Job Type:
RegularPlains is an industry-leading transportation and midstream provider specializing in transportation, storage, processing and marketing solutions for crude oil. We own an extensive network of pipeline transportation, terminalling, storage and gathering assets in key oil producing basins and transportation corridors and at major market hubs in the United States and Canada. The company is headquartered in Houston, Texas.
We’re on the lookout for passionate self‑starters who thrive in fast‑moving, collaborative, and innovative environments.
The Platform Owner, Identity & Access Management (IAM), is a strategic technical position responsible for the end-to-end architecture, development, automation, and management of the organization’s IAM framework, with a core focus on Microsoft Entra as the enterprise identity platform. This role is pivotal in aligning IAM initiatives with the organization’s business objectives and technology strategy, leveraging the TOGAF framework to ensure a robust, scalable, and compliant identity architecture.
The selected candidate will be eligible for company benefits including Medical, Dental, Vision, Paid Time Off (PTO), and Free Parking.
Key Responsibilities:
Lead and mentor a geographically distributed team of Access Administrators and managed services provider, fostering a culture of excellence, automation, and continuous improvement.
Architect, implement, and optimize the IAM platform using Microsoft Entra, ensuring alignment with TOGAF principles for enterprise architecture, including Business, Application, Data, and Technology domains.
Oversee the lifecycle management of user and group accounts within Active Directory, Exchange, and integrated systems, ensuring secure and efficient provisioning and JML processes.
Collaborate with Information Security, IT, and business stakeholders to define and enforce access policies, ensuring timely and accurate fulfillment of user access requests.
Develop and report on key performance indicators and metrics related to access management, driving data-driven decisions and continuous service improvement.
Steward the access request process, identifying and implementing process automation enhancements to streamline provisioning and strengthen security controls.
Align IAM mappings and controls to NIST CSF 2.0 standards and other relevant compliance requirements (e.g., PCI, SOX).
Champion security, business value, operational efficiency, and business user experience.
Track, analyze, and report on metrics that demonstrate improvements in identity security posture and business productivity.
Qualifications:
Bachelor’s degree or higher in Information Systems, Computer Science, or a related business field.
Minimum of 7 years’ experience operating and automating enterprise-scale I&AM services infrastructures, with direct expert level experience in Microsoft Entra and related identity platforms (e.g., Ping, Okta, Delinea, CyberArk, SailPoint, SASE).
Experience on operationalizing Mergers and Acquisitions in a fast to market approach to create value for the business.
Expert-Level understanding of legacy and modern applications authentications.
Expert-Level understanding of Citrix/VDI/Virtual hosted application and authentication mechanisms.
Demonstrated expertise in designing and implementing IAM solutions based on TOGAF architecture principles.
Expert experience with supporting Microsoft Identity Manager (MIM)
Experience with Power Platform Managed Identity
Experience transitioning from legacy to modern identity platforms.
Proficiency in Active Directory, Exchange, and other core identity systems, including hands-on experience with automating provisioning, group management, and access controls.
Strong analytical, problem-solving, documentation, and critical thinking skills, with the ability to troubleshoot and resolve complex system issues.
Experience with scripting and automation (e.g., PowerShell, Java, .NET) to support IAM operations.
Deep experience with industry cryptography protocols and standards such as LDAPs, Kerberos, SAML, x.509, TLS/SSL, and others.
Preferred Certifications: Microsoft Certified Identity and Access Administrator Associate, Delinea Certified Engineer, Certified Information Systems Security Professional (CISSP), Certified Identity and Access Manager (CIAM), and Microsoft Certified Azure Solutions Architect Expert.
Preferred experience in the Oil & Gas Sector in both IT/OT Domains.
Proven ability to work collaboratively with technical and business teams across diverse disciplines.
Cleared criminal history (background) and satisfactory reference checks
Compliance with the Company’s drug and alcohol policy including pre-employment D&A testing.
This position is not eligible for employment-based visa sponsorship. Applicants must be authorized to work in the U.S. for the duration of their employment
#Plains
At Plains, our employees are our most valuable asset. Hard work is rewarded with competitive compensation and a top-tier benefits program designed to keep our employees safe, healthy and happy. We work hard to deliver the best results to our stakeholders, and we also respect our employees' need for personal and family time, which is reflected in our benefits program.
We are proud to be an Equal Opportunity Employer. We are committed to providing employment opportunities to all qualified individuals, without regard to age, race, color, national or ethnic origin, religion, sex, sexual orientation, gender identity or expression, veteran status, genetic information, disability, or any other characteristic protected by federal, state, or local law. Applicants with disabilities can request accessible formats, communication supports, or other accessibility assistance by contacting WebCareers@Plains.com.
Salary details estimated by job boards such as Indeed, Glassdoor, and LinkedIn do not represent Plains’ compensation structure. We thank all candidates for their interest; however, only those selected for an interview will be contacted.
By submitting your resume, you consent to the collection, use and necessary disclosure of the personal information provided during the application and selection process. Learn more.