IGA/Saviynt Principal Engineer - VIRTUAL USA
US-IL-Chicago-320 S. Canal Street
Our story
At Alight, we believe a company’s success starts with its people. At our core, we Champion People, help our colleagues Grow with Purpose and true to our name we encourage colleagues to “Be Alight.”
Our Values:
Champion People – be empathetic and help create a place where everyone belongs.
Grow with purpose – Be inspired by our higher calling of improving lives.
Be Alight – act with integrity, be real and empower others.
It’s why we’re so driven to connect passion with purpose. Alight helps clients gain a benefits advantage while building a healthy and financially secure workforce by unifying the benefits ecosystem across health, wealth, wellbeing, absence management and navigation.
With a comprehensive total rewards package, continuing education and training, and tremendous potential with a growing global organization, Alight is the perfect place to put your passion to work.
Join our team if you Champion People, want to Grow with Purpose through acting with integrity and if you embody the meaning of Be Alight.
Learn more at careers.alight.com
The Principal Engineer is a key member of the Identity Security Team. They will work closely with Identity Security product owners, Identity Security architecture team, and business application owners to design and implement automated provisioning and access governance solutions using Alight’s suite of Identity Security tools including Saviynt EIC, Saviynt CPAM, Radiant Logic Identity Analytics, and Ping DaVinci. The Principal Engineer will lead a team of engineers and will be expected to execute all aspects of automation projects including customer use case collection, design, development, and documentation. In addition, they will identify opportunities and implement solutions to improve availability, performance, efficiency, monitoring and response, as well as design, implement and manage Disaster Recovery strategy within their services. Finally, the Principal Engineer will work with Identity Security leadership to fine-tune the makeup and skillsets of the Identity Security Engineering team as it matures.
Key Responsibilities:
- Develop a deep understanding of technology and process related to Identity & Access Management, SSO/MFA and Privileged Access Management (PAM) Operations.Identify inefficiencies and design solutions to remediate.
- Contribute to the creation of both short term (current year) and long-term Identity Security roadmap.
- Design and develop automated provisioning solutions as defined on Identity Security roadmap.
- Act as a subject matter expert on both the concepts and technology related to Identity Security.
- Implement solutions to improve observability, performance, and recoverability across the Identity Security technology stack.
- Build and maintain Disaster Recovery plans.
- Identify, build, and maintain meaningful metrics to track KPIs related to performance and process automation.
- Translate architectural/strategic vision into application specific technical design.
- Create and maintain documentation / reference architecture.
Basic Qualifications:
B.S. degree in a computer science, information technology, computer related discipline or 10+ years IT work experience in a global information technology infrastructure environment, with at least 7 years working in Identity Governance / Access Management space.
Required Skills and Experience:
- Experiencing implementing provisioning automation with Saviynt EIC.
- Deep understanding of SSO/MFA and Privileged Access Management concepts and technology.
- Working knowledge of Site Reliability and Disaster Recovery concepts and technology.
- Experience working with cloud infrastructure solutions (ex. AWS, Azure).
- Experience with Python, Java, and PowerShell scripting.
- Team player with proven leadership, communication, organizational, and strong interpersonal skills. The role requires significant interaction with many different teams, with overlapping responsibilities, across a global company.
- Experience working in AWS Landing Zone
Desired Skills:
- Experience with Okta Advanced Server Access, Saviynt CPAM, and/or CyberArk.
- Experience with Ping Federate, Ping Access, and Ping ID
- Familiarity with AWS Native access management tools.
- Familiarity with infrastructure as code concepts and tooling including Terraform and Ansible.
- Experience with modern API protocols (REST/SCIM).
Flexible Working
So that you can be your best at work and home, we consider flexible working arrangements wherever possible. Alight has been a leader in the flexible workspace and “Top 100 Company for Remote Jobs” 5 years in a row.
Benefits
We offer programs and plans for a healthy mind, body, wallet and life because it’s important our benefits care for the whole person. Options include a variety of health coverage options, wellbeing and support programs, retirement, vacation and sick leave, maternity, paternity & adoption leave, continuing education and training as well as a number of voluntary benefit options.
By applying for a position with Alight, you understand that, should you be made an offer, it will be contingent on your undergoing and successfully completing a background check consistent with Alight’s employment policies. Background checks may include some or all the following based on the nature of the position: SSN/SIN validation, education verification, employment verification, and criminal check, search against global sanctions and government watch lists, credit check, and/or drug test. You will be notified during the hiring process which checks are required by the position.
Our commitment to Diversity and Inclusion
Alight is committed to diversity, equity, and inclusion. We celebrate differences and believe in fostering an environment where everyone feels valued, respected, and supported. We know that diverse teams are stronger, more innovative, and more successful.
At Alight, we welcome and embrace all individuals, regardless of their background, and are dedicated to creating a culture that enables every employee to thrive. Join us in building a brighter, more inclusive future.
As part of this commitment, Alight will ensure that persons with disabilities are provided reasonable accommodations for the hiring process. If reasonable accommodation is needed, please contact alightcareers@alight.com.
Diversity Policy Statement
Alight is an Equal Employment Opportunity employer and does not discriminate against anyone based on sex, race, color, religion, creed, national origin, ancestry, age, physical or mental disability, medical condition, pregnancy, marital or domestic partner status, citizenship, military or veteran status, sexual orientation, gender, gender identity or expression, genetic information, or any other legally protected characteristics or conduct covered by federal, state or local law. In addition, we take affirmative action to employ and advance in the employment of qualified minorities, women, disabled persons, disabled veterans and other covered veterans.
Alight provides reasonable accommodations to the known limitations of otherwise qualified employees and applicants for employment with disabilities and sincerely held religious beliefs, practices and observances, unless doing so would result in undue hardship. Applicants for employment may request a reasonable accommodation/modification by contacting his/her recruiter.
Authorization to work in the Employing Country
Applicants for employment in the country in which they are applying (Employing Country) must have work authorization that does not now or in the future require sponsorship of a visa for employment authorization in the Employing Country and with Alight.
Note, this job description does not restrict management's right to assign or reassign duties and responsibilities of this job to other entities; including but not limited to subsidiaries, partners, or purchasers of Alight business units.
#LI-Remote p&tjobs
We offer you a competitive total rewards package, continuing education & training, and tremendous potential with a growing worldwide organization.
Salary Pay Range
Minimum :
110,000.00Maximum :
224,000.00Pay Transparency Statement: Alight considers a variety of factors in determining whether to extend an offer of employment and in setting the appropriate compensation level, including, but not limited to, a candidate’s experience, education, certification/credentials, market data, internal equity, and geography. Alight makes these decisions on an individualized, non-discriminatory basis. Bonus and/or incentive eligibility are determined by role and level. Alight also offers a comprehensive benefits package; for specific details on our benefits package, please visit: https://bit.ly/Alight_Benefits
DISCLAIMER:
Nothing in this job description restricts management's right to assign or reassign duties and responsibilities of this job to other entities; including but not limited to subsidiaries, partners, or purchasers of Alight business units.
Job Profile
Comprehensive total rewards package Continuing education Continuing education and training Flexible working Flexible working arrangements Growth Opportunities Health coverage Health coverage options Maternity, paternity & adoption leave Retirement Sick Leave Support programs Total Rewards package Training Vacation Vacation and sick leave Voluntary benefit options
Tasks- Design and implement automated provisioning
- Develop disaster recovery plans
- Identify inefficiencies and design solutions
Access Governance Analytics Automation AWS Azure Benefits Cloud Infrastructure Communication Compensation Disaster Recovery Documentation Governance Identity security Interpersonal Java Leadership Management MFA Organizational Ping DaVinci PowerShell Privileged Access Management Python Radiant Logic Saviynt CPAM Saviynt EIC Scripting Security Architecture Site Reliability SSO Training
Experience10 years
EducationB.S. in Computer Related Discipline B.S. in Computer Science B.S. in Information Technology Business Computer Science Information Technology
TimezonesAmerica/Anchorage America/Chicago America/Denver America/Los_Angeles America/New_York Pacific/Honolulu UTC-10 UTC-5 UTC-6 UTC-7 UTC-8 UTC-9