Sr. Identity & Access Management Engineer (Identity & Access Management Engineering)

ABOUT THE POSITION

Although we're an apparel and footwear-focused company, technology is central to everything we do. Columbia Sportswear’s Digital Technology (CDT) teams enable an IT infrastructure across four global brands, a global supply chain, and 500+ geographically dispersed stores. These teams support in-store, mobile, and data platforms to enhance customer interface and service in an ever-evolving industry. 

The Identity and Access Management (IAM) team designs, implements, and maintains IAM solutions for the global enterprise. This position requires expertise in IAM concepts like Single Sign On (SSO), Multi-Factor Authentication (MFA), Public Key Infrastructure (PKI), Identity Providers (IdP) and Privileged Access Management (PAM).

HOW YOU’LL MAKE A DIFFERENCE

• Support the design, deployment, and configuration of IAM solutions including but not limited to identity governance, access management, and single sign-on (SSO) technologies.
• Support Certificate Lifecycle Management process and tools.
• Oversee and maintain the integration of IAM systems with various applications, directories, and platforms.
• Ensure IAM systems are compliant with relevant security standards and regulations. Perform regular security assessments and audits.
• Provide advanced troubleshooting and support for IAM-related issues. Resolve complex technical problems and provide solutions to enhance system performance and security.
• Create and maintain detailed documentation for IAM systems, processes, and procedures. Generate reports and provide insights on system performance and security posture.
• Provide guidance and mentorship to junior IAM engineers, sharing knowledge and best practices.
• Stay current with emerging IAM technologies and industry trends. Recommend and implement improvements to enhance IAM capabilities and efficiencies.

YOU HAVE

• Bachelor’s degree in Information Security, Computer Science, or related field (or equivalent experience).
• 5+ years of professional experience supporting IAM capabilities.
• Expertise in IAM technologies (e.g., Active Directory AD, Entra ID, PAM solutions)
• Experience implementing and supporting a Certificate management platform.
• Strong knowledge of LDAP, SAML, OAuth, OpenID Connect, and other authentication/authorization protocols.
• Experience with Group Policies (GPOs) and Conditional Access Polices.
• Experience with scripting and automation (e.g., PowerShell, Python).
• Familiarity with cloud platforms (e.g., AWS, Azure, Google Cloud) and their IAM capabilities.
• Excellent problem-solving and analytical skills.
• Strong communication and interpersonal skills with the ability to work collaboratively with diverse teams.

YOU ARE

• Experienced in the information security discipline within an organization function or business.  
• Knowledgeable of industry and regulatory security standards and frameworks (e.g., NIST CSF, SOX, PCI/DSS, GDPR).  
• Able to work both individually and as part of a team. 

#LI-SA1
#Hybrid

This job description is not meant to be an all-inclusive list of duties and responsibilities, but constitutes a general definition of the position's scope and function in the company.