The Identity & Access Management Engineer II is a mid-level technical role responsible for designing, implementing, and supporting advanced Identity and Access Management (IAM) solutions across the organization. This position focuses on identity lifecycle automation, identity governance, access control engineering, and integration of IAM platforms with enterprise systems. The IAM Engineer II works independently on moderately complex initiatives, contributes to IAM architecture discussions, and drives improvements in identity security, automation, and operational efficiency. This role requires strong hands-on experience with IAM technologies, scripting, and authentication/authorization standards, along with the ability to mentor junior staff and collaborate across IT and security teams. Design, configure, and enhance IAM solutions across on-prem, hybrid, and cloud environments. Manage and optimize Single Sign-On and Multi-Factor Authentication systems. Create and maintain scripts to automate IAM tasks, reduce manual work, and improve operational efficiency. Analyze and resolve complex identity-related issues involving authentication, access, directory services, and application integrations. Maintain identity-related controls and contribute to governance framework development. Develop and enhance automated provisioning and deprovisioning workflows. Monitor IAM systems for performance, reliability, and security events, escalating as appropriate. Maintain system documentation and support updates to security policies and technical procedures. Provide technical guidance to junior staff on identity and access management operations. Participate in strategic meetings for planning user access management initiatives. Integrate user access systems to enterprise applications using standards like SAML, O - Auth, Open. ID Connect, SCIM, and API-based provisioning. Lead small to mid-sized IAM projects and contribute to roadmap planning. Other Functions: Communicate technical concepts clearly to both technical and non-technical stakeholders. Develop and update security policies, procedures, and technical documentation. Demonstrate strong multitasking skills, managing multiple projects with minimal supervision. Develop critical thinking skills to analyze and solve intermediate security problems. Participate in security awareness activities related to identity and access best practices. Collaborate with different teams, showing an ability to understand and integrate cross-functional inputs. Identify opportunities to improve identity processes, security controls, and automation. Required Qualifications:Associate degree and three (3) years of progressively responsible experience in IT or IAM engineering. OR - Five (5) years of progressively responsible experience in IT or IAM engineering roles. Practical experience with PowerShell, Python, or equivalent scripting languages. Practical experience with Active Directory and domain management. Preferred Qualifications:Bachelor’s degree from an accredited four-year college or university in Information Security, Information Technology, or a related field. Experience with identity automation, SCIM provisioning, or API-based integrations. Comp. TIA Security or equivalent industry standard information security certification. Experience with one or more IAM/ IGA/ PAM platforms (e.g., Microsoft Entra ID, SailPoint, Okta, Cyber. Ark, Saviynt).