Colorado Public Employees' Retirement Association

Apply for this job

Enterprise Applications Senior IAM Engineer (Information Technology)



JOB SUMMARY

Colorado Public Employees' Retirement Association supports the aspirations and dreams of a secure defined benefit retirement for over 650,000 members working for Colorado. By joining our team, you would become one of them, have direct influence supporting the retirement security of people you know, and be part of an IT team that enjoys teamwork, exceptional benefits, and opportunity to grow your skills and learn new skills.

We are looking for a talented and experienced Senior Identity and Access Management (IAM) Engineer to join our growing team. This individual will have in-depth experience with identity management technologies, specifically Okta, Active Directory (AD), Entra ID/Azure AD, and other IAM tools. The ideal candidate will play a key role in securing our organization's identity infrastructure, implementing identity solutions, ensuring compliance, and contributing to the continuous improvement of IAM practices.

KEY RESPONSIBILITIES

  • IAM Solutions Design & Implementation: Lead the design, development, and deployment of IAM solutions using Okta, Azure AD/Entra ID, and Active Directory, ensuring seamless integration across the enterprise.

  • Access Management: Administer and configure role-based access control (RBAC), single sign-on (SSO), multi-factor authentication (MFA), and self-service password reset solutions.

  • Identity Federation & Integration: Manage and implement identity federation strategies across cloud applications, on-premise systems, and third-party platforms.

  • Identity Governance: Develop, manage, and enforce IAM policies and processes to ensure secure user provisioning, de-provisioning, and lifecycle management in accordance with business needs and security best practices.

  • Security & Compliance: Monitor and audit IAM systems for compliance with internal policies and external regulations (such as HIPAA). Address potential security risks and ensure the integrity of identity data.

  • Troubleshooting & Support: Provide expert-level troubleshooting support for identity-related incidents, including Active Directory, Okta, and Azure AD integrations. Ensure timely resolution and root cause analysis.

  • Integration & Automation: Collaborate with internal IT teams to integrate IAM solutions with various systems, applications, and databases. Develop automation workflows for user provisioning and de-provisioning. Strong scripting or automation skills (e.g., PowerShell, Python, or other automation tools).

  • Collaboration: Work closely with security, infrastructure, and application teams to align IAM strategies with organizational goals. Communicate with key stakeholders regarding IAM best practices, policies, and technologies.

  • Training & Mentorship: Mentor and provide guidance to junior IAM engineers and cross-functional teams. Assist in training and educating staff on IAM tools and policies.

  • Innovation & Improvement: Stay up-to-date with the latest IAM technologies, trends, and security threats. Proactively recommend improvements to existing systems and processes.

  • IAM Systems & Protocols: Extensive experience in Identity and Access Management (IAM), with a strong focus on Okta, Active Directory, and Azure AD/Entra ID. Familiarity with IAM protocols such as SAML, OAuth, OpenID Connect, and LDAP.

WHAT WE OFFER

  • Standard office environment with frequent computer use

  • Competitive salary and benefits package.

  • Opportunities for career growth and professional development.

  • A collaborative and inclusive team culture.

  • Flexible work environment with remote options.

  • Required occasional on-call assistance outside of normal business hours

JOB DESCRIPTION

This position is responsible for designing, implementing, maintaining, testing, monitoring and assessing improvements for technology systems across the organization. Serves as an escalation resource for teammates and peers to address complex technical matters. Leads application and systems security maintenance, planning and implementation for enterprise applications. Manages technology projects of various sizes and delivers process improvement solutions.

ESSENTIAL FUNCTIONS

  • Implements, upgrades and maintains multiple systems and processes for the organization

  • Applies different techniques to analyze, test and implement ad-hoc solutions in a prudent and swift manner. Foresee and avoid potential impacts on the business and colleagues

  • Adept at making decisions and optimizing future work utilizing planning, testing, and proof of concepts

  • Liaise with vendors and other IT personnel for problem resolution

  • Provides technical and task leadership on moderate to large size projects with minimal supervision required from senior staff and management

  • Participates in setting technical direction, training, and mentoring other teammates to develop skills and introduce new concepts

  • Writes and maintains custom scripts to increase system efficiency and automate tasks

  • Participates in Business Continuity through Disaster Recovery planning and testing

  • Implements, configures and administers products enabling ITSM processes

  • Implements process automation across the organization to improve efficiencies and reduce errors

QUALIFICATIONS

  • Degree in technical (STEM) field and four years' experience in technical role preferred, or equivalent combination of education and experience

  • Ability to conceptualize entire platforms and integrations, with demonstrated security knowledge

  • Thorough understanding of ITIL/ITSM processes

  • Able to capacity plan, understanding current hardware, software and licensing needs

  • Ability to present ideas in business-friendly and user-friendly language

  • Experience with batch job schedulers, scripting language, SQL, Oracle and ERP systems preferred

  • Adept at administering and integrating enterprise applications for the organization

  • Excellent oral and written communication skills

  • Strong understanding and demonstrated experience with system design and software integration

WORKING CONDITIONS

  • Standard office environment with frequent computer use

  • Required occasional on-call assistance outside of normal business hours

  • All employees are expected to present themselves in a professional manner in alignment with the financial services industry

HYBRID WORK OPTION

  • Opportunity to work from home up to three days per week. Eligibility dependent upon factors detailed in PERA's Work from Home Policy.

JOB DESCRIOTION DISCLAIMER

This job description is not designed to cover or contain a comprehensive listing of activities, duties, or responsibilities that are required of an employee. Duties, responsibilities, and activities may change or new ones may be assigned with or without notice.

Unfortunately, at this time, we cannot consider candidates that require sponsorship (now or in the future), or are located outside of the US.

All Colorado PERA employees are subject to PERA's Ethics Policy and some employees are subject to the Personal Trading Policy. These policies include restrictions on outside business activities and employment and have certain requirements on personal trading.  You may request copies of these policies from PERA's talent acquisition team and any questions can be answered by PERA's Investment Administration team.

INTERESTED CANDIDATES
Complete the employment application online at https://www.copera.org/careers. Please have copies of your resume and cover letter available to upload

ABOUT COLORADO PERA

Looking for a career where you can make a difference? Colorado PERA offers benefit services to public employees across Colorado, including teachers, state troopers, snowplow drivers, correctional officers and many others who provide valuable services. As Colorado's largest pension plan, we serve and educate over 600,000 members who are former and current public employees. 

At PERA you will earn more than a paycheck. PERA is a culture where you can grow your potential and work in an inclusive environment, where diverse perspectives are valued. We hire exceptional employees and recognize that our people are our best asset. Not only do we make sound investments for our members, PERA invests in our employees' growth through training and leadership opportunities.

To promote wellbeing, we offer hybrid or flexible working options for most roles and a total rewards and benefit program including health, dental and vision coverage - eligibility starts the first day of the month following the date of hire for most plans; generous paid time off and volunteer hours; pension and retirement plans, including PERA's defined benefit plan, 457 defined contribution plan, and 401(k) employer match, as applicable; tuition assistance; free, convenient on-site parking or RTD subsidy; free on-site fitness center to stay active; employee assistance program; training, leadership and mentoring programs and more. PERA is a Public Service Loan Forgiveness qualifying employer.

To learn more about life at PERA, watch this video or visit www.copera.org/careers.

Position Title: Enterprise Applications Senior IAM Engineer
Division: Information Technology
Reports to: Enterprise Applications Manager
Job Status: Full Time/Exempt
Salary: $117,000– $147,000 Annually, Commensurate with experience
Posting Dates: 03/21/2025 - 04/67/2025

Apply Salary Minimum: 117000Salary Maximum: 147000
Apply Here done