First Interstate BancSystem SailPoint Administrator in Bozeman, Montana
\*\*If you are a current FIB employee, please apply through the Career Worklet in the Employee Portal.
This position may be located at any of the offices within First Interstate Bank's six state footprint, including Idaho, Montana, Oregon, South Dakota, Washington and Wyoming.
The primary responsibilities of the Identity Access Management System Administrator will be following and enforcing the Identity Access Management (IAM) program at First Interstate Bank. This high level position will assist the management team with the continuing maturation of the IAM program. The primary goal of this position will be to focus on continuous development of our security posture with regards to ensuring appropriate application and system access, adherence to IT General Controls, and SOX compliance. This position will have a primary focus of system administration for our Identity Access Management and Governance tools, primarily SailPoint. The person in this position will be responsible for system administration, connection and integration with other applications, and automation of provisioning and deprovisioning activities as well ongoing entitlement access review campaigns to enforce the principal of least privilege.
ESSENTIAL DUTIES & RESPONSIBILITIES
Manage and monitor systems associated with Identity and Access Management (IAM) solutions; provide Identity related incident and problem management support.
Participate in internal and external audit activities by gathering and/or coordinating deliverables for necessary evidence and review and maintain documentation for future audits. Develop and maintain IAM artifacts (strategy, decisions, solution design, etc.), visual studio code and/or similar SQL queries.
Identify, document, and develop process improvements and streamline systems access requests for the identity lifecycle including hire, transfer and termination processes. Address issues through problem isolation, resolution, and escalation as appropriate.
Strive to automate the provisioning and de-provisioning processes where possible.
Develop and maintain IAM operational documentation, process, and procedures. Participate in the development and maintenance of the IAM workflows that manage the provisioning of entitlements to end users.
Monitor Identity Access Management systems, interfaces, and performance. Troubleshoot and support enterprise IAM tools.
Establish and maintain strong communication and collaboration between technical / engineering, functional, and business teams to ensure applications are successfully onboarded to IAM systems.
Assist in planning, scheduling and conducting periodic access reviews while working closely with the Manager of Identity and Access Management, and Director of IT Compliance Risk and Security.
Assist in assessing and resolving potential access and security control issues in order to minimize business impact and reduce risk exposure (for example: excessive privileges relative to job duty or separation of duties, escalate as required).
Understand and help manage and maintain Identity Access Management and Governance Systems and processes to support the IAM team and the FIB organization.
Attend meetings and serves as an IAM liaison to the business units, as requested
Protects organization's value by keeping information confidential and secure.
Coordinates with IAM management to inform and relay information where applicable. Perform additional duties and assignments as requested
PREFERRED SKILLS AND ABILITIES:
Evaluate critical systems, prioritize workflow, and determine solutions
Manage small to large projects or processes with limited oversight from manager Excellent written and verbal communication skills
Interpret and apply laws, regulations, and policies
Provide technical assistance and mentorship where applicable Read and understand technical manuals
Work for extended time at keyboard
Maintain effective working relationships with supervisor and coworkers Work flexible hours, including weekends and evenings
Investigate, understand, and solve problems that are often difficult and complex
EDUCATIION / CERTIFICATION:
BS or BA with a technical focus required. Identity Management and Governance training and certification related to Identity and Access Management is desired.
EXPERIENCE / KNOWLEDGE DESIRED:
4+ years of related experience in the Information Technology industry, preferably with a focus on Identity and Access Management within an enterprise environment. IT Experience in a Banking environment is preferred.
Experience administering an Active Directory environment within a high security least privilege organization.
Demonstrated experience administering and/or troubleshooting Active Directory, Azure AD, Active Directory Domain Services (AD DS), SailPoint IdentityIQ
Experience with SQL queries and relational databases, Scripting automation proficiency in PowerShell, Python or other.
Experience with Single Sign On Tools (i.e. ADFS/Azure, Auth0, Okta, SAML,etc),experience with Privileged Access Management Systems (i.e. CyberArk, Beyond Trust, Thycotic,etc)
OTHER SKILLS & REQUIREMENTS LANGUAGE SKILLS
Strong communication skills are critical to allow effective communication with customers to build positive, professional relationships and to ensure a high level of customer satisfaction. Ability to read, analyze, and interpret general business periodicals, professional journals, technical procedures, or governmental regulations. Ability to write reports, business correspondence, and procedure manuals. Ability to effectively present information and respond to questions from groups of managers, vendors and internal customers.
Ability to add, subtract, multiply, and divide in all units of measure, using whole numbers, common fractions, and decimals. Ability to compute rate, ratio, and percent and to draw and interpret bar graphs.
Ability to define problems, collect data, establish facts, and draw valid conclusions. Ability to interpret an extensive variety of technical instructions in mathematical or diagram form and deal with several abstract and concrete variables.
While performing the duties of this job, the employee is regularly required to sit and talk or hear. The employee is occasionally required to stand; use hands to finger, handle, or feel; reach with hands and arms; climb or balance; and stoop, kneel, crouch, or crawl. The employee must occasionally lift and/or move up to 50 pounds. Specific vision abilities required by this job include close vision, color vision, and ability to adjust focus.
The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
The noise level in the work environment is usually moderate.\*\*If you are a current FIB employee, please apply through the Career Worklet in the Employee Portal.
Our company is an equal opportunity employer. Employment here is based solely upon an individual's merit and qualifications directly related to the position. We do not discriminate on the basis of race, color, religion, national origin, ancestry, pregnancy status, sex, age, marital status, disability, medical condition, or any other characteristics protected by law. We make all reasonable accommodations to meet the obligations set forth under the Americans with Disabilities Act (ADA) and state disability laws.