West Chester, Pennsylvania
Los Angeles, California
Cambridge, Massachusetts
Posted: 10-Aug-23
Location: West Chester, Pennsylvania
Employment Type:
Organization Type:
Position Summary
Join a vibrant equity-minded campus community of educators whose excellence is reflected in its diversity and student success. The Department of IS&T Infrastructure Services invites applications for the position of the Identity and Access Management (IAM) Architect.
West Chester University, a member of the Pennsylvania State System of Higher Education, is a public, comprehensive institution committed to offering high-quality undergraduate education, selected post-baccalaureate and graduate programs, and a variety of educational and cultural resources for its students, alumni, and citizens of southeastern Pennsylvania. The University offers more than 100 graduate and undergraduate programs in the sciences and mathematics, business and public management, arts and humanities, health sciences, education and social work, music, and interdisciplinary studies. We are a community of educators dedicated to developing graduates who succeed personally and professionally and contribute to the common good.
WCU proudly offers a positive and purposeful work environment; comprehensive employee benefits including health, vision, and dental insurance along with many wellness programs; a commitment to work-life balance including generous paid vacation, paid sick time, military leave and paid time off for most major holidays; and a University mission to support employee personal and professional growth including a tuition waiver for self and family members, training and development, and advancement opportunities.
The Infrastructure Services Department is part of the Office of Information Services and Technology. The mission of the office is to support student success through strategic information technology and partnership with the entire University community. Working with University stakeholders, the Infrastructure Services Department collaborates with the community to align identity and management strategy & best practices with business requirements and University practices & policies.
Reporting to the Executive Director/Deputy CIO IT Infrastructure Services, the Identity and Access Management (IAM) Architect is primarily responsible for the design, development, testing, implementation, and integration of a comprehensive IAM framework for the University. The position ensures the security, availability, and integrity of the organization’s digital assets through effective identity management practices. The incumbent establishes and maintains processes and controls for identity governance and administration. The Identity and Access Management (IAM) Architect evaluates, selects, and implements IAM solutions that align with the organization's requirements and architecture.
The ideal candidate has a strong knowledge of IAM concepts, protocols, and standards; leverages their experience, expertise, and established industry knowledge to the organization’s process; demonstrates attention to the determinants & priorities of information access while balancing business and operational needs. The candidate has strong and creative problem solving & analytical competence(s). The individual can effectively communicate and collaborate with cross-functional teams and stakeholders.
Responsibilities include:
- Collaborate with stakeholders to define the organization's IAM strategy, including goals, objectives, and key performance indicators (KPIs). Align the strategy with business requirements and industry best practices.
- Create and maintain an IAM architecture that supports the organization's security and business objectives. This includes designing identity lifecycle management, access provisioning and deprovisioning processes, single sign-on (SSO), multi-factor authentication (MFA), role-based access control (RBAC), and other IAM components.
- Configure and customize IAM products and tools to meet specific business needs. Ensure seamless integration with existing systems and applications.
- Establish and maintain processes and controls for identity governance and administration. Define roles & responsibilities, implement access request, approve workflows, manage entitlements, and conduct periodic access reviews.
- Develop and enforce IAM-related security policies, standards, and guidelines. Stay up to date with industry trends, regulatory requirements, and emerging technologies to ensure the IAM framework remains effective and compliant. Participate in security audits and assessments to validate the effectiveness of the IAM framework. Identify and remediate any vulnerabilities or non-compliance issues.
- Assist in maintaining regulatory compliance with standards such as GDPR, HIPAA, PCI-DSS, and others.
- Collaborate with cross-functional teams, including IT, security, compliance, and business units, to gather requirements, address concerns, and ensure the successful implementation and operation of IAM solutions. Communicate and educate stakeholders on IAM policies, processes, and best practices.
- Provide expertise and support in incident response related to IAM issues. Investigate and resolve incidents, perform root cause analysis, and implement preventive measures to enhance the security posture.
Minimum Qualifications
- Bachelor's degree in Computer Science, Information Systems, or closely related field.
- Minimum of 5 years of experience in identity and access management with a focus on architecture and design; familiarity with security frameworks and regulatory requirements; knowledge of authentication practices, standards, and technologies.
- Working knowledge of IAM concepts, protocols, and standards, such as SAML, OAuth, OpenID Connect, LDAP, RBAC.
- Experience with Windows, Linux / Unix, scripting (Bash, PowerShell, or Perl), LDAP, SQL, and web services.
- Ability to effectively communicate in writing and verbally, and present dynamically to a variety of constituents.
Preferred Qualifications
- Master's degree in Computer Science, Information Systems, or closely related field; and/or
- Experience with products and tools such as Oracle Identity Manager, Okta, SailPoint, ForgeRock, MidPoint, Microsoft Identity Manager (MIM/FIM/ILM) or similar solutions; and/or
- Familiarity with cloud IAM services and platforms (E.g., AWS IAM, Azure AD, Google Cloud IAM); and/or
- Experience with one or more programming languages such as C++, Java, Python, JavaScript, C#; and/or
- Possesses Identity and Access Management industry certifications such as CISSP, CISM, or related certifications.
Special Instructions
Possibility of working remote is available.
Salary range between $105,533 and $126,640 commensurate with qualifications and experience.
Excellent benefits package including undergraduate tuition fee waiver for self and dependents.
Candidates should apply online at https://www.schooljobs.com/careers/wcupa.
Required Documents for Consideration
To be considered an applicant for the position, please submit the following:
- Cover letter
- Curriculum vitae/Resume
- List of three references with contact information (Include position title, phone number, and email address).
Review of applications will begin immediately and continue until the position is filled.
To be considered a finalist, applicants must successfully complete the application and interview process.
Developing and sustaining a diverse faculty and staff advances WCU’s educational mission and strategic Plan for Excellence. West Chester University is an Affirmative Action/Equal Opportunity Employer. Women, minorities, veterans, and persons with disabilities are encouraged to apply.
All offers of employment are subject to and contingent upon satisfactory completion of all pre-employment background checks.
