Ecolab

Principal Identity Engineer

Ecolab

full-time

Posted on:

Location Type: Hybrid

Location: Saint Paul • Illinois, Minnesota • 🇺🇸 United States

Visit company website
AI Apply
Apply

Salary

💰 $153,900 - $230,800 per year

Job Level

Lead

Tech Stack

AzureCloudSQLTerraform

About the role

  • Lead the design and implementation of robust identity management solutions that integrate seamlessly across on-premises and cloud environments.
  • Ensure a stable and secure environment that is evaluated across aligned to KPIs.
  • Lead lifecycle management and governance processes ensuring compliance with regulatory standards.
  • Integrate identity systems with SIEM for proactive threat detection and response.
  • Drive adoption of modern authentication methods such as FIDO2 and passwordless technologies.
  • Establish KPIs for identity security posture and operational efficiency.
  • Lead and own the BeyondTrust platform ensuring secure access for servers, admin users, and supply chain isolated networks.
  • Design a cloud first architecture and train core members in Microsoft Entra ID for managing user identities, still ensuring alignment with AD on-premises systems.
  • Design and manage public key infrastructure (PKI), including both internal ADCS and external Certificate Authorities like Sectigo, to ensure secure communication channels and compliance with security standards.
  • Collaborate with Security Architecture, Infrastructure and Cloud delivery teams to achieve business objectives.
  • Partner with Enterprise Architecture and business teams to achieve strategic outcomes for Digital Initiatives.

Requirements

  • Bachelor's degree and 10 years of relevant experience in Identity Field similar roles.
  • 8 years of experience with BeyondTrust, Active Directory (AD) and Microsoft Entra ID (formerly Azure) or external Certificate Authorities such as Sectigo, internal Certificate Authority (Active Directory Certificate Services - ADCS)
  • Strong understanding of Identity principles including but not limited to SCIM, OIDC SAML, least privilege, Kerberos, certificate-based auth.
  • Excellent analytical skills, with the ability to use data and data analytics tools to drive decisions.
  • 3 years' experience with Agile methodologies and tools such as ADO or GitHub.
  • Ability to think strategically while managing day-to-day product details.
  • Strong communication, and interpersonal skills – the ability to collaborate and deliver effectively with diverse teams.
  • Expert in EntraID integration and Microsoft 365 identity management solutions.
  • Knowledge of scripting or automation technologies such as PowerShell, Terraform, REST, JSON for automating identity-related tasks.
  • Experience performing SQL, EQL query analysis to build a case for a new process or to take action based on the data.
  • Excellent problem-solving skills and attention to detail.
  • Ability to adapt to changing priorities and manage multiple tasks effectively.
Benefits
  • Annual bonus pay based on performance
  • Comprehensive and market-competitive benefits

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills
identity management solutionslifecycle managementgovernance processesFIDO2passwordless technologiespublic key infrastructure (PKI)Active Directory (AD)Microsoft Entra IDdata analyticsscripting technologies
Soft skills
analytical skillsstrategic thinkingcommunication skillsinterpersonal skillsproblem-solving skillsattention to detailadaptabilitycollaborationleadershiporganizational skills