JOB TITLE: Senior Principal IAM Engineer Location - Remote Work Time in CST Duartion - Contract DEPARTMENT: Global Operations & Supply Chain – IT– Operations Innovation MAIN PURPOSE OF JOB (BRIEF SUMMARY) Client is seeking a skilled Identity and Access Management IT Engineer / Architect to join our dynamic team. This role focuses on supporting application development and run support for our manufacturing digital transformation solutions in the areas of identity and access management, encryption, authentication, certificate management, and Kubernetes orchestration. The ideal candidate will have a strong background in these areas and a passion for ensuring secure and efficient IT operations. KEY RESPONSIBILITES Must Have: Authentication as primary area of knowledge Experience with identity providers such as Keycloak for authentication and authorization. Deep knowledge of identity protocols such as OAuth 2.0, OIDC, and SAML 2.0 Develop and support authentication mechanisms, including multi-factor authentication (MFA). Troubleshoot and resolve authentication-related issues. Stay updated with the latest authentication technologies and best practices. Provide guidance and recommendations for constrained IIoT device authentication and access policies. Identity Management: Design, implement, and manage identity management solutions for custom developed applications. Support user provisioning, de-provisioning, and access management processes and automation. Ensure compliance with identity and access management policies. Encryption: Implement and maintain encryption protocols to protect sensitive data. Manage encryption keys and ensure secure storage and access. Monitor and audit encryption processes for compliance and effectiveness. Nice to Have: Kubernetes Orchestration: Support containerized application development and deployment. Monitor and optimize Kubernetes performance and scalability. Improve service availability across cloud and ground clusters. Strong Linux Experience: Proficient in administering Linux systems (e.g., Ubuntu, CentOS, RHEL, Debian) in production environments. Strong knowledge of Linux internals including system calls, process management, networking, and filesystems. Experience with system monitoring and performance tuning on Linux servers. Certificate Management (secondary area of knowledge): manage the lifecycle of digital certificates, including issuance, renewal, and revocation. Ensure secure storage and handling of certificates and implement intermediate certificate issuers Support developers in automation for certificate rotation DevOps Implements GitOps workflows for Kubernetes using declarative infrastructure in Git Manages manifests, Helm charts, or Kustomize in version control. Automates reconciliation between Git and clusters for consistent deployments Monitors and troubleshoots GitOps deployment issues, enforcing drift detection with Git-centric tools Designs, builds, and maintains scalable CI/CD pipelines using GitLab CI or similar tools. Run Support: Provide ongoing support and maintenance for applications and services. Troubleshoot and resolve technical issues in a timely manner. Collaborate with development teams to ensure smooth operation of applications. Mentor and develop offshore support team members to. QUALIFICATIONS / EXPERIENCE Bachelor’s degree in computer science, Information Technology, or a related field. 4+ years of experience in IT engineering, with a focus on identity management, encryption, authentication, certificate management, and Kubernetes orchestration. Strong understanding of security best practices and compliance requirements. Experience with cloud platforms such as AWS, Azure, or Google Cloud. Proficiency in scripting languages (e.g., Python, Bash) and automation tools. Excellent problem-solving skills and attention to detail. Strong communication and collaboration abilities. Preferred Qualifications: Certifications in relevant technologies (e.g., Certified Kubernetes Administrator, CISSP, etc.). Experience with DevOps practices and tools (e.g., CI/CD pipelines, GitOps). Familiarity with microservices architecture and containerization technologies. PHYSICAL JOB REQUIREMENTS The physical demands described within the principal accountabilities and core competencies sections of this job description are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. While performing the duties of this job, the employee is regularly required to be independently mobile. The employee is also required to interact with a computer and communicate with peers and co-workers. Must be able to travel independently to various Client buildings/sites if required to do.
