Job description

DMBA provides a variety of benefits including health, life, and retirement to employees of the Church of Jesus Christ of Latter-day Saints and its affiliates. DMBA began operations in 1970 and is now in its 55th year of supporting the Church of Jesus Christ of Latter-day Saints and its mission. Position Summary: DMBA is looking for a Senior Information Security Engineer to join the Information Security Team. The Information Security Team reports to the Chief Technology Officer and is responsible for the Information security program. This technical operations role will support various Information security cloud, infrastructure, and identity projects to safeguard sensitive business information. Responsibilities: • Help define and implement a comprehensive IAM program to enforce least privilege across organizational assets and services • Provide SME support and guidance on IAM solutions including problem resolution, technical support, change management, and maintenance • Lead complex requirements gathering efforts, manage stakeholder expectations, and ensures delivered solutions drive efficiency, accuracy, and user satisfaction • Identify gaps in IAM technologies and strategies and evaluate solutions and procedures for optimization and continuous improvement • Support IAM integration with various on-premises and cloud infrastructure to enable MFA and SSO • Evaluate IAM technologies and support the creation of a road map to address privileged access management (PAM), passwordless capabilities, conditional access, identity governance and administration (IGA), and other IAM initiatives • Evaluate various platforms and technologies for IAM capabilities and standardize role-based access • Collaborate with the security operations team on IAM logging and monitoring • Act as a strategic liaison between business units and technology teams to define, implement, and optimize systems that meet enterprise objectives • Support the implementation and monitoring of system baselines and configurations • Partner with IT Operations to support certificate management • Participate in incident response tabletop exercises to identify gaps and implement solutions • Assist with the remediation of vulnerability and penetration test findings • Actively participate in architectural discussions with other engineers and support staff on various information security topics such as ZTNA, observability, artificial intelligence, UEBA, IGA, and emergent technologies • Support the creation and management of a user behavior and entity analytics function • Help define policies and procedures around IAM and other information security related functions • Manage the complexity of non-human identities (NHI) in code, robotic process automation bots, AI agents, API keys, and various other use cases • Be a subject matter expert on various IAM solutions and products • Be an active participant in building the information security program by evaluating and suggesting new solutions and ideas and championing the information security program Qualifications and Experience: • 4-year Bachelor's degree or equivalent experience • 5+ years of technical IT and information security experience • 3-4 years of Identity and Access Management experience • Strong understanding of information security best practices and security frameworks (NIST CSF, ISO 27001, ISO27005, CIS Controls, HITRUST, etc.) • Deep knowledge of IAM in relation to databases, common operating systems (Windows/Linux), networking, application, and cloud environments • CISSP, AWS, Microsoft, cloud, or equivalent information security training and expertise preferred • Experience with HIPAA, DOL Information security best practices, international, federal, and state privacy laws • Strong knowledge of IAM security platforms and technologies (MS Entra ID, AD, Okta, PAM, SAML, OAuth, LAPS, etc.) • Experience with Microsoft 365, Entra, Active Directory, Azure, AWS, CIS Benchmarks, cloud apps, and other common platforms and technologies • PowerShell skills preferred • Candidate must reside within a commutable distance to downtown Salt Lake City, UT. Other Qualifications: • Ability to work with various IT and Business teams to address sensitive topics and risk • Strong management and business communication skills • Deep technical understanding and ability to apply it to complex technical and business solutions • Highly motivated team player with a desire to improve the information security program • Work in a hybrid remote work and office work environment • Identify patterns, root causes, and reusable solutions • Anticipate edge cases and apply critical thinking to avoid short-sighted fixes • Mentoring of junior teammates and peers What We Offer: • Competitive pay • Rich medical, vision and dental benefits with low premiums. One of the top health plans in Utah • Rich retirement planning: including 401(k) company match, 8% EDRC Employer Discretionary Retirement Contribution, life insurance, and full-service Financial Planners onsite at no cost • Generous paid leave plan that starts accruing your first day, your birthday off, additional sick leave and 12 paid holidays • Award winning wellness program with health coaching, ability to earn 3 additional days off a year, fun activities and an onsite gym. • Tuition reimbursement • Hybrid work schedules available depending on position. • Employee Assistance Program

Requirements