Identity and Access Management Engineer

About Marvell

Marvell’s semiconductor solutions are the essential building blocks of the data infrastructure that connects our world. Across enterprise, cloud and AI, automotive, and carrier architectures, our innovative technology is enabling new possibilities. 

At Marvell, you can affect the arc of individual lives, lift the trajectory of entire industries, and fuel the transformative potential of tomorrow. For those looking to make their mark on purposeful and enduring innovation, above and beyond fleeting trends, Marvell is a place to thrive, learn, and lead. 

Your Team, Your Impact

This role will involve collaborating with cross-functional teams to define requirements, architect solutions, and optimize IAM configurations to meet our cybersecurity needs. The ideal candidate will have a strong background in IDP and PAM solutions with a passion for driving innovation and excellence in cybersecurity.

What You Can Expect

• Design and recommend Identity and Access Management systems to ensure the appropriate security guidelines, policies and procedures are in place to adequately meet business and compliance requirements.
• Work closely with other service owners responsible for establishing governance, policies, and requirements related to IAM functions.
• Partners with Technology and Business Unit control owners to serve as a security expert and trusted adviser in designing and providing systems that facilitate user provisioning/de-provisioning, authentication/authorization, and reporting based on business needs, industry best practices, and regulatory requirements
• Specify, and design Identity Access Management (IDAM) solutions including password management, SSO, federation, and authentication.
• Execute against the IAM's program roadmap
• Serve as a subject matter expert and solution architect for IDAM solutions
• Design, implementation, and deployment of functional, resilient, and secure IDAM solutions
• This role is hybrid with at least 3 days onsite

What We're Looking For

• Minimum 6 years of experience in identity and access management (IAM) programs
• Demonstrable knowledge of current technologies in authentication, federation, and identity management space, such as OAuth 2.0, OpenID Connect, SAML, SCIM, U2F/UAF/FIDO2, HOTP, TOTP
• Extensive & demonstrable experience designing & implementing both IAM and PAM solutions - SailPoint, BeyondTrust, Cyberark, Okta, etc
• Proven Experience with Okta design and administration securing user authentication.
• Direct experience in administering Microsoft Active Directory objects, architecture, and back-end infrastructure in both on-premise and Azure.
• Experience with Open LDAP, NIS is a significant plus
• Extensive and demonstrable experience with both AWS & Azure
• Experience with managing and designing for Linux and windows environment a big plus
• Practical experience with Windows Certificate Authority PKI solutions, including Secure Socket Layer (SSL) is a big plus
• Experience with enterprise production code in applicable scripting languages (PowerShell, JavaScript, Python, etc.).
• Technical knowledge in security engineering, authentication and federation protocols, cryptography, and application security
• Knowledge of system security vulnerabilities and remediation techniques
• Familiarity with diagnostic tools and analyzing data (Analyzing Error Logs).
• Familiarity with using biometrics for authentication and managing related privacy considerations
• Familiarity with relevant identity-oriented standards, such as NIST800-63 and GDPR
• Strong analytical and problem-solving abilities, with attention to detail.
• Ability to prioritize, drive others to action, deliver results, mentor and develop technical skills in team.
• Excellent communication and collaboration skills, with the ability to work effectively in a team environment.
• Ability to work independently and prioritize tasks in a fast-paced, dynamic environment.
• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or related field; Master's degree preferred.
• Relevant cybersecurity certifications such as CISSP, GIAC, or equivalent.

Expected Base Pay Range (USD)

112,500 - 168,500, $ per annum

The successful candidate’s starting base pay will be determined based on job-related skills, experience, qualifications, work location and market conditions. The expected base pay range for this role may be modified based on market conditions.

Additional Compensation and Benefit Elements 

At Marvell, we offer a total compensation package with a base, bonus and equity.Health and financial wellbeing are part of the package. That means flexible time off, 401k, plus a year-end shutdown, floating holidays, paid time off to volunteer. Have a question about our benefits packages - health or financial? Ask your recruiter during the interview process.

This role is eligible for our hybrid work model in which you will be able to split time between working from home and on-site in a Marvell office.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status.

Any applicant who requires a reasonable accommodation during the selection process should contact Marvell HR Helpdesk at TAOps@marvell.com.

#LI-JS22