The Identity & Access Management team is looking for an experienced Identity and Access Management Specialist to help design, implement, and support security identity and access solutions across the enterprise. We are looking for a highly motivated and security-minded individual to perform the tasks of primary Active Directory Administration SME and backup Facets SME. In this fully remote role, you’ll work with application development teams, infrastructure teams, and business units throughout the company to ensure appropriate access controls, strong identity governance, and compliance with security standards and regulatory requirements.
Experience with Active Directory Administration and Group Policy and Configuration Management is required. Experience with Facets and Entra ID is a plus.
Note:
- Sponsorship is not available for this role.
- On-call rotation is part of the schedule for this team.
- Travel to our Chattanooga, Tennessee headquarters will be required for final interview(s).
Job Duties & Responsibilities
- Applying a thorough knowledge of BCBST's operations, infrastructure, and security, assist in developing skills of Identity & Access Management staff, participating and/or assisting other team members in a rotating on-call schedule to promptly resolve high-priority issues that surface outside of normal business hours.
- Meeting service level agreements (SLAs) according to established turn-around times, ensuring compliance with corporate security standards and policies.
- Creates/Maintains IAM process documentation. Reviews processes for improvement/efficiencies. Assists in training of new team members.
- Assist in application onboarding to centralize Identity and Access Management.
- Assist in development/management of ABAC (Attribute-Based Access Control) and RBAC (Role Based Access Control) roles in the Identity and Access Management system.
- Assist in development/management of the password vault solution, while ensuring accounts are properly identified and setup in both the centralized repository and within the actual application/system.
- Employees may be required to participate in a weekly on-call rotation.
Education
- Bachelor's Degree in a Computer Sciences or Information Systems related field or equivalent work experience.
Experience
- 3 years - Experience in Information Security and/or IT related experience required.
- Demonstrated experience with Identity and Access Management solutions.
- Demonstrated experience with Microsoft Active Directory architecture, implementation, maintenance, and support for a large-scale environment.
- Demonstrated project experience regarding estimates, planning, and deliverables.
Skills\Certifications
- Demonstrated understanding of tables and columns to identify needed data for an Identity and Access Management provisioning system.
- Demonstrated ability to interpret and translate technical and/or or complex concepts into information meaningful to IAM team members and/or business personnel.
- Proficient in Microsoft Office (Outlook, Word, Excel and PowerPoint).
- Proven analytical and problem-solving skills and ability to perform non-routine analytical tasks.
- Proven ability toward analyzing cross system accesses and troubleshooting access requirements.
- Understanding of troubleshooting approaches, including knowledge of underlying security tools, networking, server, application, and cloud concepts.
- Proven ability to organize and distribute access through ABAC and RBAC methods.
- Windows scripting and automation methodology (PowerShell, VBScript, Perl, Batch programming).
- Proven understanding of configuring SSO and step-up authentication to support authorization, including federation services.
- Proven understanding of APIs, databases, and file connections for application connections.
- Ability to work independently with minimal supervision or function in a team environment sharing responsibility, roles, and accountability.
Number of Openings Available
1
Worker Type:
Employee
Company:
BCBST BlueCross BlueShield of Tennessee, Inc.
Applying for this job indicates your acknowledgement and understanding of the following statements:
BCBST will recruit, hire, train and promote individuals in all job classifications without regard to race, religion, color, age, sex, national origin, citizenship, pregnancy, veteran status, sexual orientation, physical or mental disability, gender identity, or any other characteristic protected by applicable law.
Further information regarding BCBST's EEO Policies/Notices may be found by reviewing the following page:
BCBST's EEO Policies/Notices
BlueCross BlueShield of Tennessee is not accepting unsolicited assistance from search firms for this employment opportunity. All resumes submitted by search firms to any employee at BlueCross BlueShield of Tennessee via-email, the Internet or any other method without a valid, written Direct Placement Agreement in place for this position from BlueCross BlueShield of Tennessee HR/Talent Acquisition will not be considered. No fee will be paid in the event the applicant is hired by BlueCross BlueShield of Tennessee as a result of the referral or through other means.
