IAM System Admin II

GENERAL PURPOSE:

Provides technical expertise and task management related to identity and user account management, including troubleshooting and operational support of University managed directory stores. Supports the University’s two-factor authentication and privileged account management solutions. Provides support for all team functions. Participates in on-call.

JOB DUTIES AND RESPONSIBILITIES:

1. Assists with the installation, support and maintenance of Identity Access Management (IAM), Privileged Account Management, Two-factor Authentication and Password Vaulting tools, including implementing identity controls and settings that align with security best practices.

2. Executes quality assurance test plans. Assists with staging test data and works with lead administrator to coordinate the execution of integrated testing cycles.

3. Implements IAM projects and works closely with security team to understand, document and translate requirements into secure and scalable solutions.

4. Assists with the creation and execution of account and access management audits.

5. Assists with best practice change management and ensures technical documentation is created, organized and maintained.

6. Maintains knowledge of technology, equipment and/or systems deployed within the IAM environment to improve knowledge of business processes related to securing identities and access.

7. Provides on-call and after-hours support as required.

Other duties as assigned.

QUALIFICATIONS:

Bachelor's degree in related discipline required such as Computer Science, Business, Mathematics, Statistics, Science or Engineering. 3 years of relevant experience required or equivalent combination of education and experience. Other required experience: Experience with MS Active Directory, LDAP, relational databases and access management systems; Experience with role-based access control, account onboarding processes and system integrations; Experience with PowerShell scripting; Experience with writing queries for relational databases (Oracle, MS SQL, MySQL, etc.); Experience with two-factor authentication and privileged account management tools. Required knowledge, skills and abilities: Project management and work coordination skills; Ability to translate business needs into solution requirements; Ability to prioritize and complete tasks within defined timelines; Strong written and verbal communication skills with peers and leadership.

The University of Rochester is committed to fostering, cultivating, and preserving a culture of equity, diversity, and inclusion to advance the University’s mission to Learn, Discover, Heal, Create – and Make the World Ever Better. In support of our values and those of our society, the University is committed to not discriminating on the basis of age, color, disability, ethnicity, gender identity or expression, genetic information, marital status, military/veteran status, national origin, race, religion/creed, sex, sexual orientation, citizenship status, or any other status protected by law. This commitment extends to the administration of our policies, admissions, employment, access, and recruitment of candidates from underrepresented populations, veterans, and persons with disabilities consistent with these values and government contractor Affirmative Action obligations.

Pay Range

Pay Range: $ 58,800 - $ 82,300 Annually

The referenced pay range represents the minimum and maximum compensation for this job. Individual annual salaries/hourly rates will be set within the job’s compensation range, and will be determined by considering factors including, but not limited to, market data, education, experience, qualifications, expertise of the individual, and internal equity considerations.

Location: Central Administration
Full/Part Time: Full-Time
Opening: Full Time 40 hours Grade 054 University IT / IS
Schedule: 8 AM-5 PM