Voted Forbes list of America's Best In-State Credit Unions 7 years in a row. At Lighthouse, our core values drive our mission and vision. Our mission is to enrich and nourish the lives of others to create a community that's Good for You, Good for All.
LEADERSHIP COMPETENCIES Demonstrates Interpersonal Awareness & Skills: A cornerstone of our collaborative work environment, this competency emphasizes effective communication, relationship building and teamwork. It also supports creating a positive work environment that values individual contributions and fosters teamwork. As an individual leader, you will demonstrate active listening, clear communication, and contribute beneficially to team dynamics.
Embraces Change & Learning: This competency focuses on adaptability, personal development and the advocacy and embracing of progressive change. You will be challenged to explore continuous learning opportunities to achieve excellence and foster a culture of growth and innovation. As an individual leader, you will actively engage in personal development, embrace change enthusiastically and support team members in their growth. You will also demonstrate flexibility and adaptability in response to changing circumstances.
Utilizes Critical & Creative Thinking: Underlining the importance of innovative problem solving, challenging the status quo and strategic thinking, this competency is vital for driving excellence and leadership. This competency challenges team members to take initiative beyond one's immediate responsibilities. As an individual leader, you will actively look for and share opportunities for improvement, show open-mindedness to new ideas and professionally challenge inefficient processes. You will also actively contribute to defining solutions and promoting innovation.
Takes Personal Ownership: This competency focuses on taking responsibility for performance goals, proactive collaboration, and accountability. It highlights the significance of each team member taking ownership of their role and contributions while demonstrating leadership qualities regardless of their position. As an individual leader, you will be actively engaged in setting and achieving performance goals, take responsibility for personal action and decisions and seek opportunities for self-improvement and skill development.
POSITION SUMMARY The Identity Access Management (IAM) Engineer role will focus on using Entra ID (formerly Azure AD) as the Identity Provider (IdP) to streamline and automate identity and access provisioning processes. The IAM Engineer will be integral in ensuring secure, efficient, and accurate identity lifecycle management, maintaining Role-Based Access Control (RBAC) mappings, and supporting the organization's dynamic and evolving identity and security needs. This semi-autonomous position will utilize tools like Okta Workflows to facilitate access management tasks requiring manual intervention, ensuring administrators are notified and actions are completed in a timely manner.
ESSENTIAL FUNCTIONS & RESPONSIBILITIES - Identity Provisioning and Deprovisioning Automation: Designs, implements, and manages automated workflows for identity lifecycle processes using tools like Okta and Entra ID. Ensures seamless provisioning and deprovisioning of accounts and access as employees are hired, change roles, or leave the organization.
- RBAC Management: Defines, maintains, and enhances Role-Based Access Control (RBAC) mappings to ensure users are assigned appropriate permissions based on job roles and descriptions. Collaborates with HR and other stakeholders to update RBAC mappings as job roles and organizational structures evolve.
- Dynamic Group and Conditional Access Management: Creates and maintains dynamic groups in Entra ID to align with RBAC and organizational requirements. Configures and manages Conditional Access Policies, ensuring secure and compliant access to enterprise resources.
- Security Features Implementation and Support: Manages Multi-Factor Authentication (MFA) policies to enhance user authentication security. Monitors and addresses Azure Identity Protection risk alerts to safeguard organizational identities.
- Workflows for Manual Access Management: Develops and manages tools like Okta Workflows to automate notifications for application administrators when manual provisioning or deprovisioning is required. Customizes workflows to ensure timely and efficient communication for managing access to applications that cannot be fully automated. Collaborates with application owners to define and refine notification processes for manual access tasks.
- Monitoring, Reporting, and Compliance: Regularly reviews and audits access permissions to ensure compliance with security policies and regulatory standards. Generates reports and insights related to user access, identity risks, and policy effectiveness.
- Collaboration and Support: Works closely with Cyber Security, HR, and other teams to align identity management practices with organizational goals. Provides expertise and support for identity-related incidents, troubleshooting, and resolution.
JOB SPECIFICATIONS Strong knowledge and experience with Entra ID (Azure AD), including Conditional Access, RBAC, and dynamic group management.
Proficiency in identity provisioning tools, such as Okta, with hands-on experience using Okta Workflows.
Understanding of identity and access lifecycle management and related security principles.
Experience with MFA implementation and Azure Identity Protection features.
Familiarity with scripting languages (e.g., PowerShell) for automation.
Strong problem-solving and analytical skills.
Excellent communication and collaboration skills, with the ability to work cross-functionally.
Detail-oriented and committed to maintaining secure and efficient identity systems.
EDUCATION, TRAINING & EXPERIENCE 3+ years of experience in Identity Access Management or a related field.
Bachelor's degree in computer science, Information Security, Information Technology, or a related field.
Proven track record in implementing and maintaining RBAC and provisioning workflows.
Certifications such as Microsoft Certified: Identity and Access Administrator Associate or Okta Certified Professional.
Experience in integrating identity systems with HRIS platforms.
WORK ARRANGEMENT The working arrangement for this position is
hybrid. Hybrid work is an opportunity to find the right balance between working in the office and remotely, especially if it supports individual success and the needs of our organization. Hybrid schedules are determined by the hiring manager based on business unit needs and may vary by department. Although a remote work arrangement may be authorized, those working in a remote position should expect occasional travel to headquarters or other business locations as necessary for work purposes.
Benefits We Offer: - Employee loan discount
- Student loan/tuition assistance program
- Comprehensive medical/dental/vision +
- PTO and paid federal holidays
- Weekly paychecks
- 401k plan with employer match/profit sharing
- Participation in the Annual Incentive Plan
Additional Perks: - Continued training and advancement opportunities
- Balanced/Predictable schedule; all locations close at 5pm and on Sundays
- Opportunity to join our many employee created Engagement Groups (e.g. Pride at Work, Women in Leadership, Book Club, Running & Walking)
- Local Volunteer Opportunities with employer contributed Volunteer Day
- Company Outings and annual Summit
- Hybrid work environments
LIGHTHOUSE CREDIT UNION IS AN EQUAL OPPORTUNITY EMPLOYER