Information Security Engineer Sr Lead (Identity Mgmt Systems Support)

Date: Jul 18, 2019

Location: Little Rock, AR, US

Company: Entergy

*This position can be filled in New Orleans, LA, The Woodlands, TX, or Little Rock, AR.*

Brief Position Description:

Reporting to the Manager of Identity Management Systems Support, The Information Security Engineer Senior Lead will provide technical leadership in delivering Identity & Access Management (IAM) system support as part of the overall Information Security Access team. This includes supporting technology which provides access provisioning and authentication services as well as Information and Operational technologies both on premise and through cloud supported platforms.


The Information Security Engineer Senior Lead is expected to perform in the role of senior subject matter expert in all areas of IAM including Role Based Access Controls (RBAC), Single Sign On (SSO), Multifactor Access (MFA), and Privileged Access Management (PAM). This role will be expected to provide mentoring and leadership across the team in support of the Manager of Identity Management Systems Support and will assist in developing policies, processes and procedures which help deliver on the team’s mission to improve services through efficiencies while protecting Entergy’s assets, technologies, systems and customers.


Key responsibilities include:

  • Plan and deliver execution on the strategy, roadmap and delivery plans for Identity and Access Management (IAM) Systems
  • Collaborate with other Information Security and Information Technology teams to deliver integrated services providing improved efficiencies and service offerings
  • Collaborate across other lines of business to evangelize the importance of IAM and build relationships to help grow and improve the Identity program throughout the organization
  • Develop efficiencies for, and participate in, compliance activities to meet requirements of North American Electric Reliability Corporation Critical Infrastructure Protection (NERC CIP) and Nuclear Regulatory Commission (NRC) Nuclear Cyber (10 CFR 73.54)
  • Establishing user identities, provisioning and de-provisioning of access, access level changes, federation, etc.
  • Deliver maintenance of IAM technology infrastructure, managing applications and user-store integrations, directory capabilities, patching, upgrades, etc.
  • Provide recommendations for and help foster an environment of continual improvement
  • Support the Enterprise Active Directory (AD) environment, Lightweight Directory Access Protocol (LDAP) services, virtual directory services (VDS) multi-factor authentication (MFA), federation services, privileged account management (PAM) and password management


Experience required:

  • Five years of Information Security and Identity & Access Management (IAM) experience in a large corporate environment with at least 2 years of experience within the Fortune 500.
  • Direct experience related to IAM skills/field including; provisioning and workflow, authentication and entitlements, role-based access controls (RBAC), data privacy, and access review and certifications
  • Knowledge of IAM federated roles and responsibilities within corporate environments including federated identity and web services security through SAML, OAuth 2.0, OpenID Connect, OWIN and ID-WSF, WS-Federation, and WS-Security
  • Experience supporting IAM technologies such as multi-domain Active Directory environments, multi-domain LDAP environments, multi-factor authentication across different infrastructure topologies including external vendors, federated access services and supporting access review and certifications
  • Experience in developing processes and supporting different topology models of the IAM stack including cloud-based systems and on – premise systems across multiple data centers as well as various hybrid deployments with high availability of services


Minimum knowledge, skills, and abilities required of the position

  • Successful hands-on experience deploying and supporting modern IAM systems, protocols and standards, frameworks, federation technologies and solutions within a large enterprise environment
  • Successful experience with deploying and supporting Microsoft Active Directory and other LDAP technologies within a large enterprise environment
  • Successful experience with deploying and supporting several of the following; multiple server operating systems, Identity Management Platforms providing manual and automated provisioning services with access certification, Federation Services, Multi-factor authentication technologies, Virtual Directories, Privilege Access Management and self-service password reset technologies. 
  • This is a technical engineering role which also requires excellent process management skills
  • Demonstrated understanding of working within a process driven environment with attention to the ITEL framework and change management programs
  • An understanding of interfacing with other Information Security disciplines including Vulnerability Management, Security Operations, Endpoint security and Physical Security
  • An understanding of energy related regulations (SOX, HIPAA, NERC CIP, FERC, and NRC Nuclear Cyber (10 CFR 73.54)
  • Knowledge of security, risk, and control frameworks and standards such as ISO 27001 and 27002, SANS-CAG, NIST, FISMA, COBIT, COSO and ITIL
  • Experience working with both employee and contractor resources in local and remote environments
  • Motivated self-starter who can identify and resolve problems with little supervision
  • Exceptional organizational and time management skills are required
  • Experience working in partnership with colleagues throughout the IT organization and in collaborative teams to achieve common goals
  • Good communication skills
  • Available to travel as necessary for business needs
  • Self-motivated and capable of managing multiple priorities to successful completion



  • Bachelor’s degree in computer science, cyber security or a related discipline or equivalent work experience also considered.
  • Bachelor’s degree preferred.
  • Professional, vendor neutral certifications such as CISSP, CISM, CCSP and/or various GIAC certifications
  • Relevant credentialing or certifications from one or more of the various IAM vendor platforms


*Please note: Authorization to work in the United States is a precondition to employment in this position.  Entergy will not sponsor candidates for work visas for this position.*


Primary Location: Arkansas-Little Rock
Job Function: Information Technology
FLSA Status: Professional
Relocation Option: No Relocation Offered
Union description/code: NON BARGAINING UNIT-NBU
Number of Openings: 1
Req ID: 86434
Travel Percentage:25% to 50%


An Equal Opportunity Employer, Minority/Female/Disability/Vets. Please click here to view the full statement.



As a provider of essential services, Entergy expects its employees to be available to work additional hours, to work in alternate locations, and/or to perform additional duties in connection with storms, outages, emergencies, or other situations as deemed necessary by the company. Exempt employees may not be paid overtime associated with such duties.

Nearest Major Market: Little Rock

Job Segment: Information Security, Corporate Security, Engineer, Systems Engineer, Security, Technology, Engineering