Access Authorization, Access Control, Agile Programming Methodologies, Amazon Web Services (AWS), Authentication, Best Practices, Brokerage, CCNA - Cisco Certified Network Associate, CCNP - Cisco Certified Network Professional, CCSP - Cisco Certified Security Professional, CISSP - Certified Information Systems Security Professional, Cloud Computing, Communication Skills, Computer Science, Computer Security, Documentation, Enterprise Architecture, Financial Planning, Financial Services, IAM - Information Assurance Management, Identify Issues, Identity Data Management, Incident Response, Industry Standards, Information Technology & Information Systems, Information/Data Security (InfoSec), Insurance, Investment Services, Management Strategy, Microsoft Access Database, Microsoft Product Family, Microsoft Windows Azure, Model Review, Network Administration/Management, Onboarding, Options Analysis, Presentation/Verbal Skills, Process Capability, Securities, Security Design, Security Policy, Software Development, Writing Skills
Information Security Engineer II
Category
IT & Computer-related
Job Location
Fort Worth, TX
Tracking Code
501013 EX 10
Position Type
Full-Time/Regular
How will this role impact First Command?
This role advances the organization's Identity and Access Management (IAM) maturity by implementing and improving identity controls across the user lifecycle. This role is responsible for enhancing governance, provisioning, authentication, authorization, access reviews, role design, and compliance capabilities, with a strong emphasis on SailPoint and related identity platforms. The position partners with business, risk, audit, infrastructure, and application teams to deliver scalable IAM enhancements that strengthen security, support regulatory expectations, and improve the user access experience.
What will the employee do in this role?
- Provides subject matter expertise on Identity and Access Management strategy, governance, lifecycle processes, and platform capabilities so that effective and scalable IAM solutions can be developed and maintained
- Recommends and implements IAM controls for new and existing technologies, including joiner-mover-leaver processes, authentication, authorization, role-based access, segregation of duties, privileged access considerations, and access certification requirement
- Participates as a key member of the Security Incident Response Team (SIRT)
- Leads IAM enhancement initiatives, including role modeling, access review optimization, application onboarding, workflow improvements, and control implementation to ensure objectives, timelines, and compliance expectations are met
- Stay up to date on new information technologies and apply those innovations in the company's security standards and best practices
- Collaborates with business owners, application teams, infrastructure, audit, risk, compliance, vendors, and leadership to gather requirements, define access models, and implement IAM enhancements that align with policy and operational needs
- Evaluates cloud services and third-party applications for IAM onboarding, access governance, provisioning feasibility, certification support, and alignment with SailPoint and broader enterprise identity architecture
What skills and qualifications does the employee need?
Education
- Bachelor's degree in computer science, Information Technology, or an Engineering related field, or equivalent experience
- Preferred: SailPoint Certified Identity Security Administrator, SailPoint Certified Identity Security Engineer, or SailPoint Certified IdentityI Engineer
- Preferred: IAM-relevant certifications such as Certified Identity and Access Manager (CIAM) or Microsoft Certified: Identity and Access Administrator Associate
Work Experience
- Minimum 5 years' experience working in an IT Security capacity
- Minimum of 3 years' working with SailPoint with an Identity and Access Management platform
- Experience with information security policy design
- Strong understanding of IAM and identity governance principles, including authentication, authorization, role-based access control, User access reviews, segregation of duties, and identity lifecycle management
Certifications
- Relevant security certifications such as CIAM, CISSP, Microsoft Certified: Identity and Access Administrator Associate, CCSP, CCNA Security, and CCNP Security
Required Knowledge, Skills and Abilities
- Hands-on experience implementing and administering IAM capabilities, including application onboarding, provisioning workflows, role design, policy configuration, access certifications, reporting, and control evidence support
- Experience integrating SailPoint with cloud platforms (e.g., Azure AD, AWS)
- Familiarity with Privileged Access Management (PAM) tools and concepts
- Diligence in producing and maintaining documentation and evidence, especially for compliance activities
- Detailed knowledge of ISO, NIST, and other information security standards, laws, and regulations
- Possess strong analytical skills
- Must be a self-starter and comfortable with self-directed learning on industry risks and changes
- Good oral and written communication skills
- Ability to speak confidently when dealing with internal constituents
- Identifying complex problems and reviewing related information to develop and evaluate options and implement solutions
- Incorporate industry IAM standards into practical security operations, network operations, and application development practices
- Working knowledge of the Agile framework
LI-NC1
LI-Hybrid
2025 First Command Financial Services, Inc. is the parent company of First Command Brokerage Services, Inc. (Member SIPC, FINRA), First Command Advisory Services, Inc., First Command Insurance Services, Inc. and First Command Bank. Securities products and brokerage services are provided by First Command Brokerage Services, Inc., a broker-dealer. Financial planning and investment advisory services are provided by First Command Advisory Services, Inc., an investment adviser. Insurance products and services are provided by First Command Insurance Services, Inc. Banking products and services are provided by First Command Bank (Member FDIC).
Investment and insurance products are not deposits, are not insured by the FDIC, and may lose value. A financial plan, by itself, cannot assure that retirement or other financial goals will be met.
First Command Financial Services, Inc. and its related entities are not affiliated with, authorized to sell or represent on behalf of or otherwise endorsed by any federal employee benefit program, the U.S. government, the U.S. Armed Forces or any other third-party mentioned on this site.
In the United Kingdom, investment and insurance products and services are offered through First Command Europe Ltd. First Command Europe Ltd. is a wholly owned subsidiary of First Command Financial Services, Inc. and is authorized and regulated by the Financial Conduct Authority. Certain products and services offered in the United States may not be available through First Command Europe Ltd.
SIPC - Securities Investor Protection Corporation
Securities Investor Protection Corporation