - IAM position at caa?
Click the "Apply Now" button on this page. You will be redirected to caa's official application portal hosted on workday where you can submit your application directly.
Senior Application Security Engineer
Recurly
View →
Full time
📍
Junior Cyber Security Engineer
Compass Education
View →
Full time
📍
Cyber Security Engineer
Corto Pty Ltd
View →
Full time
📍 Sydney
Information Security Engineer
Corto Pty Ltd
View →
Full time
📍 Sydney
Senior Security Engineer
Youtrip
View →
Full time
📍
Application Security Engineer & Vulnerability Researcher ( m/w/d)
everience
View →
Full time
📍
Cybersecurity Engineer - IAM
caa
Apply for this role ↗

You'll be redirected to caa's official application page on Workday.