- Company Name
- Huntington National Bank
- Job Title
- IAM Cybersecurity Engineer - Principal
- Job Description
-
**Job Title:** IAM Cybersecurity Engineer – Principal
**Role Summary:**
Lead the design, implementation, and continuous governance of Identity & Access Management (IAM) across an enterprise cloud and on‑prem environment. Drive IAM strategy, architecture, and roadmap, ensuring compliance with industry regulations while delivering secure SSO, MFA, CIAM, and privileged access solutions. Provide technical leadership, vendor evaluation, incident response, and mentorship to the IAM team.
**Expectations:**
* Minimum 8 years in information security with a strong focus on IAM delivery.
* Proven ability to gather business requirements and translate them into secure, scalable IAM solutions.
* Deep knowledge of regulatory frameworks (PCI, FFIEC, SOX, HIPAA, GDPR, GLBA) and standards (ISO, ITIL, NIST, CSA).
* Experience managing cross‑functional teams, acting as product owner, and leading continuous improvement initiatives.
**Key Responsibilities:**
1. Design and maintain compliant IAM architecture, including Identity Federation/SSO, MFA, and CIAM.
2. Collaborate with Enterprise, Application, and IAM architects to refine implementation plans aligned with design patterns.
3. Partner with business units to roll out SSO, MFA, and authentication policies for new systems.
4. Work with IT and development teams to integrate SAML, OAuth, OIDC, and CIAM products into existing applications.
5. Evaluate and recommend IAM vendors and emerging technologies; manage vendor relationships.
6. Lead and mentor the IAM team, fostering a culture of learning and collaboration.
7. Respond to IAM‑related security incidents, implementing corrective actions and lessons learned.
8. Develop and maintain IAM governance, risk management, and compliance frameworks at scale.
9. Create SIEM dashboards, run queries (SQL or equivalent) for reporting and alerting.
10. Automate IAM tasks using Python, PowerShell, or JavaScript; integrate with PingOne Advanced Services Platform.
**Required Skills:**
* IAM architecture & lifecycle management (AWS, Azure, GCP).
* Identity Federation, SAML, OAuth, OIDC, SCIM, and authentication protocols.
* Active Directory & LDAP administration; privilege access management.
* PKI, SSL/TLS, RADIUS, and privileged account controls.
* SIEM (logging, dashboards, query languages).
* Scripting: Python, PowerShell, JavaScript.
* PingOne Advanced Services Platform experience.
* Agile and Waterfall project methodologies.
* Product ownership and vendor management.
* Strong communication, leadership, and problem‑solving abilities.
**Required Education & Certifications:**
* Bachelor’s degree in Computer Science, Information Security, or equivalent.
* CISSP and/or CISM certification mandatory.
---
Pittsburgh, United states
On site
Senior
02-11-2025