Identity & Access Management (IAM) Engineer
UCLA
•
Los Angeles, CA
0
0
0
0
Not Applicable
Posted May 1, 2026
Job link
Thinking about this job
Responsibilities
Commitments
Responsibilities
- In addition, the team implements risk management strategies to identify vulnerabilities and threats to campus information resources and enterprise systems.
- The team drives the creation and management of university IDs for faculty, staff, and students and the IAM infrastructure to guarantee secure and efficient access to information systems and resources.
- Furthermore, the team implements rigorous regulation of entitlements through granular access control and the auditing of all digital identities managed by UCLA by adhering to the best practices and latest regulatory standards.
- The UCLA Information Security team enables UCLA’s mission by providing leadership and expertise that assures the confidentiality, integrity, safeguarding, and availability of the university’s digital information resources.
- The Information Security team enables efficient campus wide cyber incident detection and response procedures.
- In addition, the team implements risk management strategies to identify vulnerabilities and threats to campus information resources and enterprise systems.
- This includes executing a comprehensive information security plan, centered on implementing and enforcing technical and physical security measures to treat identified risks based on their sensitivity or criticality.
- The Identity & Access Management team protects UCLA’s resources and digital assets as well as supports university business operations through effective and seamless access management.
- This includes account lifecycle management, authentication, and role-based access controls at the enterprise level.
- The IAM team is responsible for managing digital identities and ensuring the proper access controls are in place ensuring sensitive information protection.
- The team drives the creation and management of university IDs for faculty, staff, and students and the IAM infrastructure to guarantee secure and efficient access to information systems and resources.
- Furthermore, the team implements rigorous regulation of entitlements through granular access control and the auditing of all digital identities managed by UCLA by adhering to the best practices and latest regulatory standards.
- The Identity & Access Management (IAM) Engineer will be responsible for the development, implementation, configuration, integration and maintenance of IAM solutions that align with the university's security policies and requirements.
- This role involves ensuring secure, compliant, and efficient management of identities, credentials, and access controls across all internal and external systems.
- The IAM Engineer will apply their technical expertise in automation, orchestration, and programming to optimize IAM processes and improve overall efficiency of IAM systems, ensuring seamless integration across various platforms.
- The IAM engineer is responsible for evaluating hosting platforms, and configuration technologies ensuring consistency between production and non-production environments.
- This role will collaborate closely with the IAM Director, IAM and the IAM Analysts, as well as various departments across the university and external vendors to maintain and enhance the security and usability of the IAM framework and, to ensure that access and identity data is granted to users in a secure, compliant, and efficient manner.
- The IAM Engineer will positively impact UCLA's operations and culture by protecting University stakeholders' information and data in service of the institution's academic mission.
- This team member will advance the University's mission by delivering exceptional security service comprehensively and consistently across faculty, staff, and students.
- This role will execute UCLA's vision while modeling UCLA's culture and values.
Commitments
This team member will advance the University's mission by delivering exceptional security service comprehensively and consistently across faculty, staff, and students.
NOTE: This position REQUIRES that a RESUME and COVER LETTER be submitted in addition to the application.
Please have these two files ready to upload when applying.
This position is eligible for a hybrid work arrangement that includes regular visits to campus as needed (for those who work remotely, travel/lodging expenses are not eligible for reimbursement).
Background Check: Continued employment is contingent upon the completion of a satisfactory background investigation.
Live Scan Background Check: A Live Scan background check must be completed prior to the start of employment.
0%
Schedule
8 a.m. to 5 p.m., Pacific Time, Monday-Friday and/or variable based on operational needs
Union/Policy Covered
99-Policy Covered
Complete Position Description
https://universityofcalifornia.marketpayjobs.com/ShowJob.aspx?EntityID=38&jobcode=41068525
Not Met Priorities
What still needs stronger evidence
Requirements
- 3 years experience working in one or more of the following fields: cybersecurity, computer science, computer information systems, or related field. (Required)
- Advanced experience using identity and access tools and systems in a distributed IT environment (Required)
- Hands-on experience with implementation and configuration of directory services (e.g., Active Directory, LDAP), authentication and federation (e.g., Single Sign-On (SSO)) technologies. (Required)
- Hands-on experience with implementation and configuration of multi-factor authentication (MFA) solutions. (Required)
- Experience participating in activities to advance an inclusive environment that values equity, diversity, inclusion and belonging. (Required)
- Experience in complex higher education environments, serving academic and administrative functions of a large public university. (Preferred)
- 5+ years experience working in one or more of the following fields: cybersecurity, computer science, computer information systems, etc. (Preferred)
- Demonstrated skills applying authentication and account management standards to vendor provisioning solutions, computer software and hardware at scale. (Required)
- Advanced knowledge of IAM infrastructure deployment and configuration.
- Ability to review and diagnose system issues and implement preventative maintenance to ensure proactive continuity of services. (Required)
- Proficient in scripting and programming languages (e.g., PowerShell, Python, Java) for automation and integration purposes. (Required)
- Demonstrated expertise in technologies and products, such as: SCIM, J2EE, Java Servlets, XML, Web Services, Perl/CGI, SSL, etc. (Required)
- Strong written and verbal communication skills and is able to communicate technical information and ideas to a diverse community of colleagues and stakeholders. (Required)
- Able to establish and advance positive working relationships and a strong rapport with team members, stakeholders, and customers. (Required)
- Strong organizational skills and is able to balance competing priorities and support concurrent projects.
- Experience working in a project-based environment using leading project management practices including schedule management, status reporting, and communication of project risks and issues. (Required)
- Strong demonstrated problem-solving skills; scopes solutions based on knowledge of available resources and timelines.
- Able to ask questions, gather information, evaluate options, and make decisions with integrity. (Required)
- Thinks creatively and proposes innovative ideas, including the incorporation of new technologies or processes.
- Is able to work with agility in a fast-paced environment. (Required)
- One or more of the following certifications: CCNP Security, CCIE Security, OSCP, CISSP, CEH, or equivalent certification. (Preferred)
Preferred Skills
- CCIE Security certification. (Preferred)
Education
- (Required) – Bachelor's Degree in cybersecurity, information technology, computer science, public administration, business administration, communications, or related field, or equivalent experience/training. (Required)
- (Not required) – One or more of the following certifications: CCNP Security, CCIE Security, OSCP, CISSP, CEH, or equivalent certification. (Preferred)
- (Not required) – CCIE Security certification. (Preferred)
Department Summary
The UCLA Information Security team enables UCLA’s mission by providing leadership and expertise that assures the confidentiality, integrity, safeguarding, and availability of the university’s digital information resources. The Information Security team enables efficient campus wide cyber incident detection and response procedures. In addition, the team implements risk management strategies to identify vulnerabilities and threats to campus information resources and enterprise systems. This includes executing a comprehensive information security plan, centered on implementing and enforcing technical and physical security measures to treat identified risks based on their sensitivity or criticality.The Identity & Access Management team protects UCLA’s resources and digital assets as well as supports university business operations through effective and seamless access management. This includes account lifecycle management, authentication, and role-based access controls at the enterprise level. The IAM team is responsible for managing digital identities and ensuring the proper access controls are in place ensuring sensitive information protection. The team drives the creation and management of university IDs for faculty, staff, and students and the IAM infrastructure to guarantee secure and efficient access to information systems and resources. Furthermore, the team implements rigorous regulation of entitlements through granular access control and the auditing of all digital identities managed by UCLA by adhering to the best practices and latest regulatory standards.
Position Summary
The UCLA Information Security team enables UCLA’s mission by providing leadership and expertise that assures the confidentiality, integrity, safeguarding, and availability of the university’s digital information resources. The Information Security team enables efficient campus wide cyber incident detection and response procedures. In addition, the team implements risk management strategies to identify vulnerabilities and threats to campus information resources and enterprise systems. This includes executing a comprehensive information security plan, centered on implementing and enforcing technical and physical security measures to treat identified risks based on their sensitivity or criticality. The Identity & Access Management team protects UCLA’s resources and digital assets as well as supports university business operations through effective and seamless access management. This includes account lifecycle management, authentication, and role-based access controls at the enterprise level. The IAM team is responsible for managing digital identities and ensuring the proper access controls are in place ensuring sensitive information protection. The team drives the creation and management of university IDs for faculty, staff, and students and the IAM infrastructure to guarantee secure and efficient access to information systems and resources. Furthermore, the team implements rigorous regulation of entitlements through granular access control and the auditing of all digital identities managed by UCLA by adhering to the best practices and latest regulatory standards.
The Identity & Access Management (IAM) Engineer will be responsible for the development, implementation, configuration, integration and maintenance of IAM solutions that align with the university's security policies and requirements. This role involves ensuring secure, compliant, and efficient management of identities, credentials, and access controls across all internal and external systems. The IAM Engineer will apply their technical expertise in automation, orchestration, and programming to optimize IAM processes and improve overall efficiency of IAM systems, ensuring seamless integration across various platforms. The IAM engineer is responsible for evaluating hosting platforms, and configuration technologies ensuring consistency between production and non-production environments. This role will collaborate closely with the IAM Director, IAM and the IAM Analysts, as well as various departments across the university and external vendors to maintain and enhance the security and usability of the IAM framework and, to ensure that access and identity data is granted to users in a secure, compliant, and efficient manner. The IAM Engineer will positively impact UCLA's operations and culture by protecting University stakeholders' information and data in service of the institution's academic mission. This team member will advance the University's mission by delivering exceptional security service comprehensively and consistently across faculty, staff, and students. This role will execute UCLA's vision while modeling UCLA's culture and values.
Salary & Compensation
UCLA provides a full pay range. Actual salary offers consider factors, including budget, prior experience, skills, knowledge, abilities, education, licensure and certifications, and other business considerations. Salary offers at the top of the range are not common. Visit UC Benefit package to discover benefits that start on day one, and UC Total Compensation Estimator to calculate the total compensation value with benefits.
Qualifications
3 years experience working in one or more of the following fields: cybersecurity, computer science, computer information systems, or related field. (Required)
Advanced experience using identity and access tools and systems in a distributed IT environment (Required)
Hands-on experience with implementation and configuration of directory services (e.g., Active Directory, LDAP), authentication and federation (e.g., Single Sign-On (SSO)) technologies. (Required)
Hands-on experience with implementation and configuration of multi-factor authentication (MFA) solutions. (Required)
Experience participating in activities to advance an inclusive environment that values equity, diversity, inclusion and belonging. (Required)
Experience in complex higher education environments, serving academic and administrative functions of a large public university. (Preferred)
5+ years experience working in one or more of the following fields: cybersecurity, computer science, computer information systems, etc. (Preferred)
Demonstrated skills applying authentication and account management standards to vendor provisioning solutions, computer software and hardware at scale. (Required)
Advanced knowledge of IAM infrastructure deployment and configuration. Ability to review and diagnose system issues and implement preventative maintenance to ensure proactive continuity of services. (Required)
Proficient in scripting and programming languages (e.g., PowerShell, Python, Java) for automation and integration purposes. (Required)
Demonstrated expertise in technologies and products, such as: SCIM, J2EE, Java Servlets, XML, Web Services, Perl/CGI, SSL, etc. (Required)
Strong written and verbal communication skills and is able to communicate technical information and ideas to a diverse community of colleagues and stakeholders. (Required)
Able to establish and advance positive working relationships and a strong rapport with team members, stakeholders, and customers. (Required)
Strong organizational skills and is able to balance competing priorities and support concurrent projects. Experience working in a project-based environment using leading project management practices including schedule management, status reporting, and communication of project risks and issues. (Required)
Strong demonstrated problem-solving skills; scopes solutions based on knowledge of available resources and timelines. Able to ask questions, gather information, evaluate options, and make decisions with integrity. (Required)
Thinks creatively and proposes innovative ideas, including the incorporation of new technologies or processes. Is able to work with agility in a fast-paced environment. (Required)
Education, Licenses, Certifications & Personal Affiliations
Bachelor's Degree in cybersecurity, information technology, computer science, public administration, business administration, communications, or related field, or equivalent experience/training. (Required)
One or more of the following certifications: CCNP Security, CCIE Security, OSCP, CISSP, CEH, or equivalent certification. (Preferred)
CCIE Security certification. (Preferred)
Special Conditions for Employment
The anticipated pay range for this position is $83,800 - $140,000, annually; salary is dependent upon the skills and experience of the selected finalist.
NOTE: This position REQUIRES that a RESUME and COVER LETTER be submitted in addition to the application. Please have these two files ready to upload when applying.
This position is eligible for a hybrid work arrangement that includes regular visits to campus as needed (for those who work remotely, travel/lodging expenses are not eligible for reimbursement).
Background Check: Continued employment is contingent upon the completion of a satisfactory background investigation.
Live Scan Background Check: A Live Scan background check must be completed prior to the start of employment.
0%
Schedule
8 a.m. to 5 p.m., Pacific Time, Monday-Friday and/or variable based on operational needs
Union/Policy Covered
99-Policy Covered
Complete Position Description
https://universityofcalifornia.marketpayjobs.com/ShowJob.aspx?EntityID=38&jobcode=41068525
The UCLA Information Security team enables UCLA’s mission by providing leadership and expertise that assures the confidentiality, integrity, safeguarding, and availability of the university’s digital information resources. The Information Security team enables efficient campus wide cyber incident detection and response procedures. In addition, the team implements risk management strategies to identify vulnerabilities and threats to campus information resources and enterprise systems. This includes executing a comprehensive information security plan, centered on implementing and enforcing technical and physical security measures to treat identified risks based on their sensitivity or criticality.The Identity & Access Management team protects UCLA’s resources and digital assets as well as supports university business operations through effective and seamless access management. This includes account lifecycle management, authentication, and role-based access controls at the enterprise level. The IAM team is responsible for managing digital identities and ensuring the proper access controls are in place ensuring sensitive information protection. The team drives the creation and management of university IDs for faculty, staff, and students and the IAM infrastructure to guarantee secure and efficient access to information systems and resources. Furthermore, the team implements rigorous regulation of entitlements through granular access control and the auditing of all digital identities managed by UCLA by adhering to the best practices and latest regulatory standards.
Position Summary
The UCLA Information Security team enables UCLA’s mission by providing leadership and expertise that assures the confidentiality, integrity, safeguarding, and availability of the university’s digital information resources. The Information Security team enables efficient campus wide cyber incident detection and response procedures. In addition, the team implements risk management strategies to identify vulnerabilities and threats to campus information resources and enterprise systems. This includes executing a comprehensive information security plan, centered on implementing and enforcing technical and physical security measures to treat identified risks based on their sensitivity or criticality. The Identity & Access Management team protects UCLA’s resources and digital assets as well as supports university business operations through effective and seamless access management. This includes account lifecycle management, authentication, and role-based access controls at the enterprise level. The IAM team is responsible for managing digital identities and ensuring the proper access controls are in place ensuring sensitive information protection. The team drives the creation and management of university IDs for faculty, staff, and students and the IAM infrastructure to guarantee secure and efficient access to information systems and resources. Furthermore, the team implements rigorous regulation of entitlements through granular access control and the auditing of all digital identities managed by UCLA by adhering to the best practices and latest regulatory standards.
The Identity & Access Management (IAM) Engineer will be responsible for the development, implementation, configuration, integration and maintenance of IAM solutions that align with the university's security policies and requirements. This role involves ensuring secure, compliant, and efficient management of identities, credentials, and access controls across all internal and external systems. The IAM Engineer will apply their technical expertise in automation, orchestration, and programming to optimize IAM processes and improve overall efficiency of IAM systems, ensuring seamless integration across various platforms. The IAM engineer is responsible for evaluating hosting platforms, and configuration technologies ensuring consistency between production and non-production environments. This role will collaborate closely with the IAM Director, IAM and the IAM Analysts, as well as various departments across the university and external vendors to maintain and enhance the security and usability of the IAM framework and, to ensure that access and identity data is granted to users in a secure, compliant, and efficient manner. The IAM Engineer will positively impact UCLA's operations and culture by protecting University stakeholders' information and data in service of the institution's academic mission. This team member will advance the University's mission by delivering exceptional security service comprehensively and consistently across faculty, staff, and students. This role will execute UCLA's vision while modeling UCLA's culture and values.
Salary & Compensation
UCLA provides a full pay range. Actual salary offers consider factors, including budget, prior experience, skills, knowledge, abilities, education, licensure and certifications, and other business considerations. Salary offers at the top of the range are not common. Visit UC Benefit package to discover benefits that start on day one, and UC Total Compensation Estimator to calculate the total compensation value with benefits.
Qualifications
3 years experience working in one or more of the following fields: cybersecurity, computer science, computer information systems, or related field. (Required)
Advanced experience using identity and access tools and systems in a distributed IT environment (Required)
Hands-on experience with implementation and configuration of directory services (e.g., Active Directory, LDAP), authentication and federation (e.g., Single Sign-On (SSO)) technologies. (Required)
Hands-on experience with implementation and configuration of multi-factor authentication (MFA) solutions. (Required)
Experience participating in activities to advance an inclusive environment that values equity, diversity, inclusion and belonging. (Required)
Experience in complex higher education environments, serving academic and administrative functions of a large public university. (Preferred)
5+ years experience working in one or more of the following fields: cybersecurity, computer science, computer information systems, etc. (Preferred)
Demonstrated skills applying authentication and account management standards to vendor provisioning solutions, computer software and hardware at scale. (Required)
Advanced knowledge of IAM infrastructure deployment and configuration. Ability to review and diagnose system issues and implement preventative maintenance to ensure proactive continuity of services. (Required)
Proficient in scripting and programming languages (e.g., PowerShell, Python, Java) for automation and integration purposes. (Required)
Demonstrated expertise in technologies and products, such as: SCIM, J2EE, Java Servlets, XML, Web Services, Perl/CGI, SSL, etc. (Required)
Strong written and verbal communication skills and is able to communicate technical information and ideas to a diverse community of colleagues and stakeholders. (Required)
Able to establish and advance positive working relationships and a strong rapport with team members, stakeholders, and customers. (Required)
Strong organizational skills and is able to balance competing priorities and support concurrent projects. Experience working in a project-based environment using leading project management practices including schedule management, status reporting, and communication of project risks and issues. (Required)
Strong demonstrated problem-solving skills; scopes solutions based on knowledge of available resources and timelines. Able to ask questions, gather information, evaluate options, and make decisions with integrity. (Required)
Thinks creatively and proposes innovative ideas, including the incorporation of new technologies or processes. Is able to work with agility in a fast-paced environment. (Required)
Education, Licenses, Certifications & Personal Affiliations
Bachelor's Degree in cybersecurity, information technology, computer science, public administration, business administration, communications, or related field, or equivalent experience/training. (Required)
One or more of the following certifications: CCNP Security, CCIE Security, OSCP, CISSP, CEH, or equivalent certification. (Preferred)
CCIE Security certification. (Preferred)
Special Conditions for Employment
The anticipated pay range for this position is $83,800 - $140,000, annually; salary is dependent upon the skills and experience of the selected finalist.
NOTE: This position REQUIRES that a RESUME and COVER LETTER be submitted in addition to the application. Please have these two files ready to upload when applying.
This position is eligible for a hybrid work arrangement that includes regular visits to campus as needed (for those who work remotely, travel/lodging expenses are not eligible for reimbursement).
Background Check: Continued employment is contingent upon the completion of a satisfactory background investigation.
Live Scan Background Check: A Live Scan background check must be completed prior to the start of employment.
0%
Schedule
8 a.m. to 5 p.m., Pacific Time, Monday-Friday and/or variable based on operational needs
Union/Policy Covered
99-Policy Covered
Complete Position Description
https://universityofcalifornia.marketpayjobs.com/ShowJob.aspx?EntityID=38&jobcode=41068525