This IAM engineer job description is produced by Identity Management Institute to describe the identity and access management engineer role who may design, develop, test, implement, and integrate identity and access management frameworks, systems, and protocols. The identity and access management engineer is typically responsible for the development and implementation of IAM systems including SSO, authentication and access controls ensuring confidentiality, integrity and availability of IAM systems and data.
Overall, the IAM engineer role is responsible for ensuring that procured or developed IAM systems are implemented properly and function as intended.
IAM Engineer Job Description
Interested applicants for the identity and access management engineer position must typically meet the following requirements set forth in an IAM engineer job description:
- Bachelor’s degree in IT, information security, computer science, or a related field.
- 3 to 5 years of experience. Alternatively, candidate may possess an equivalent combination of relevant professional experience and education.
- Comprehensive knowledge and experience with authentication standards and technologies such as multi factor authentication, JSON Web Token (JWT), etc.
- Extensive hands-on knowledge of identity and access management best practices, procedures, and software solutions such as CyberArk, ForgeRock, Okta, Ping Identity, etc.
- Extensive knowledge and experience with identity and access management technology, such as single sign-on (SSO), two-factor authentication, privileged access management, etc.
- Experience with Windows, Lunix / Unix, scripting (Bash, Powershell, or Perl), LDAP, SQL, and web services.
IAM Engineer Job Duties
Typical day to day duties of the IAM Engineer role may include:
- Develop, implement, and maintain identity and access management solutions and systems.
- Troubleshoot, identify, and resolve technical identity and access management related issues.
- Improve identity and access management solutions and systems for protection against evolving threats and efficiency.
- Coach other members of the organization on the best practices that should be followed in identity and access management.
- Stay up-to-date on current IAM threats and industry solutions.
Education and Certification
A Bachelor’s degree in identity and access management, cybersecurity, information technology, or related field is usually preferred, however applicants with a combination of relevant professional experience, education, and professional IAM certification will also be considered for the position.
Certifications listed in an IAM engineer job description may include the ones discussed below which can be considered during the recruitment process.
Certified Identity Management Professional (CIMP)
The Certified Identity Management Professional (CIMP) certification is a comprehensive course designed for technical professionals in identity and access management. Developed and administered by Identity Management Institute, the CIMP credential validates the candidate’s understanding of identity and access management frameworks, standards, protocols, software development, and project management.
Certified Identity and Access Manager (CIAM)
Certified Identity and Access Manager (CIAM) professionals continuously assess their organizations’ existing capabilities in the identity lifecycle management to prioritize business investments, close compliance or control gaps, and identify process improvements to reduce costs.
Certified Identity and Security Technologist (CIST)
The Certified Identity and Security Technologist (CIST) certification is designed for technology leaders who set the strategy and vision for identity and security technology direction.
Other Relevant Certifications
Other relevant certifications that may be useful in identity and access management roles include Certified Access Management Specialist (CAMS) and Certified Identity Governance Expert (CIGE) amongst others.
Certified in Data Protection (CDP)
The Certified in Data Protection (CDP) certification program educates professionals on international system security standards and best practices as well as generally accepted privacy principles based on global laws and regulations to protect systems and data.
IAM Engineer Salary
The average annual IAM Engineer salary in the US is $121,083 with entry level positions starting at $97,397 per year.
The average salary range for a Senior IAM Engineer in the United States is between $109,384 and $135,129. Most experienced workers make about $158,253 per year, however, the total compensation can vary depending on various factors, including skills, education, certifications, and professional experience.
Comparing the IAM Engineer Job Description
A few other professional roles in identity and access management include:
IAM Analyst Role
The identity and access management analyst role is an entry-level position that supports IAM initiatives with gathering identity and access management requirements, review of configurations and system settings, documenting standards and procedures, and helping manage various identity and access management tasks.
IAM Manager Role
The IAM Manager position is a senior level position in charge of critical business decisions. The role of an identity and access manager is to assess an organization’s existing identity and access management capabilities, workflow, systems, and processes to transform the identity lifecycle and make improvements based on business goals and objectives while reducing costs for the organization. The most suitable IAM certification for an IAM Manager role is the Certified Identity and Access Manager (CIAM).