Come Join Us!
Georgia System Operations is a progressive organization offering opportunities for engineers, technicians, project managers, and more. We’ve been honored with Best Place to Work in Georgia.
Our people-over-profit culture and competitive compensation and benefits packages prove we’re dedicated to retaining the best candidates.
We offer comprehensive medical, dental, and vision coverage, a strong retirement program, career development, and flexible work schedules. We’re focused on wellness and being a supportive member of the community.
Affordable health insurance options, such as medical, dental, and vision coverage, are available for full-time employees.
Basic insurance for accidental death and dismemberment, long-term disability, and life insurance are available at no cost. Employees can opt to pay for more coverage.
A competitive retirement plan, with company match and company contributions, is available for full-time employees.
We offer many options for our employees’ well-being, including an employee assistance program, an on-site fitness center, and several wellness-focused programs.
Educational reimbursement is available for full-time employees. Employees can also participate in a 529 college savings plan.
Employees can participate in voluntary benefits, covering hospitalization and critical illness, legal and ID theft protection, and pet insurance.
Vacation and sick leave are available for full-time positions via the paid time off program. GSOC is closed for 9 national holidays annually.
We support growth and development for all our employees through an on-site training program, online learning tools, and programs designed to develop industry knowledge.
Our employees are given volunteer paid time off every year to contribute to the community service organization of their choice.
The Identity and Access Management (IAM) Engineer is accountable for the design, implementation, and operational integrity of enterprise identity and access management capabilities that protect critical business systems while enabling secure and efficient access for the workforce. This role serves as the technical authority for authentication, authorization, identity lifecycle management, and privileged access across on-premises and cloud environments.
The IAM Engineer ensures automated Joiner/Mover/Leaver processes, enforces least-privilege and Zero Trust principles, and integrates IAM services with enterprise applications and infrastructure. Working closely with Cybersecurity, IT Infrastructure, HR, and application owners, the role delivers scalable, compliant identity solutions, supports audit and regulatory requirements (e.g., SOX, NERC CIP, ISO), and provides operational support for identity-related security incidents.
The position acts as a subject-matter expert and trusted advisor to IT and Security leadership, reducing identity risk, improving control effectiveness, and enabling secure digital operations.
A strong customer service focus, positive attitude, and excellent communication skills are essential.
Responsible for compliance with all applicable laws, regulations, industry standards, corporate policies, guidelines, and procedures, including but not limited to RUS, OSHA, SOX, NERC, FERC, and ITS requirements. Promotes an environment of compliance and continuous improvement to meet the Corporation's goals and objectives.
Job Duties:
- Identity Architecture & Engineering: Design, implement, and operate enterprise IAM solutions across on-premises and cloud environments, including SSO, MFA, conditional access, RBAC, directory services, and application integrations. Ensure solutions are scalable, secure, and aligned with Zero Trust principles.
- Identity Lifecycle Management: Own and continuously improve Joiner/Mover/Leaver processes using authoritative identity sources. Implement role- and attribute-based access models and automation to ensure timely provisioning and deprovisioning while reducing manual effort and risk.
- Privileged Access Management (PAM): Implement and operate PAM solutions for administrative and service accounts, enforcing least privilege, credential vaulting, session monitoring, and secure break-glass access. Support audits, investigations, and forensic reviews related to privileged access.
- Governance, Risk & Compliance: Support access reviews, audits, and regulatory assessments. Maintain IAM documentation, standards, and procedures. Identify and remediate identity-related risks and control gaps.
- Security Operations Support: Assist with identity-related incident response activities. Investigate authentication anomalies, improve IAM logging and monitoring, and enhance alerting and detection capabilities.
- Collaboration & Technical Leadership: Serve as the IAM subject-matter expert. Provide technical guidance to peers, influence application onboarding with identity-first design principles, and advise IT and Security leadership on identity strategy and risk reduction.
Required Qualifications:
Education: Bachelor's degree in Computer Science, Cybersecurity, Engineering, Information Systems, or a related field from an accredited college or university.
Certifications (Preferred but not required):
- Certified Information Systems Security Professional (CISSP)
- Microsoft Certified: Identity and Access Administrator Associate
- Microsoft Certified: Cybersecurity Architect Expert
- Okta Certified Professional / Administrator
- GIAC Identity and Access Management (GIAM)
Experience:
- Identity and Access Management Engineer III
- Experience: Minimum of 4 years of experience implementing and operating enterprise IAM solutions, including SSO, MFA, identity lifecycle management, and directory services.
- Responsibility: Independently manages IAM platforms and integrations. Owns Joiner/Mover/Leaver workflows, supports access reviews and audits, and resolves identity-related incidents. Contributes to IAM standards, documentation, and continuous improvement initiatives.
- Identity and Access Management Engineer IV
- Experience: Minimum of 6 years of experience designing and managing enterprise IAM and PAM solutions across hybrid and cloud environments.
- Responsibility: Leads IAM projects and enhancements, including application onboarding and PAM implementations. Designs role- and attribute-based access models, supports complex audits and compliance activities, and provides technical leadership across IT and Cybersecurity teams.
- Identity and Access Management Engineer V
- Experience: Minimum of 8 years of experience architecting and managing enterprise-scale IAM and PAM solutions in complex environments.
- Responsibility: Oversees major IAM initiatives and identity architecture decisions. Serves as the senior technical authority for IAM and PAM, advises leadership on identity risk and strategy, and drives enterprise adoption of Zero Trust and least-privilege principles.
Specialized Skills:
- Technical Expertise
- Hands-on experience with enterprise IAM platforms such as Microsoft Entra ID (Azure AD), Okta, Ping Identity, or ForgeRock
- Strong knowledge of SSO, MFA, conditional access, RBAC, ABAC, and Zero Trust architectures
- Experience integrating IAM with Azure, AWS, and/or GCP
- Working knowledge of Active Directory, Azure AD, LDAP, and identity synchronization
- Experience with Privileged Access Management solutions and secure service account management
- Tools & Technologies
- IAM and PAM platforms
- Scripting and automation (PowerShell, Python preferred)
- Logging and monitoring integrations with SIEM platforms
- ITSM tools such as ServiceNow or Ivanti
- Security & Compliance
- Understanding of identity-related regulatory and compliance requirements (e.g., SOX, NERC CIP, ISO 27001)
- Experience supporting audits, access certifications, and control remediation
- Soft Skills
- Strong analytical and problem-solving skills
- Excellent written and verbal communication skills
- Customer-focused, collaborative mindset
- Ability to work independently and influence across teams
