Job Description

PSEG operates under a Flexible Work Model where flexible work is offered when job requirements allow. In support of this model, roles have been categorized into one of four work location categories:

Onsite are roles that have specific onsite requirements and are typically onsite daily.

Hybrid fixed are roles that are a blend of onsite work/in-person interactions with some ability to work remotely and require employees to live within a commutable distance and be onsite fixed days each week.

Hybrid flexible are roles that can be performed remotely but require some level of onsite work/in-person interactions on a regular basis, require employees to live within a commutable distance and, since business needs vary by position and may change over time, managers will set expectations and flexibility regarding where and when work is performed.

Fully remote are roles that can be performed remotely, require employees to live in approved states and will have purpose-driven in-person interactions on occasion.

We want you to be healthy, balanced, and feel secure. That’s why you’ll enjoy a comprehensive range of benefits, with a focus on supporting your whole health. Starting on day one of your employment, you’ll be offered several health-related benefits including medical, vision, dental, well-being and behavioral health programs. We also offer a retirement program, 401(k) with company match, company paid life insurance, tuition reimbursement and a minimum of 18 days of paid time off per year (including vacation, scheduled holidays, and floating holidays).

PSEG offers a unique experience to our more than 12,000 employees – we provide the resources and opportunities for career development that come with being a Fortune 500 company, as well as the attention, camaraderie, and care for one another you might typically associate with a small business. Our focus on combatting climate change through clean energy technology, our new net zero climate vision for 2030 and enhanced commitment to diversity, equity, and inclusion; and supporting the communities we serve make this a particularly exciting time to join PSEG.

Job Summary:

We are seeking a Senior Identity and Access Management (IAM) Engineer to lead the design,implementation, and management of our IAM solutions. This position is an experienced, senior level,hands-on technical lead. This role is critical to ensuring secure access to enterprise systems, enforcingsecurity policies, and driving IAM engineering across the organization. The ideal candidate hasextensive experience with IAM technologies, authentication protocols, and security best practices incloud and on-premises environments.

Job Responsibilities

Include but are not limited to:

• IAM Architecture, Engineering & Implementation: Design, deploy, and manage IAM solutions, including Single Sign-On (SSO), Multi-Factor Authentication (MFA), Privileged Access Management(PAM), and Role-Based Access Control (RBAC).
• Identity Governance & Administration (IGA): Develop and enforce policies for identity lifecycle management, access provisioning, and de-provisioning.
• Access Control & Authorization: Implement least privilege access, Just-in-Time (JIT) access, and Zero Trust principles.
• Directory Services & Federation: Manage and integrate directory services (Active Directory, Azure AD, LDAP) and federation protocols (SAML, OAuth, OpenID Connect).
• Cloud & Hybrid IAM: Secure access to cloud platforms such as AWS, Azure, ensuring proper identity federation and role management.
• Security & Compliance: Ensure IAM compliance with regulations such as SOX and NIST. Conduct audits and risk assessments to maintain a strong security posture.
• Incident Response & Monitoring: Collaborate with security teams to detect, investigate, and remediate IAM-related security incidents.
• Automation & Scripting: Develop scripts and automation workflows using PowerShell, Python, or similar tools to streamline IAM operations.
• Collaboration & Stakeholder Engagement: Work closely with IT, security, and business teams to define IAM requirements and drive security initiatives.

Job Specific Qualifications:

Required:

• Bachelor's degree
• Minimum of 6 years in IAM engineering, security architecture, or a related field.
  • In lieu of a degree 10 years of cyber experience
• IAM Tools & Platforms: Expertise in modern IAM platforms.
• Authentication & Federation: Strong knowledge of authentication mechanisms and federation protocols (such as SAML, OAuth, OpenID Connect).
• Cloud Security: Hands-on experience with IAM in cloud environments (such as AWS IAM, Azure AD).
• Security Frameworks & Compliance: Familiarity with NIST, CIS, and regulatory requirements
• Scripting & Automation: Proficiency in PowerShell, Python, Bash, or other languages for IAM automation.
• Zero Trust & Modern Security Concepts: Understanding of Zero Trust principles, identity-centric security, and risk-based authentication.
• Problem-Solving & Analytical Skills: Ability to troubleshoot complex IAM issues and optimize security configurations.
• Soft Skills: Strong communication, collaboration, and leadership skill.

Desired Qualifications:

• Certifications: CISSP, CISM, or IAM-centric credentials.
• Experience with DevSecOps: Knowledge of integrating IAM with CI/CD pipelines and security automation.
• API & SDK Knowledge: Experience securing APIs and integrating IAM solutions with applications using REST APIs.

Minimum Years of Experience:

6 years of experience

Job Tags

Similar Jobs