Identity Access Engineer (Programmer Analyst I)

at Renaissance in Chicago, Illinois, United States

Job Description

When you join Renaissance®?, you join a global leader in pre-K-12 education technology. Renaissance’s solutions help educators analyze, customize, and plan personalized learning paths for students, allowing time for what matters-creating energizing learning experiences in the classroom.

Our fiercely passionate employees and educational partners have helped drive phenomenal student growth, with Renaissance solutions being used in over one-third of US schools and in more than 100 countries worldwide! Every day, we are connected to our mission by exemplifying our values: trust each other, win together, strive for the best, own our actions, and grow and evolve

Job Summary: We are seeking an experienced Identity Access Engineer to join our IT Operations team. The ideal candidate will have a strong background in managing identity and access solutions, particularly with Microsoft Entra and Active Directory. Additionally, experience with integrating HR systems such as UKG and Workday is crucial. Familiarity with Role-Based Access Control (RBAC) is highly desirable. This is a remote position within the United States.

Essential Functions and Responsibilities:

+ Design and Implementation: Design, implement, and manage identity and access solutions using Microsoft Entra and Active Directory.

+ Integration: Integrate and synchronize identity management systems with HR platforms, including UKG and Workday, ensuring seamless and secure data flow.

+ RBAC Management: Develop, implement, and maintain RBAC policies and procedures to ensure secure and efficient access controls across the organization.

+ Single Sign On (SSO): integrate enterprise applications into a SSO framework with understanding of standard protocols such as SAML, OAuth 2.0, OpenID, and CAS.

+ Monitoring and Troubleshooting: Monitor, troubleshoot, and resolve issues related to identity access management, ensuring minimal downtime and disruption.

+ Collaboration: Collaborate with IT & Security teams, HR, and other relevant teams to align access controls with business needs and regulatory requirements.

+ Auditing and Compliance: Conduct regular audits and assessments of identity access systems to ensure compliance with security policies and industry standards.

+ Documentation and Reporting: Maintain detailed documentation of all identity access processes, configurations, and changes. Generate reports for management and compliance purposes.

+ User Support and Training: Provide technical support and guidance to internal teams and end-users on identity access issues. Develop and deliver training sessions to enhance user understanding of access controls.

+ Continuous Improvement: Stay updated with the latest trends and developments in identity access management and recommend improvements to enhance system security and efficiency.

+ Integrate IAM solutions with CI/CD pipelines to ensure secure access controls throughout the software development lifecycle.

+ Automate identity and access management processes using DevOps tools and practices.

Qualifications

+ Experience: Minimum of 2 – 4 years of experience in identity and access management, specifically with Microsoft Entra and Active Directory.

+ Integration Expertise: Proven experience integrating identity management solutions with HR systems such as UKG and Workday.

+ RBAC Knowledge: Strong understanding of RBAC principles and best practices.

+ Technical Skills: Excellent troubleshooting and problem-solving skills. Familiarity with scripting and automation tools is a plus.

+ Communication: Excellent communication and collaboration skills, with the ability to work effectively in a remote team environment.

+ Education: While a four-year degree is not required, relevant certifications in identity management or related fields are highly desirable.

Certificates, Licenses, Registration

+ Certifications: Relevant certifications (e.g., Microsoft Certified: Identity and Access Administrator, Certified Information Systems Security Professional (CISSP), or similar) are a plus.

Computer Skills

+ PowerShell: Proficiency in using PowerShell for automating tasks in Active Directory and Azure AD.

+ Python: Useful for writing custom scripts to automate IAM processes.

+ Bash/Shell Scripting: Beneficial for automating tasks in Unix/Linux environments.

+ Network Protocols: Understanding of LDAP, SAML, OAuth, and other authentication and authorization protocols.

+ Firewalls and VPNs: Basic knowledge of network security measures, including firewalls and VPNs, and how they interact with IAM systems.

+ Azure: Knowledge of Azure cloud services, especially those related to identity management.

+ AWS/GCP: Basic understanding of IAM services provided by AWS and Google Cloud Platform.

+ SQL: Ability to write and understand SQL queries for managing and extracting data from databases.

+ Database Integration: Experience integrating IAM solutions with databases (e.g., SQL Server, Oracle).

+ DevOps: Experience in tools such as Jenkins, Git, Docker, Kubernetes, and Terraform are a plus.

Salary Range: $70,000-$88,000

This range is based on national market data and may vary by experience and location.

All your information will be kept confidential according to EEO guidelines.

Benefits :

+ World Class Benefits: Medical, Prescription, Dental, Vision, Telehealth

+ Health Savings and Flexible Spending Accounts

+ 401(k) and Roth 401(k) with company match

+ Paid Vacation and Sick Time Off

+ 13 Paid Holidays

+ Parental Leave (20 total weeks with 14 weeks paid) & Milk Stork program

+ Tuition Reimbursement

+ Life & Disability Insurance

+ Well-being and Employee Assistance Programs

Frequently cited statistics show that some women, minorities, individuals with disabilities, and protected veterans, may only apply to roles if they meet 100% of the qualifications. At Renaissance, we encourage all applications! Roles evolve over time, especially with innovation, and you may be just the person we need into the future. We hope you’re open to learning new skills to grow with us. Make our team, your team!

Renaissance is an equal opportunity employer and does not discriminate with respect to any term, condition or privilege of employment based on race, color, religion, sex, sexual orientation, gender identity or expression, age, disability, military or veteran status, marital status, or status of an individual in any group or class protected by applicable federal, state, or local law.

At Renaissance our mission is: “To accelerate learning for all children and adults of all ability levels and ethnic and social backgrounds, worldwide.” Inherent in that guiding principle is dedication to serving all identities by recognizing the importance of Diversity, Equity, and Inclusion (DEI) in our organization, our work and our products.

Renaissance also provides reasonable accommodations for qualified individuals with disabilities in accordance with the Americans with Disabilities Act and applicable state and local laws. If an accommodation is needed to participate in the job application or interview process, please contact Talent Acquisition.

\#LI-Remote

Benefits for eligible employees include:

+ World Class Health Benefits: Medical, Prescription, Dental, Vision, Telehealth

+ Health Savings and Flexible Spending Accounts

+ 401(k) and Roth 401(k) with company match

+ Paid Vacation and Sick Time Off

+ 12 Paid Holidays

+ Parental Leave (20 total weeks with 14 weeks paid) & Milk Stork program

+ Tuition Reimbursement

+ Life & Disability Insurance

+ Well-being and Employee Assistance Programs

Frequently cited statistics show that some women, underrepresented individuals, protected veterans and individuals with disabilities may only apply to roles if they meet 100% of the qualifications. At Re