We inspire purpose-filled living that brings beauty and quality to the modern home. Together, we achieve. Associates across our business drive results, innovate, and inspire. Drawn together by our shared values and passion for our customers and our brands, we deliver home furnishings that are expertly designed, responsibly sourced, and bring timeless style and function to people’s homes. From the day we opened our first store in Chicago in 1962 to the digital innovations that engage millions of customers today, our iconic brand is over 60 years in the making—and our story is still unfolding.

We’re here for it. We think you should be too . We’re looking for a driven professional with an inclusive mindset to join our team as a Senior IAM Engineer.

This role will play a key role in selecting products and implementing solutions, primarily related to Authentication and Access Management.This role will help guide organizational strategy and participate in key initiatives related to the development of our IAM program. The Senior IAM Engineer will work closely with the Lead IAM Engineer, IAM Manager, security team, compliance team, and business partners to enhance the user experience as well as implement required security and compliance controls.

This position is a fully remote individual contributor position.

A day in the life as a Senior IAM Engineer...

• Partner with our security group to seek ways to improve security of our systems and set mutual standards. Implement and manage PCI-DSS 4.0 controls related to IAM. Seek short term fixes, and coordinate and communicate long term plans

• Partner with other technical administrators and business partners to administer our technology in a way that empowers our internal customers' business needs

• Act as a knowledge matter expert of access management to drive implementation of new tools and processes as part of a multi-disciplinary team

• Act primarily as Level 3 support for access management tools and processes through ticket resolution, incident response, and alert monitoring

• Participate, coordinate, and execute projects. Provide operational and project status reports. Advise of risk or blockers to success. Act as a knowledge matter expert for tools and processes owned by the Digital Workplace team when consulting in working groups or participating in projects

• Contribute to product selection activities to find and recommend products that meet organizational requirements. Present pros and cons of each solution and recomendations

• Script and automate routine tasks. Leverage knowledge of scripting and programming to use various languages and techniques to integrate products, increase capabilities, and ease administration

• Work with internal partners, such as corporate communication, compliance, and security to educate the end users on use of SSO and MFA to effectively socialize policies, standards, and other educational items meant to empower the end user and drive adoption

• Drive implementation and adoption of PAM processes and tooling

• Provide technical training to Service Desk, Operations teams, and relevant parties

  What you’ll bring to the table…

• Ability to work autonomously with minimal supervision

• Ability to write and present information and documentation effectively

• Strong knowledge of authentication protocols such as SAML, OIDC, RADIUS, LDAP, and Kerberos

• Strong working knowledge of SSO and MFA tools (e.g. Okta, DUO, EntraID)

• Working knowledge PAM Technologies (e.g. CyberArk, Thychotic, etc)

• Working knowledge of IAM and IGA tools ( e.g. Saviynt, SailPoint, etc)

• Demonstrated history of analyzing and applying role based access controls (RBAC) in large enterprise environments

• Experience working with common Scripting languages (python, PowerShell, etc.)

• Understanding of and experience working and interacting with APIs

  We’d love to hear from you if you have…

• Bachelor’s Degree in Information Technology, Computer Science or a related IT field highly preferred.

• 6+ years experience administering IAM, SSO, MFA, PIM/PAM, RBAC programs and associated tools in a large enterprise environment

• Experience implementing Access Management (SSO/MFA) solutions in large enterprise environments.

  li-remote

Minimum Starting Rate: $92,000.00 Annually

Up to: $115,000.00 Annually

Pay ranges will be adjusted upward as needed to comply with applicable state and local law. In addition to your salary, based on your role, associates may be eligible for other compensation including bonuses, sales incentives, and long term incentives.

Euromarket Designs, Inc., which does business as Crate and Barrel and CB2, will be referred to as “the Company”. The Company is deeply committed to working with and providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation for any part of the application process, or in order to perform the essential functions of a position, please contact the location you are applying to here and ask to speak with a manager regarding the nature of your request. The Company is an equal opportunity employer; applicants are considered for all positions without regard to race, color, religious creed, sex, national origin, citizenship status, age, physical or mental disability, sexual orientation, gender identity, marital, parental, veteran or military status, unfavorable military discharge, or any other status protected by applicable federal, state or local law. The Company participates in E-Verify and will provide the federal government with your Form I-9 information to confirm that you are authorized to work in the US. State / City Compliance: The Company will consider for employment qualified applicants with criminal history, including arrest and conviction records, in accordance with the Los Angeles Fair Chance Initiative for Hiring and the San Francisco Fair Chance Ordinance.