Security Engineer II

Imagine Your Future with Us! Since 1971, Paychex has been at the forefront of simplifying HR, payroll, and benefits for American businesses. Our digital HR technology and advisory solutions cater to the changing needs of employers and their employees. With our award-winning training and endless opportunities for growth and development, you can build a lifelong career with us. We pride ourselves on fostering an inclusive and innovative culture. Our leaders are here to support your career journey; they and our dedicated employees embody the values that drive us to support each other, our clients, and our communities. Join us to pursue your passion and unleash your potential. Overview Paychex Enterprise Security is seeking a talented, self-starter that can provide design expertise and thought leadership to drive the implementation of Identity and Access Management (IAM) processes, architecture, infrastructure, and services. As an IAM Engineer, you will provide hands-on technical design and support for securing identities and platforms, while developing security requirements and best-practice guidance to ensure the business maintains a competitive security posture. You will collaborate closely with our IT partners on business initiatives and recommend secure design solutions to protect against known security threats and misconfigurations. An ideal candidate will have a bachelor's degree in Information Security, or a related field. In addition, you must have excellent written and oral communication skills, be successful working on a team collaboratively, and understand foundational IT concepts. Entry level cybersecurity certifications are preferred. Responsibilities Design and configuration of IAM workflows, rules, standards and controls across multiple IAM platforms based on business requirements and functional design Design systems management solutions using automation and self-repair rather than relying on alarming and human intervention Develop strategic and technical IAM roadmaps to remediate identified risks and gaps in the current IAM program and initiatives Consults with Solution Leads and Development Leads to plan future technical solutions Monitors and solves problems in highly sophisticated systems, tools and/or networking solutions Analyzing and resolving complex authentication, integration, and automation issues Analyze and refine joiner, mover, leaver provisioning processes/scenarios across in-scope platforms and applications, providing governance improvement recommendations Influences and leads IAM team efforts across the Information Security department and enterprise as an authority in their domain, establishing and maintaining effective relationships with Internal Infrastructure, Application and Business partners in order to understand needs, use, and systems to facilitate effective IAM solutions Researches and analyzes the latest capabilities of specific Information Security (e.g. Cloud services, encryption, PKI etc.) and IT technologies (e.g. operating systems, networks, storage, virtualization etc.) as they relate to IAM Ability to execute high quality self-directed work under pressure, provide detailed estimates and work breakdown of typical activities leveraging an agile framework Qualifications Required: Expert level knowledge of IAM governance and principles Translating business requirements into IAM process design, optimization, and automation Independent critical thinking and problem solving capabilities Strong verbal and written communication skills Executive presentation skills (presenting material and content creation) Self-motivated, detail oriented team player Willing to embrace stretch goals/assignments with a curious and growth oriented mindset Preferred: Expert level knowledge of Active Directory (cloud and on-premise) and 3rd party LDAP solutions Sailpoint IIQ development and/or administration experience Cyber Security Certifications (e.g. CISSP, Security+, etc.) Cloud Security Certifications (e.g. CCSP, Microsoft Azure, Amazon AWS, Google GCP) Compensation In the spirit of pay transparency, we are excited to share that the starting base pay range for this position is $98,400 - $154,600. Please keep in mind that this range is the base pay only and does not consider other components that make up the total rewards package for the position. If you are hired at Paychex, your overall compensation will be determined based on factors such as geographic location, skills, education, and/or experience which may result in total compensation outside of this range. Live the Paychex Values Act with uncompromising integrity. Provide outstanding service and build trusted relationships. Drive innovation in our products and services and continually improve our processes. Work in partnership and support each other. Be personally accountable and deliver on commitments. Treat each other with respect and dignity. What's in it for you? We value your well-being: We provide over 21 comprehensive rewards, including medical coverage, virtual wellness classes, tuition reimbursement, 401(k) + employer match, adoption assistance, financial assistance, and much more. We value your time: From paid time off to company holidays, culture days, and comprehensive work-life balance programs, we will ensure you have the flexibility you need to be your best. We value your development: Our award-winning training and development programs empower our employees with ongoing learning opportunities to give you the building blocks to grow your career. We value your perspective: Our company culture reflects the diversity of our employees. We want you to be you and your voice to be heard. We value our communities: We offer paid time off for volunteerism and promote many company-wide and local initiatives that benefit organizations you care about. Note: The benefits described apply to full-time employees. Benefits for part-time, contract, and intern roles may vary. Not sure if you meet every requirement? At Paychex, we know that great talent comes in many forms. If you're passionate about the role but don't check every box, we still encourage you to apply. You might be the right fit - either for this position or another opportunity with us. Paychex is an equal opportunity employer. We are committed to fostering a respectful and inclusive workplace where all individuals are treated fairly and evaluated based on their qualifications, experience, and merit. We comply with all applicable federal, state, and local laws prohibiting discrimination in employment. Design and configuration of IAM workflows, rules, standards and controls across multiple IAM platforms based on business requirements and functional design Design systems management solutions using automation and self-repair rather than relying on alarming and human intervention Develop strategic and technical IAM roadmaps to remediate identified risks and gaps in the current IAM program and initiatives Consults with Solution Leads and Development Leads to plan future technical solutions Monitors and solves problems in highly sophisticated systems, tools and/or networking solutions Analyzing and resolving complex authentication, integration, and automation issues Analyze and refine joiner, mover, leaver provisioning processes/scenarios across in-scope platforms and applications, providing governance improvement recommendations Influences and leads IAM team efforts across the Information Security department and enterprise as an authority in their domain, establishing and maintaining effective relationships with Internal Infrastructure, Application and Business partners in order to understand needs, use, and systems to facilitate effective IAM solutions Researches and analyzes the latest capabilities of specific Information Security (e.g. Cloud services, encryption, PKI etc.) and IT technologies (e.g. operating systems, networks, storage, virtualization etc.) as they relate to IAM Ability to execute high quality self-directed work under pressure, provide detailed estimates and work breakdown of typical activities leveraging an agile framework Required: Expert level knowledge of IAM governance and principles Translating business requirements into IAM process design, optimization, and automation Independent critical thinking and problem solving capabilities Strong verbal and written communication skills Executive presentation skills (presenting material and content creation) Self-motivated, detail oriented team player Willing to embrace stretch goals/assignments with a curious and growth oriented mindset Preferred: Expert level knowledge of Active Directory (cloud and on-premise) and 3rd party LDAP solutions Sailpoint IIQ development and/or administration experience Cyber Security Certifications (e.g. CISSP, Security+, etc.) Cloud Security Certifications (e.g. CCSP, Microsoft Azure, Amazon AWS, Google GCP)