IAM and RBAC Engineer Job in Pittsburgh

3519 IT & Software Developer jobs in the US

Company Size

1k-5k

Company Type

Services

Exp Level

Regular

Job Type

Full-Time

Language

English

Visa sponsorship

Requirements

Must:

- Advanced understanding of Microsoft Entra ID, Azure RBAC, security groups, PIM, and JIT access workflows. - Practical experience with Azure Policy and resource configurations, including managed identities and provisioning Azure AD admin roles. - Competence in reducing local service key dependency through centralized identity management. - Knowledge of Azure monitoring, logging capabilities, and AAA concepts, including integration with approval workflow tools. - Proven experience in implementing scalable least-privilege design and articulating RBAC rationale in Azure. - Established ability to manage remote and elevated access, emergency access procedures, and incident management. - Proficiency in baseline configuration management and maintaining precise asset and data inventories. - Skill in authoring and maintaining IAM policies, conducting access reviews, and supporting audit documentation and control testing. - Strong communication and documentation abilities for technical writing and coordinating with stakeholders. - Experience in integrating identity workflows with enterprise approval systems and incident management processes (preferred). - Familiarity with application identity design patterns and CI/CD practices for secret management (preferred). - Background in supporting audit readiness for access controls in cloud settings (preferred).

Technologies

CI/CD

RBAC

VPN

Responsibilities

- Design and uphold an enterprise Azure RBAC role taxonomy while documenting role-permission mappings and modifications. - Connect permissions to roles to enforce least-privilege access through security groups and role assignments, avoiding broad direct privilege allocations. - Implement Just-in-Time workflows for elevated access with approval processes and time-limited permissions utilizing PIM. - Set up usage restrictions and configuration standards for VPNs, jump hosts, and privileged session management. - Define and oversee procedures for emergency access, incident notifications, and post-incident reviews. - Configure Multi-Factor Authentication for privileged roles using strong authentication methods like smartcards or security keys. - Provision Azure AD administrator roles for relevant services such as SQL as needed. - Enforce managed identities for applications to decrease dependency on local service keys. - Ensure users keep issued authenticators secure and prevent unencrypted static credentials in code, images, and configurations. - Write and maintain policies, standards, and procedural documentation for access controls. - Perform regular access reviews and assist in collecting evidence for audits. - Maintain inventory of assets and data, ensuring baseline configurations align with configuration management practices. - Configure Azure-native monitoring and logging for identity and access events, directing alerts to service owners and security teams. - Verify the use of emergency access through incident workflows and facilitate audit readiness for access-related controls.

Description

We are a leading strategic consulting firm seeking an IAM/RBAC Engineer to join our team in either Pittsburgh, PA, New York, NY, or Lake Mary, FL. In this hybrid role, you will design and manage access controls within Microsoft Entra ID and Azure RBAC, ensuring best practices in security and compliance. Our compensation for W2 consultants ranges from $84.00 to $94.00 per hour, accompanied by a robust benefits package that includes medical, dental, and vision insurance, a 401k with company matching, and life insurance. At Eliassen Group, we strive to positively impact the lives of our employees and clients, offering a collaborative environment that enhances both personal and professional growth.

Something wrong or incorrect with this job? Tell us in the chat 💬 on the right ➡️

IT & Software developer jobs in the USDevOps Engineer jobs in the USDevOps Engineer jobs Pittsburgh, PA

You can find DevOps salaries in the United States here.

How many DevOps jobs are in the United States?

Currently, there are 3519 DevOps openings. Check also: Cloud jobs, AWS jobs, Azure jobs, GCP jobs, Kubernetes jobs, Docker jobs, Terraform jobs - all with salary brackets.

Is the US a good place for DevOps?

The US is one of the best countries to work as a DevOps. It has a vibrant startup community, growing tech hubs and, most important: lots of interesting jobs for people who work in tech.

Which companies are hiring for DevOps jobs in the United States?

Classic Packaging Company, Transport-Bourassa, Allied Technical Solutions, KUBRA, D3 Security Management Systems, GINGER Telecom, Gatestone & Co. Inc among others, are currently hiring for DevOps roles in the United States.

The company with most openings is Lockheed Martin Corporation as they are hiring for 340 different DevOps jobs in the United States. They are probably quite committed to find good DevOps.