Identity & Access Management (IAM) Engineer

Job Locations US-NC-Cary
Requisition ID
Information Technology
Visa Sponsorship
Travel Requirements


Germany SAS


SAS believes in the whole employee experience. Meaningful work. Empowerment to make a difference that changes people’s lives. Dynamic work environments that foster innovation. And an award-winning culture that makes it all possible. We believe great ideas can come from anywhere. Whether you're a university recruit, or an experienced professional ready for the next big challenge, SAS brings perks, passion, and the potential to grow. No limits.





As a member of the Enterprise Identity & Productivity Services Team, you will be responsible for the design, installation, configuration, integration and ongoing support of the systems and integrations that comprise SAS’s strategic IAM program. The team works closely with our business partners and peer organizations within SAS IT to support our internal customers. Standards and technologies change, so your adaptability and ability to quickly evolve technical skillsets will be required. We are looking for a self-driven candidate with experience with IAM concepts as well as engineering and administration experience with IAM systems and their integrations. We believe in transforming the way we deliver strategic infrastructure services, using cutting-edge technology to improve business agility.


More specifically, your duties will include:

  • Assess business needs and design viable, practical solutions for identity management and directory services.
  • Serve as subject matter expert to other business units on authentication protocols (SAML, LDAP, Kerberos, Windows authentication, etc.).
  • Troubleshoot and support complex and critical applications such as OpenAM, Active Directory, and ADFS.
  • Produce and maintain current documentation on all aspects of these services.
  • Prioritize work to resolve complex technical issues in support of mission critical infrastructure technologies
  • Demonstrating a pattern of continuous learning by researching new technologies and software products
  • Assist with special projects and technologies, as assigned.



  • Two years of system administration experience in managing and supporting Linux and Windows server applications and infrastructure in a technologically diverse IT environment.
  • Understanding of and familiarity with SAML federation concepts and implementations.
  • Experience with maintaining and supporting directory services technologies and infrastructure (Active Directory, OpenLDAP, Okta, etc.).
  • Passion for continuous learning and mastering computer-related technologies.
  • Must be a proactive, self-directed, detail-oriented, independent worker with strong interpersonal and communication skills.
  • Ability to write clear and concise proposals, project documents, process and operational documentation.
  • Bachelor’s degree in Computer Science, related field or equivalent experience.



  • Proven track record of efficient and effective problem solving and customer service, with ability to clearly explain concepts and problems to customers of various technical backgrounds.
  • Adept at working in a collaborative, team-oriented environment.
  • Demonstrated ability to prioritize and deliver on multiple projects simultaneously.


  • Experience with Active Directory and Active Directory Federation Services (ADFS).
  • Experience with ForgeRock OpenAM.
  • Experience implementing and supporting enterprise-class Identity and Access Management and/or Identity and Access Governance solutions and infrastructure, such as Okta, CA, Oracle, NetIQ, SailPoint, CA, Oracle, Saviynt, etc.
  • Experience with scripting languages such as PowerShell.
  • Experience working in regulated environments and/or with regulated client spaces.
  • Experience with IT security standards and controls frameworks (PCI, NIST, HIPAA, etc.).
  • Knowledge of Kerberos and authentication techniques for Linux and other non-Windows platforms.




Additional Information:

To qualify, applicants must be legally authorized to work in the United States, and should not require, now or in the future, sponsorship for employment visa status.

SAS is an equal opportunity employer.  All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status or any other characteristic protected by law.

The level of this position will be determined based on the applicant's education, skills and experience.

Resumes may be considered in the order they are received.

SAS employees performing certain job functions may require access to technology or software subject to export or import regulations. To comply with these regulations, SAS may obtain nationality or citizenship information from applicants for employment. SAS collects this information solely for trade law compliance purposes and does not use it to discriminate unfairly in the hiring process.


Want to stay up to date with SAS culture, products and jobs? Follow us on LinkedIn LinkedIn Logo


Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share with your networks