Create Alert
Apply now »
Requisition ID:  118016

IAM Administrator

IT@JH Enterprise Directory and Messaging is seeking an IAM Administrator who will be responsible for supporting Microsoft Azure Multi-Factor Authentication (MFA) & MFA for Administrators (Virtual SmartCards & Yubikeys) for Johns Hopkins.


Specific Duties & Responsibilities

  • Responsible for working with IT Administrators and customers across the institution.
  • Provides Multi-Factor Authentication (MFA) support for over 150k users. This involves assisting with first-time enrollments, helping to set up multiple methods, and troubleshooting MFA-related issues.
  • Works with a great deal of independence and limited supervision.
  • Digital Identity Management: Oversee digital identities for humans, workloads, and service accounts.
  • IAM Solutions Implementation: Deploy and maintain IAM solutions for on-premises and cloud environments.
  • User Account Administration: Manage user accounts, permissions, and access controls to ensure authorized access.
  • Security Enhancements: Utilize digital certificates and manage Public Key Infrastructure (PKI).
  • Zero Trust Principles: Apply Zero Trust principles to identity and access solutions.
  • Collaboration: Work with technology teams, data owners, and application owners to implement IAM solutions.
  • Security Posture Evaluation: Assess and improve the institution’s IAM security posture.
  • Audits and Assessments: Conduct regular audits and assessments to identify and mitigate risks.
  • Advanced Support: Provide advanced-level support for IAM-related issues.
  • Technology Updates: Stay updated with the latest IAM technologies and trends.
  • IAM Tools Management: Implement, configure, administer, and maintain IAM tools according to best practices.
  • Authentication and Authorization: Ensure users are authenticated and authorized based on job responsibilities.
  • Policy Development: Define and enforce access control policies.
  • Access Monitoring: Monitor access logs and conduct periodic reviews.
  • Single Sign-On (SSO): Implement and manage SSO solutions, troubleshoot issues, and ensure secure access.
  • Collaboration with Security Teams: Ensure appropriate access monitoring with security operations and engineering teams.
  • Project Management: Plan, manage, and monitor IAM projects and tasks.
  • Incident Response: Participate in incident response and vulnerability remediation.
  • Business Continuity: Execute IAM services business continuity and disaster recovery drills.
  • Technical Documentation: Develop and maintain IAM services technical support documentation.
  • Multi-Factor Authentication (MFA): Implement and sustain MFA solutions, educate users, and stay updated on technologies.
  • Compliance and Security: Enforce security policies, conduct audits, and collaborate with compliance officers.
  • Security Incident Management: Respond to and mitigate security incidents related to identity and access.
  • Support and Integration: Provide timely support for access-related issues and integrate IAM systems with existing infrastructure.


Specific Devices, Software, Projects

  • MFA tools included but not limited to: Microsoft Azure MFA, Microsoft Windows Hello, Passkeys, etc...


Scale/Size of Area, Project or Systems Supported

  • MFA is needed to help secure Hopkins credentials for critical systems and may be used by over 150k faculty, staff, and students. Securing Hopkins credentials which are used 24 x 7 from around the world, is highly complex.


On Call Requirements

  • Yes


Special Knowledge, Skills, and Abilities

  • Microsoft Office 365 (Teams, OneDrive, Outlook, etc)
  • Microsoft Azure & Azure MFA
  • Basic Mobile Device knowledge (Android & IOS)


Minimum Qualifications
  • Bachelor’s Degree.
  • Three years of experience in identity and access management or related field.
  • Additional education may substitute for required experience and additional related experience may substitute for required HS Diploma/Graduation Equivalent, to the extent permitted by the JHU equivalency formula.


Preferred Qualifications
  • Must have solid understanding of Windows OS, Mobile Devices, and the fundamentals of securing user accounts.

 

 

Classified Title: IAM Administrator 
Role/Level/Range: ATP/04/PD  
Starting Salary Range: $62,900 - $110,100 Annually (Commensurate w/exp.) 
Employee group: Full Time 
Schedule: Mon-Fri 8:30am-5:00pm 
FLSA Status: Exempt 
Location: Remote 
Department name: IT@JH Enterprise Directory and Messaging  
Personnel area: University Administration 

 

 

Total Rewards
The referenced base salary range represents the low and high end of Johns Hopkins University’s salary range for this position. Not all candidates will be eligible for the upper end of the salary range. Exact salary will ultimately depend on multiple factors, which may include the successful candidate's geographic location, skills, work experience, market conditions, education/training and other qualifications. Johns Hopkins offers a total rewards package that supports our employees' health, life, career and retirement. More information can be found here: https://hr.jhu.edu/benefits-worklife/.

Education and Experience Equivalency
Please refer to the job description above to see which forms of equivalency are permitted for this position. If permitted, equivalencies will follow these guidelines: JHU Equivalency Formula: 30 undergraduate degree credits (semester hours) or 18 graduate degree credits may substitute for one year of experience. Additional related experience may substitute for required education on the same basis. For jobs where equivalency is permitted, up to two years of non-related college course work may be applied towards the total minimum education/experience required for the respective job.

Applicants Completing Studies
Applicants who do not meet the posted requirements but are completing their final academic semester/quarter will be considered eligible for employment and may be asked to provide additional information confirming their academic completion date.

Background Checks
The successful candidate(s) for this position will be subject to a pre-employment background check. Johns Hopkins is committed to hiring individuals with a justice-involved background, consistent with applicable policies and current practice. A prior criminal history does not automatically preclude candidates from employment at Johns Hopkins University. In accordance with applicable law, the university will review, on an individual basis, the date of a candidate's conviction, the nature of the conviction and how the conviction relates to an essential job-related qualification or function.

Diversity and Inclusion
The Johns Hopkins University values diversity, equity and inclusion and advances these through our key strategic framework, the JHU Roadmap on Diversity and Inclusion.

Equal Opportunity Employer
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

EEO is the Law
https://www.eeoc.gov/sites/default/files/2023-06/22-088_EEOC_KnowYourRights6.12ScreenRdr.pdf

Accommodation Information
If you are interested in applying for employment with The Johns Hopkins University and require special assistance or accommodation during any part of the pre-employment process, please contact the Talent Acquisition Office at jhurecruitment@jhu.edu. For TTY users, call via Maryland Relay or dial 711. For more information about workplace accommodations or accessibility at Johns Hopkins University, please visit https://accessibility.jhu.edu/.

Vaccine Requirements
Johns Hopkins University strongly encourages, but no longer requires, at least one dose of the COVID-19 vaccine. The COVID-19 vaccine does not apply to positions located in the State of Florida. We still require all faculty, staff, and students to receive the seasonal flu vaccine. Exceptions to the COVID and flu vaccine requirements may be provided to individuals for religious beliefs or medical reasons. Requests for an exception must be submitted to the JHU vaccination registry. This change does not apply to the School of Medicine (SOM). SOM hires must be fully vaccinated with an FDA COVID-19 vaccination and provide proof of vaccination status. For additional information, applicants for SOM positions should visit https://www.hopkinsmedicine.org/coronavirus/covid-19-vaccine/ and all other JHU applicants should visit https://covidinfo.jhu.edu/health-safety/covid-vaccination-information/.

The following additional provisions may apply, depending upon campus. Your recruiter will advise accordingly.
The pre-employment physical for positions in clinical areas, laboratories, working with research subjects, or involving community contact requires documentation of immune status against Rubella (German measles), Rubeola (Measles), Mumps, Varicella (chickenpox), Hepatitis B and documentation of having received the Tdap (Tetanus, diphtheria, pertussis) vaccination. This may include documentation of having two (2) MMR vaccines; two (2) Varicella vaccines; or antibody status to these diseases from laboratory testing. Blood tests for immunities to these diseases are ordinarily included in the pre-employment physical exam except for those employees who provide results of blood tests or immunization documentation from their own health care providers. Any vaccinations required for these diseases will be given at no cost in our Occupational Health office.
Remote

Apply now »