Sr Identity & Access Management Engineer

The Sr Identity and Access Management (IAM) Engineer role is responsible for the design, development, testing, implementation, support and audit of Coinstar’s identity and access management frameworks, systems and protocols. This role is a critical part of Coinstar’s practice of ensuring the right resources have the right access to the right resources and data inclusive of related regulatory obligations. This role partners with Coinstar’s Product, Marketing, Risk and Compliance, Infrastructure, Information Security and Application engineering resources during the requirement, design, development, testing and deployment processes as well as during periods of audit and continuous improvement in Coinstar’s data classification framework. This roles spans key controls in enterprise systems as well as consumer facing technologies.

Key Responsibilities

• Design, develop, test and implement identity services across all applicable Coinstar resources/systems
• Implement and enforce security policies, compliance requirements, technology standards and governance frameworks within Coinstar’s identity services
• Automate and optimize the deployment, configuration, testing and monitoring of Coinstar’s IAM services
• Troubleshoot and resolve alerts associated to Coinstar’s IAM services across the categories of performance, availability, access exceptions and any other areas of general security concern
• Manage access on an ongoing basis across the areas of identities, system access accounts, authentication, authorization, entitlements and permissions
• Participate in Coinstar’s data classification framework and mature Coinstar’s data loss prevention capabilities
• Perform recurring audit functions in accordance with Coinstar’s regulatory and other data privacy obligations
• Lead and participate in evaluating IAM third party services as needed leveraging relationships with 3rd parties both strategically and tactically to accomplish departmental goals
• Monitor, analyze, and respond to security events using Security Information and Event Management (SIEM) and Security Orchestration, Automation, and Response (SOAR) platforms
• Manage, and maintain firewalls and other network security devices enforcing security policies.
• Support endpoint security and email security solutions, ensuring effective deployment, monitoring, and response to threats
• Participate in security architecture reviews, providing input on the design and implementation of secure systems and infrastructure to align with best practices and compliance requirements.
• Involved in cyber security incident response activities, including detection, investigation, containment, eradication, and recovery
• Assist with vulnerability assessments and remediation efforts
• Help drive implementation and maintenance of compliance frameworks and certifications
• Collaborate with other Architects, Engineers and Leaders to deliver on enhancements and new capabilities with efficiency and quality using reference architectures, proof of concepts, and solution designs
• Stay current with identity and access management industry trends and associated vulnerability vectors to inform Coinstar’s IAM roadmap
• Participate in on call support rotations
  
  

Education & Experience

• Bachelor’s degree in relevant area of study or a related field
• 7+ years of information management or an adjacent domain engineering experience
• 5+ years of identity and access management engineering experience
• 3+ years of senior level identity and access management experience including performing current state assessments and defining go forward technology roadmaps
• 3+ years of Cyber Security Experience
• Familiarity with Cloud Security Architecture best practices
• Proficiency in scripting languages such as Python, PowerShell, Azure CLI, etc
• Certifications in Azure related roles a plus (Azure Administrator, Solutions Architect, etc)
  
  

Knowledge, Skills & Abilities

• Extremely strong communicator verbally and in written form with the ability to communicate to multiple levels in the organization.
• Very organized and efficient in how the responsibilities of this role are executed.
• Ability to lead and mentor other team members.
• Strong knowledge of Azure subscription architecture
• Good understanding of Azure costing and cost optimization
  
  

Location & Travel Expectations

• Our corporate headquarters in Bellevue, WA, but this position offers the flexibility to work remotely from anywhere within the U.S.
• This position requires some business travel.
  
  

Pay And Benefits

The typical starting salary range for this position is between $113,892 - $151,731 per year. Coinstar utilizes geographically based pay ranges, within the United States, which allows us to pay competitively and consistently based on location. Within the range for the applicable geographic area, individual pay is determined by several factors, including job-related skills, experience, and relevant education or training. Your recruiter can share the salary range specific to your location. Employees in this position have the potential to increase their base salary up to $170,837 per year, which is the max end of the range, based on ongoing demonstrated and continuous performance in the role. Short-Term and Long-Term bonus incentives are a part of the total compensation package and are based on Company and Individual performance.

We believe that continued good health, financial security, and work-life balance are important. Coinstar is proud to offer a complete, progressive benefits package including:

• Health & Wellness Coverage – Three outstanding medical plans to choose from, along with dental and vision insurance, Short- and Long-Term Disability Insurance, and Life Insurance.
• Retirement Savings – Traditional and Roth 401(k) plans with a company-match that immediately vests.
• Paid Time-Off – PTO accruals begin at 18 days per year, plus 10 company holidays and 2 floating holidays annually. Additionally, we offer paid parental and adoption leave.
• Other Perks and Benefits – A generous Corporate Matched Giving plan and an Employee Assistance Program.
• Work Environment – We offer a casual and flexible work environment with work from home options.
  
  

Physical Requirements

Sedentary work involves remaining in a stationary position most of the time in front of a computer, using a keyboard, mouse and telephone. Regularly operate a computer and other office equipment. Occasionally move about the work site to access file cabinets, office equipment, etc. Exert up to 10 lbs. of force occasionally, and/or a negligible amount of force frequently or regularly move objects. Communicate and exchange information with co-workers and other individuals in person and electronically.

EEO

We are Coinstar because of our people. We value and embrace their unique and diverse talents, perspectives and experiences and strive to build an environment where everyone can bring their best self to work. We are an Equal Opportunity Employer. Coinstar will ensure that persons with disabilities are provided with reasonable accommodations. If reasonable accommodation is needed, please contact our Human Resources team via AskHR@coinstar.com. We believe that diversity and inclusion make us a better, more innovative, and successful company, and we seek to recruit and retain a diverse talent pool. Even if you do not meet every qualification, we encourage you to apply.

This job description is not intended to be all-inclusive. Employee may perform other related duties as assigned to meet the ongoing needs of the organization.