Location(s)

Alpharetta, Georgia, Chicago, Illinois, Dallas, Texas, Jacksonville, Florida, P&C-Butterfield Road-Downers Grove-IL-AAC

Details

Kemper is one of the nation’s leading specialized insurers. Our success is a direct reflection of the talented and diverse people who make a positive difference in the lives of our customers every day. We believe a high-performing culture, valuable opportunities for personal development and professional challenge, and a healthy work-life balance can be highly motivating and productive. Kemper’s products and services are making a real difference to our customers, who have unique and evolving needs. By joining our team, you are helping to provide an experience to our stakeholders that delivers on our promises. 
 

Kemper is seeking an IAM and PAM Engineer.  In this position you will be responsible for supporting the planning, design, development and deployment of centralized identity and access management (IAM and PAM) solutions for the organization. Supports the planning, architecture, and delivery of the enterprise-level program including but not limited to the areas of identity, access, privileged access, SSO federation and SaaS / PaaS cloud technologies.

Responsibilities

Provide expert knowledge and act as a subject matter expert on key principles of (IAM) with an in-depth knowledge in the areas of authentication and authorization systems, identity lifecycle management, and identity governance.Provide scripting support in PowerShell, JavaScript and Python.Generate solutions and policies in support of the Identity Lifecycle Management and Identity Governance for the company and consumers.Engineer and support privileged access management, for secure use of privileged identities across the enterprise.Provide for policies, documentation and support operational procedures around IAM.Design, recommend and implement IAM and PAM solutions to continually improve Identity workflow and security.Drive standards and support implementations with integrations to and from third party directories.Provide infrastructure and solutions that provide optimal and secure single-sign-on experiences to employees, contractors and consumers.Work with application owners to integrate application security and application roles with centralized IAM directories.

Qualifications

5+ years of experience in IT, preferably in SecurityIdentity and Access Management experiencePrivileged Access Management experienceInternational Information System Security Certification Consortium certification is a plusNIST and/or SOC2 experience a plusExpert knowledge of IAM & PAM technologiesIn-depth understanding of modern authentication solutions using SAML/OAuth/OIDC  In-depth knowledge of Microsoft Active DirectoryIn-depth knowledge of Identity security best practicesCapable in all information security domains including regulatory compliance, risk assessments, controls implementations, governance frameworks and audit processes.Ability to collaborate with high-performance teams and individuals to drive resultsAble to integrate with cloud based IAM vendorsDemonstrated customer service orientated work ethicThis is a hybrid position working in the office 4 days per week.

The range for this position is $86,200 to $143,600. When determining candidate offers, we consider experience, skills, education, certifications, and geographic location among other factors. This job is eligible for an annual discretionary bonus and Kemper benefits (Medical, Dental, Vision, PTO, 401k, etc.)

Kemper is proud to be an equal opportunity employer. All applicants will be considered for employment without attention to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran, disability status or any other status protected by the laws or regulations in the locations where we operate. We are committed to supporting diversity and equality across our organization and we work diligently to maintain a workplace free from discrimination.  
 

Kemper does not accept unsolicited resumes through or from search firms or staffing agencies. All unsolicited resumes will be considered the property of Kemper and Kemper will not be obligated to pay a placement fee. 

Kemper will never request personal information, such as your social security number or banking information, via text or email.  Additionally, Kemper does not use external messaging applications like WireApp or Skype to communicate with candidates.  If you receive such a message, delete it.  

#LI-AK-1