Identity and Access Management Engineer

Full Time
Vancouver, BC, Canada
2 months ago

About Pantheon

Pantheon is the WebOps platform for websites that deliver extraordinary results. We believe in putting the magic of the internet in everyone’s hands. That’s why we’re so passionate about helping developers, IT and marketing develop, test, and release website changes faster and more reliably so they can build and maintain websites that create value for their organizations. Our cloud native software makes it easy to securely manage a single website or thousands of websites across multiple teams in one platform.

Pantheon’s core company values are Trust, Teamwork, Passion, and Customers First. At Pantheon, we work hard and play harder, valuing individuality, humor, and balance. We're enthusiastic participants in several open-source communities and have real relationships with many of our most active customers. If all of this sounds interesting to you, read on!

The Role: 

Identity and Access Management Engineers (IAME) are engaged in the engineering, deployment, management and active monitoring of IAM tools.  Will be managing tools that support the authentication and authorization of users and customers, detect threat actors, along with pushing the boundary of detection capabilities with security and operational tooling to enable the security operations center (SOC).  This role will be supporting the security tooling ecosystem and technology that creates defensive visibility into the system.  This role is crucial to how security functions within the organization, engaging with identity and access management tools and doing in depth analysis to ensure coverage breadth and depth is consistent with business objectives.  A diverse background, critical thinking, quick learning, deep exposure to IT and security technologies, all contribute to being successful at Pantheon.

What you Need to Succeed: 

  • Identity and Access Management Operations
    • Implement and Manage identity and access management tools
    • Develop operational, risk and threat-centric rules
    • Expertise with a variety of identification and authorization technologies
  • Attack Surface Reduction
    • Manage detection of vulnerabilities within identity and access management tooling
    • Identification of high value assets
    • Risk mitigation management
  • Support Cyber Threat Intelligence
    • Collect and analyze data on identity and account takeover threat landscape
    • Enable data enrichment within monitoring platforms
  • Identity Projects
    • Review RFIs/RFPs and provide feedback to architects and leadership
    • Review design documents and provide feedback specific to IAM scope
    • Create detailed design documentation
    • Update/Create deployment guides
    • Create SOPs for IAM practices
    • Create SOPs for security analysts
  • Maintenance
    • Provide support for Identity and Access Management tools
    • Maintain updates for current versions of the tools
    • Create automation for processes
    • Approve custom rules for IAM technologies
    • Create documentation for on call personnel
    • Promote a culture of security across the organization
    • Be able to wear many hats, performing critical required duties as necessary, especially as the team is being developed
    • Occasional travel

What you bring to the Table: 

  • 5+ years of experience in information technology with various identity and access management tools, including federation, identity providers, multi factor authentication
  • 1 to 3+ years of experience of information technology experience in networking, operations, or other technical discipline
  • 5+ years of experience as an identity and access management engineer
  • Deep experience with identity and access management tooling and techniques
  • Breadth of experience with identity and access management processes and procedures
  • Thorough understanding of IAM federation integration techniques for both human and system interactions
  • Critical thinking and ability to think through problems
  • Ability to work on-site or remotely as needed
  • Excellent written and oral communication skills
  • Ability to deal with fast pace and high stress
  • Ability to support shift work
  • Ability to be on-call
  • Innovates and integrates new processes and/or technology to add value to the platform

Preferred Experience, Skills, and Knowledge

  • Degree in information security or information technology or formal practical training in IAM engineering
  • Technology specific certifications
  • Passion for IAM, IAM technology and staying current
  • Demonstrate a proactive approach towards continuous improvement and innovation, fueled by curiosity and a firm belief in the pursuit of optimization

What We Offer

We have all the usual perks and benefits but what we can really offer you is a fantastic work environment powered by an amazing team.

  • Industry competitive compensation and equity plan
  • Paid Time Off (PTO), Paid Sick Leave (PSL) and 11 Paid Company Holidays
  • Full medical coverage (Extended health care, dental, vision)
  • Top-of-line equipment
  • In-office workspace (Vancouver, BC Canada) 
  • Monthly allowance for wellness, reading and access to LinkedIn Learning for continued development
  • Events and activities both team-based and company wide that inspire, educate and cultivate

Pantheon is an equal opportunity employer and we welcome applications from all backgrounds regardless of race, color, religion, sex, national origin, ancestry, age, marital status, sexual orientation, gender identity, veteran status, disability, or any other classification protected by law. Pantheon complies with federal and local disability laws and makes reasonable accommodations for applicants and employees with disabilities. If you need a reasonable accommodation due to a disability for any part of the interview process, please contact talent@pantheon.io. Pursuant to local and federal regulations, Pantheon will consider qualified applicants with arrest and conviction records for employment.

To review the Employee and Applicant's Privacy Policy, click here.

Visa Sponsorship is not available at this time.