Identity & Access Management Engineer

Argo Group International Holdings, Inc.and American National, US based specialty P&C companies, (together known as BP&C, Inc.) are wholly owned subsidiaries of Brookfield Wealth Solutions, Ltd. ("BWS"), a New York and Toronto-listed public company. BWS is a leading wealth solutions provider, focused on securing the financial futures of individuals and institutions through a range of wealth protection and retirement services, and tailored capital solutions.

Job Description

We are seeking an experienced Identity and Access Management (IAM) Engineer to join a growing IAM team in the financial and insurance space. The IAM Engineer will play a key role in designing, implementing, and managing identity and access solutions to ensure secure and efficient access to critical systems, applications, and data. The ideal candidate has strong technical knowledge of IAM concepts, tools, and technologies, and possesses a deep understanding of security best practices, compliance standards, and automation in identity management.

What You'll Be Doing

Design and Implementation:

• Develop and implement IAM policies, procedures, and standards to ensure secure access to systems and data.
• Design and deploy solutions for user provisioning, authentication, authorization, and identity governance.
• Collaborate with stakeholders to identify identity-related risks and implement security controls.

Access Management:

• Implement and manage Single Sign-On (SSO), Multi-Factor Authentication (MFA), and Privileged Access Management (PAM) solutions.
• Integrate applications and systems into the IAM framework for centralized authentication and access control.
• Ensure role-based access control (RBAC), attribute-based access control (ABAC), and least privilege principles are followed.

Identity Lifecycle Management:

• Oversee identity lifecycle management, including onboarding, offboarding, and user access reviews.
• Automate provisioning and de-provisioning of user accounts using IAM tools and scripts.
• Conduct regular audits of user access and maintain compliance with relevant regulations (e.g., NYDFS, SOX).

Monitoring and Troubleshooting:

• Monitor identity systems for performance, security incidents, and unauthorized access attempts.
• Troubleshoot and resolve IAM-related issues across the organization.
• Collaborate with IT and security teams to respond to security incidents and improve IAM security posture.

Collaboration and Training:

• Work closely with application developers, infrastructure teams, and business units to understand their access needs and provide secure IAM solutions.
• Provide guidance and training to users and teams on IAM policies, best practices, and tools.
• Keep up to date with industry trends, threats, and best practices in IAM.

What We're Looking For

• Bachelor's degree in computer science, Information Security, or a related field, or equivalent work experience.
• 3-7 years of hands-on experience in IAM, cybersecurity, or a related field.
• Strong understanding of identity management protocols and standards such as SAML, Oauth, LDAP, etc.
• Experience with IAM tools and platforms such as SailPoint, etc.
• Knowledge of authentication and authorization technologies such as MFA, SSO, and RBAC.
• Familiarity with scripting languages (e.g., Python, PowerShell) for automation of IAM processes.
• Experience with cloud platforms and SaaS tools (AWS, Azure AD, M365, Workday) and integrating IAM in hybrid environments.
• Excellent problem-solving skills and attention to detail.
• Relevant certifications (e.g., CISSP, CISM, Certified Identity and Access Manager) are a plus.