cover image
IZAR Associates, Inc.

IZAR Associates, Inc.

www.izarinc.com

2 Jobs

18 Employees

About the Company

IZAR Associates Inc. (IZAR) has been in business for over twenty years. IZAR's DNA is coded with integrity, reliability, hard work and dedication.These core values were tested during IZAR's inception and have carried the company forward into the present. IZAR's experience is in information technology solutions as well as IT staffing services. IZAR's expertise is focused on systems engineering, project management and quality management. Experiences include data center migration, server consolidation, backup and recovery, desktop asset management and packaging, project management, quality assurance and quality management, ITIL consulting, configuration management, change management, technical writing, and document management. Our Mission As an information technology services firm serving private sector and government customers, IZAR's mission is to deliver standards based services, flexible solutions and business driven results. Our Core Values Integrity - Reliability - Commitment - Excellence

Listed Jobs

Company background Company brand
Company Name
IZAR Associates, Inc.
Job Title
Information Technology Security Engineer
Job Description
**Job Title:** Information Technology Security Engineer – Privileged Access Management (PAM) **Role Summary:** Skilled security engineer responsible for designing, implementing, and maintaining privileged access controls across on‑premises (AD, Linux, macOS) and multi‑cloud environments (Azure, AWS, GCP). Focuses on vaulting, endpoint least‑privilege, identity hygiene, and Zero‑Trust architecture to reduce attack surface and ensure compliance with NIST and other standards. **Expectations:** - Deliver PAM solutions that enforce just‑in‑time, approval‑based access. - Reduce standing administrator rights and improve endpoint privilege posture. - Align privileged access practices with Zero‑Trust and regulatory frameworks. - Produce clear documentation, runbooks, and compliance reports. - Collaborate with desktop engineering, IGA, audit, and risk teams. - Work onsite for the first month, then hybrid (3 days onsite/2 days remote). **Key Responsibilities:** - Administer corporate vaulting platform for credentials across AD, Entra ID, Linux, Azure, AWS, GCP. - Implement credential randomization and JIT access for admin and service accounts. - Deploy and maintain endpoint least‑privilege policies on Windows, Linux, macOS. - Lead local administrator cleanup and enforce removal of unauthorized admin rights. - Harden cloud tenant hygiene; monitor stale accounts, privileged roles, excess permissions. - Apply ITDR practices to detect and respond to privileged‑activity anomalies. - Contribute to enterprise Zero‑Trust design; promote passwordless, MFA, SSO for privileged identities. - Manage privileged roles in Azure AD, AWS IAM, GCP IAM; integrate with PAM vaulting and session recording. - Automate provisioning, de‑provisioning, and recertification of privileged accounts with IGA tools. - Create/maintain runbooks, architecture diagrams, operational procedures; provide usage and compliance reporting. **Required Skills:** - 7+ years in PAM, IAM, or security engineering. - Hands‑on experience with Active Directory, Entra ID, Linux, and at least one cloud platform (Azure, AWS, or GCP). - Expertise in vaulting technologies and endpoint privilege management (least‑privilege, privilege elevation, application control). - Strong knowledge of MFA, SSO, passwordless, Kerberos, certificate‑based authentication. - Familiarity with NIST 800‑63B, Zero‑Trust frameworks, ITDR, CIS/CSA cloud security standards. - Scripting/automation: PowerShell, Python, Bash, Terraform (or similar). - Excellent documentation and communication skills. **Required Education & Certifications:** - Bachelor’s degree in Computer Science, Information Security, or related field (or equivalent experience). - Preferred certifications: CISSP, CISM, CCSP, Azure Security Engineer Associate, AWS Security Specialty, GIAC, SailPoint, or similar.
New york city, United states
On site
Senior
20-01-2026
Company background Company brand
Company Name
IZAR Associates, Inc.
Job Title
Onboarding Specialist
Job Description
**Job Title** IGA Onboarding Specialist (IGA Analyst) **Role Summary** Responsible for onboarding applications to the enterprise Identity Governance & Administration (IGA) platform, modernizing authentication (FIDO2, password‑less), and reducing identity‑related technical debt. Works with IAM, security architecture, compliance, and application teams to enforce Zero Trust and regulatory access controls across corporate, frontline, and OT environments. **Expectations** - 3–5 years of hands‑on IGA experience. - Proven ability to design and execute application onboarding, authentication modernization, and lifecycle governance. - Strong collaboration and communication across technical and business stakeholders. - Ability to automate identity processes and apply Zero Trust principles. **Key Responsibilities** - Onboard and integrate new applications into the IGA platform (SailPoint, Saviynt, Oracle IDCS, etc.). - Implement and promote modern authentication methods (FIDO2, password‑less MFA). - Reduce technical debt by establishing governance, lifecycle management, and RBAC controls. - Manage federation protocols (SAML, OIDC, OAuth2) and access management across cloud and on‑prem environments. - Collaborate with IAM, security, compliance, and application owners to align access controls with Zero Trust and regulatory standards. - Document processes, create runbooks, and provide training to stakeholders. - Develop scripts (PowerShell, Python, SQL) for data analysis, reporting, and automation. **Required Skills** - Active Directory and Entra ID administration. - Experience with IGA platforms (SailPoint, Saviynt, Oracle IDCS). - Familiarity with PAM solutions (BeyondTrust, CyberArk, ManageEngine PAM360). - MFA/SSO solutions (Microsoft Entra ID, Duo, Okta, Ping Identity). - Knowledge of Zero Trust, FIDO2, password‑less, phishing‑resistant MFA. - Identity lifecycle automation, RBAC modeling, and role mining. - Understanding of privilege escalation, identity threat detection, and compliance frameworks (NIST 800‑63B, CIS, TSA). - Scripting/automation (PowerShell, Python, SQL). - Cloud identity concepts (Azure, AWS, GCP). - Strong analytical, documentation, and verbal/written communication skills. **Required Education & Certifications** - Bachelor’s degree in Information Security, Computer Science, or related field or equivalent practical experience. - Relevant certifications (e.g., CISSP, CISM, Identity Governance certifications, Zero Trust or IAM vendor certifications) are a plus.
New york city, United states
On site
Junior
20-01-2026