{"schemaVersion":"jobsearcher.job.v1","id":"9b7374e26bc1db9e97cab45f","url":"https://jobsearcher.com/jobs/9b7374e26bc1db9e97cab45f","canonicalUrl":"https://jobsearcher.com/jobs/9b7374e26bc1db9e97cab45f","title":"System Engineer- Identity","description":"System Engineer- Identity\nLocation: Plano, TX, US 75024\n\nBrand: Optimum\n\nRequisition #: 11250\n\nJob Summary\nThe IAM & PAM Engineer will be responsible for ensuring that Optimum's Identity & Access Management and Privileged Access Management platform is implemented, designed, and maintained to ensure that all applications being used within the company are on-boarded for access entitlements, provisioning and de-provisioning of users. Candidate must be familiar in integrating and managing privileged accounts, ensuring security compliance, and providing technical support for Delinea / Thycotic Secret Server and Privilege Manager. Candidate must be well versed with identity federation principles as the person will have the responsibility to set the standard for the firm in terms of identity & access management as well as privilege access management. Candidates must also have role-based access control (RBAC) experience in relation to design, implementation, and remediation. This position requires participation in technical research and development to enable continuing innovation for Privilege Access Management and Information Risk management.\n\nResponsibilities\n\nProvides information security subject matter expertise in support of projects sponsored by business units and other EIT departments.\n\nInstall, configure and maintain Delinea Secret Server, Privilege Manager, and Connection Manager in on-premises and cloud environments (Azure, AWS, GCP).\n\nAdminister and engineer Delinea Secret Server for integrating privileged accounts across on-premises and cloud environments, including Azure.\n\nCollaborate with cross-functional teams to integrate PAM tools into both on-premises and cloud-based systems.\n\nIntegration of Automated Password rotation on Service Accounts, and other Highly Privileged accounts.\n\nConduct regular assessments and audits to ensure the security and compliance of privileged accounts and access across all environments.\n\nLead in the documentation of processes, procedures, and best practices for Delinea administration and privileged access management.\n\nStay up to date on the latest developments in PAM technologies and cybersecurity best practices through self-study and training opportunities.\n\nEnsures that system implementations conform to established company security standards and/or industry best practices.\n\nParticipates in the budget process by specifying Information Security technical, resource and personnel requirements for capital projects.\n\nConducts laboratory and pilot evaluations of security technologies.\n\nProvides information security consulting services to business units and other departments.\n\nMaintains support relationships with various vendors and manufacturers.\n\nDevelops and maintains minimum security baseline configurations for various handheld, workstation and server operating systems.\n\nProcesses Service Desk tickets assigned to the Engineering team. Responsible for problem resolution.\n\nDevelops documentation including operations manuals, runbooks, procedures and problem resolutions.\n\nQualifications\n\nBachelor's degree in IT Security, Cybersecurity, Computer Science, or equivalent experience\n\nMinimum 3-5 years of experience in Information Security with a focus on Identity and Access Management with Privileged Access, preferably using Delinea or similar tools\n\nIn-depth understanding of Delinea Secret Server, Privilege Manager, Connection Manager, and distributed vaulting models\n\nIntegrating Delinea with DevOps pipelines, cloud-native tools, and modern ITSM platforms (ServiceNow)\n\nDeep understanding of RBAC (Role Based Access Control), Single Sign On (SSO), Least Privilege, JIT Access, and Privileged Session Management\n\nIdentity Access and Governance Management - Preferably skills with SailPoint, Okta, and a Privilege Access Management solution such as Delinea, CyberArk and BeyondTrust\n\nStrong Analytical background and troubleshooting skills.\n\nUnderstanding of Active Directory domains, LDAP directories, Oracle Identity, Unix Identity\n\nStrong understanding of cloud computing concepts including experience with Microsoft Azure, Amazon Web Services, Google Cloud Platform\n\nProficiency with a scripting language (Unix/Linux shell, Python, or PowerShell) is preferred\n\nExpert knowledge of Microsoft Active Directory, Azure Active Directory\n\nAdvanced level knowledge in architecture and implementation of identity and access management solutions\n\nExtensive experience in design and troubleshooting of user provisioning and deprovisioning workflows, including automation of access and removal to various applications and/or authorities\n\nDemonstrated knowledge of identity, authentication, security, privacy, and compliance and how they factor into cloud and hybrid solutions.\n\nStrong working knowledge of network architecture and standards for large enterprise\n\nKnowledge of compliance standards and practices such as PCI DSS, Sarbanes Oxley, and Department of Justice National Security Agreement\n\nAbility to assemble project requirements and contribute to security design implementation from inception to completion\n\nThis position follows a hybrid work model and is based at our Plano, TX office\n\nNearest Major Market: Plano\n\nNearest Secondary Market: Dallas\n\nWe are an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, creed, national origin, religion, age, disability, sex, sexual orientation, gender identity or protected veteran status, or any other basis protected by applicable federal, state, or local law. The Company provides reasonable accommodations upon request in accordance with applicable requirements.\n\nOptimum collects personal information about its applicants for employment that may include personal identifiers, professional or employment related information, photos, education information and/or protected classifications under federal and state law. This information is collected for employment purposes, including identification, work authorization, FCRA-compliant background screening, human resource administration and compliance with federal, state, and local law.\n\nApplicants for employment with the Company will never be asked to provide money (even if reimbursable) as part of the job application or hiring process. Please review our Fraud FAQ for further details.\n\n#J-18808-Ljbffr","company":"Optimum","rawCompany":"optimum","city":"Plano","state":"TX","isRemote":false,"isActive":false,"createdAt":"2026-04-14T03:34:52.016Z","occupations":[{"code":"15-1299.08","title":"Computer Systems Engineers/Architects","slug":"computer-systems-engineers-architects"},{"code":"15-1299.05","title":"Information Security Engineers","slug":"information-security-engineers"},{"code":"15-1244.00","title":"Network and Computer Systems Administrators","slug":"network-and-computer-systems-administrators"}],"industries":[{"code":"541512","title":"Computer Systems Design Services","slug":"computer-systems-design-services"},{"code":"561621","title":"Security Systems Services (except Locksmiths)","slug":"security-systems-services-except-locksmiths"},{"code":"541513","title":"Computer Facilities Management Services","slug":"computer-facilities-management-services"}],"jobPosting":{"@context":"https://schema.org","@type":"JobPosting","title":"System Engineer- Identity","description":"System Engineer- Identity\nLocation: Plano, TX, US 75024\n\nBrand: Optimum\n\nRequisition #: 11250\n\nJob Summary\nThe IAM & PAM Engineer will be responsible for ensuring that Optimum's Identity & Access Management and Privileged Access Management platform is implemented, designed, and maintained to ensure that all applications being used within the company are on-boarded for access entitlements, provisioning and de-provisioning of users. Candidate must be familiar in integrating and managing privileged accounts, ensuring security compliance, and providing technical support for Delinea / Thycotic Secret Server and Privilege Manager. Candidate must be well versed with identity federation principles as the person will have the responsibility to set the standard for the firm in terms of identity & access management as well as privilege access management. Candidates must also have role-based access control (RBAC) experience in relation to design, implementation, and remediation. This position requires participation in technical research and development to enable continuing innovation for Privilege Access Management and Information Risk management.\n\nResponsibilities\n\nProvides information security subject matter expertise in support of projects sponsored by business units and other EIT departments.\n\nInstall, configure and maintain Delinea Secret Server, Privilege Manager, and Connection Manager in on-premises and cloud environments (Azure, AWS, GCP).\n\nAdminister and engineer Delinea Secret Server for integrating privileged accounts across on-premises and cloud environments, including Azure.\n\nCollaborate with cross-functional teams to integrate PAM tools into both on-premises and cloud-based systems.\n\nIntegration of Automated Password rotation on Service Accounts, and other Highly Privileged accounts.\n\nConduct regular assessments and audits to ensure the security and compliance of privileged accounts and access across all environments.\n\nLead in the documentation of processes, procedures, and best practices for Delinea administration and privileged access management.\n\nStay up to date on the latest developments in PAM technologies and cybersecurity best practices through self-study and training opportunities.\n\nEnsures that system implementations conform to established company security standards and/or industry best practices.\n\nParticipates in the budget process by specifying Information Security technical, resource and personnel requirements for capital projects.\n\nConducts laboratory and pilot evaluations of security technologies.\n\nProvides information security consulting services to business units and other departments.\n\nMaintains support relationships with various vendors and manufacturers.\n\nDevelops and maintains minimum security baseline configurations for various handheld, workstation and server operating systems.\n\nProcesses Service Desk tickets assigned to the Engineering team. Responsible for problem resolution.\n\nDevelops documentation including operations manuals, runbooks, procedures and problem resolutions.\n\nQualifications\n\nBachelor's degree in IT Security, Cybersecurity, Computer Science, or equivalent experience\n\nMinimum 3-5 years of experience in Information Security with a focus on Identity and Access Management with Privileged Access, preferably using Delinea or similar tools\n\nIn-depth understanding of Delinea Secret Server, Privilege Manager, Connection Manager, and distributed vaulting models\n\nIntegrating Delinea with DevOps pipelines, cloud-native tools, and modern ITSM platforms (ServiceNow)\n\nDeep understanding of RBAC (Role Based Access Control), Single Sign On (SSO), Least Privilege, JIT Access, and Privileged Session Management\n\nIdentity Access and Governance Management - Preferably skills with SailPoint, Okta, and a Privilege Access Management solution such as Delinea, CyberArk and BeyondTrust\n\nStrong Analytical background and troubleshooting skills.\n\nUnderstanding of Active Directory domains, LDAP directories, Oracle Identity, Unix Identity\n\nStrong understanding of cloud computing concepts including experience with Microsoft Azure, Amazon Web Services, Google Cloud Platform\n\nProficiency with a scripting language (Unix/Linux shell, Python, or PowerShell) is preferred\n\nExpert knowledge of Microsoft Active Directory, Azure Active Directory\n\nAdvanced level knowledge in architecture and implementation of identity and access management solutions\n\nExtensive experience in design and troubleshooting of user provisioning and deprovisioning workflows, including automation of access and removal to various applications and/or authorities\n\nDemonstrated knowledge of identity, authentication, security, privacy, and compliance and how they factor into cloud and hybrid solutions.\n\nStrong working knowledge of network architecture and standards for large enterprise\n\nKnowledge of compliance standards and practices such as PCI DSS, Sarbanes Oxley, and Department of Justice National Security Agreement\n\nAbility to assemble project requirements and contribute to security design implementation from inception to completion\n\nThis position follows a hybrid work model and is based at our Plano, TX office\n\nNearest Major Market: Plano\n\nNearest Secondary Market: Dallas\n\nWe are an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, creed, national origin, religion, age, disability, sex, sexual orientation, gender identity or protected veteran status, or any other basis protected by applicable federal, state, or local law. The Company provides reasonable accommodations upon request in accordance with applicable requirements.\n\nOptimum collects personal information about its applicants for employment that may include personal identifiers, professional or employment related information, photos, education information and/or protected classifications under federal and state law. This information is collected for employment purposes, including identification, work authorization, FCRA-compliant background screening, human resource administration and compliance with federal, state, and local law.\n\nApplicants for employment with the Company will never be asked to provide money (even if reimbursable) as part of the job application or hiring process. Please review our Fraud FAQ for further details.\n\n#J-18808-Ljbffr","datePosted":"2026-04-14T03:34:52.016Z","dateModified":"2026-04-14T03:34:52.016Z","hiringOrganization":{"@type":"Organization","name":"Optimum","sameAs":"https://jobsearcher.com"},"jobLocation":{"@type":"Place","address":{"@type":"PostalAddress","addressLocality":"Plano","addressRegion":"TX","addressCountry":"US"}},"identifier":{"@type":"PropertyValue","name":"JobSearcher","value":"9b7374e26bc1db9e97cab45f"},"url":"https://jobsearcher.com/jobs/9b7374e26bc1db9e97cab45f"}}