Published: Fri, 13 Jun 2025 12:50:55 GMT
Identity and Access Management (IAM) Engineer at KBS
About KBS:
Kellermeyer Bergensons Services (KBS) is the leading provider of facility services in North America, serving over 2 billion square feet of space daily. We work with industry leaders in various verticals including retail, industrial and logistics, healthcare, education, manufacturing, and more, to maintain clean, efficient, and welcoming spaces that support their operations. As we continue to expand, we are looking for dedicated, reliable team members who are ready to contribute to our culture of respect, opportunity, and pride in service.
Job Description:
KBS is seeking a highly skilled and security-minded Identity & Access Management (IAM) Engineer to join our Cybersecurity team. This role is crucial in ensuring secure and reliable access to our on-premises and cloud environments, with a focus on modern identity governance, authentication protocols, and Zero Trust access controls. If this sounds like the right fit for you, apply today!
Location:
This is a 100% remote position, but candidates must reside in the Pacific or Central time zone.
Salary:
The salary range for this position is $115-125K. Actual compensation may vary based on factors such as experience, qualifications, skills, internal equity, and geographic location. The final offer will be determined through a comprehensive evaluation during the hiring process.
Key Responsibilities:
– Design, implement, and manage identity solutions for Microsoft Entra ID / Azure AD, Active Directory, AWS IAM, and OneLogin, supporting hybrid and cloud-first architectures.
– Integrate cloud and on-prem applications using SCIM, SAML, OIDC, OAuth2, and FIDO2/WebAuthn.
– Automate identity lifecycle processes (Joiner, Mover, Leaver) using tools like Python, PowerShell, and Microsoft Graph API.
– Enforce and fine-tune Conditional Access policies, including MFA, device trust, RBAC, and risk-based access controls using Microsoft Entra ID.
– Troubleshoot and resolve IAM-related issues across cloud and on-prem environments, working closely with infrastructure and application teams.
– Conduct regular access reviews, audit reporting, and identity governance activities to ensure compliance with SOC2, NIST CSF, and internal policies.
– Collaborate with stakeholders to gather IAM use cases, define process requirements, and manage cross-functional project dependencies.
– Maintain accurate documentation of IAM processes, policies, and automation workflows.
– Stay up-to-date with evolving IAM technologies, threat trends, and best practices to enhance security posture and support a Zero Trust strategy.
– Other duties as assigned.
Required Skills & Qualifications:
– 5+ years of hands-on experience with Microsoft Entra ID / Azure AD, AWS IAM, OneLogin, or similar IAM platforms.
– Strong knowledge of IAM standards such as SCIM, SAML, OIDC, OAuth2, and FIDO2/WebAuthn.
– Scripting/automation skills using tools like Python, PowerShell, and Graph API.
– Familiarity with Zero Trust principles and identity-based security enforcement.
– Excellent documentation and communication skills.
– Strong analytical and problem-solving abilities.
– Ethical judgment and critical thinking.
– Excellent interpersonal and customer service skills.
– Proven time management and ability to meet deadlines.
Education and Experience:
– Bachelor’s degree in Computer Science, Cybersecurity, or related field (or equivalent experience).
– Preferred certifications: SC-300, SC-100, or equivalent identity/security credentials.
– Minimum 5 years of experience designing, implementing, and supporting enterprise IAM solutions.
– Solid understanding of identity governance, RBAC models, and security best practices.
– Familiarity with Microsoft ecosystem tools such as Defender for Identity, Intune, Purview, and Graph API.
– Experience contributing to enterprise-scale IAM projects, audits, or compliance initiatives (e.g., NIST, SOC2).
Corporate & EVP Full-time Benefits:
As a full-time KBS employee (30+ hours per week), you may qualify for benefits including medical, dental, vision, prescription drugs, and more. We also offer paid time off, holidays, sick time, life insurance, short-term and long-term disability, supplemental health insurance, a 401k plan with a match or Non-qualified Deferred Compensation Plan, pet insurance, and a PerkSpot Discount Program with discounts on travel, gyms, cell phones, restaurants, auto, apparel, and electronics.
KBS is an equal opportunity employer and considers all applicants for employment without regard to race, color, religion, gender, sexual orientation, national origin, age, disability, gender identity and expression, marital or military status, or any other status protected by applicable federal, state, or local law. We also provide reasonable accommodations to qualified individuals with disabilities in accordance with the Americans with Disabilities Act and applicable state and local laws. Apply link