Software Engineer 2 or 3 - Identity & Access Management (IAM)

This is a multi-level posting. Candidates may be considered for any of the posted levels, depending on their level of experience and depth of expertise.

As an Identity & Access Management (IAM) Engineer, you will support the design, configuration, deployment, and operation of IAM solutions, including access management, identity governance and administration (IGA), and privileged access management (PAM). This role partners with IT, cybersecurity, and business teams to deliver secure and efficient access to systems and data, while supporting automation, risk reduction, and ongoing operations.

This position requires hands-on development and support experience, working with internal and business partners to implement IAM solutions and maintain system performance.

MidAmerican Energy Company, a Midwest utility, provides regulated electric and natural gas service to more than 1.6 million customers in Illinois, Iowa, Nebraska and South Dakota. The company owns and operates a portfolio of power-generating assets, approximately 61% of which is wind generation.

Bachelor''s degree in management information systems (MIS), computer science or related technical field or equivalent work experience. (Typically four years of related, progressive work experience would be needed for candidates applying for this position who do not possess a bachelor''s degree.)

A minimum of two years of experience in software application design, development, integration, or implementation, preferably with exposure to identity and access management or security-related systems for level II.

A minimum of five year of experience in software application design, development, integration, or implementation, preferably with exposure to identity and access management or security-related systems for level III.

Hands-on experience developing and configuring access management solutions, with increasing complexity and ownership over time

Experience with automating user provisioning, reporting, and workflows using industry-standard platforms and scripting/programming languages (e.g., PowerShell, Python, Ansible, Terraform), with deeper expertise expected at more advanced levels

Strong understanding of IAM principles and best practices, with the ability to apply them in practical scenarios and contribute to evolving standards

Working knowledge of authentication and authorization protocols and tokens (e.g., SAML assertions, OAuth claims, grants, scopes)

Experience with IAM technologies and tools such as Microsoft IAM, Oracle IAM, SailPoint, Saviynt, Active Directory, LDAP, identity providers (IdPs), and Single Sign-On solutions

Familiarity with cloud platforms (e.g., Azure, GCP) and their identity and access management capabilities

Understanding of security and control frameworks (e.g., NIST, ISO 27001, PCI, HIPAA/HITRUST), with growing involvement in audit and compliance activities (e.g., SOX, SOC, GDPR)

Experience working with relational databases (e.g., MySQL, Oracle, Microsoft SQL Server)

Familiarity with industry-specific regulatory and security requirements (e.g., healthcare, privacy, financial services)

Relevant professional certifications (e.g., CISSP, GIAC, OSCP) are a plus and may be more common at more advanced levels

Work Authorization/Sponsorship

At this time, we''re not considering applicants that need any type of immigration sponsorship (additional work authorization or permanent work authorization) now or in the future to work in the United States. This includes, but IS NOT LIMITED TO: F1-OPT, F1-CPT, H-1B, TN, L-1, J-1, etc. For additional information around work authorization needs please use the following links.

Nonimmigrant Workers and Green Card for Employment-Based Immigrants

At the Engineer II level, the role focuses on execution and support with growing independence. At the Engineer III level, the role expands to leading complex initiatives, driving design decisions, and influencing IAM strategy and best practices.

• Support and lead the development and engineering of IAM platforms and solutions, increasing ownership with experience
• Contribute to and drive system design, configuration, and implementation activities
• Manage and continuously improve application onboarding and user access lifecycle (joiner, mover, leaver) processes
• Develop, support, and eventually own integrations with enterprise applications and identity systems
• Support and serve as a subject matter resource for SSO, MFA, and directory services (e.g., Active Directory, Azure AD)
• Troubleshoot and resolve IAM-related issues, progressing to leading root cause analysis and long-term improvements
• Collaborate with IT, security, and business teams, while helping influence consistent IAM standards and best practices
• Support and lead access reviews, audits, and compliance activities
• Create, maintain, and enhance technical documentation, procedures, and user guidance
• Contribute to and drive continuous improvement efforts, including automation, scalability, and process optimization

At the Engineer II level, the role focuses on execution and support with growing independence. At the Engineer III level, the role expands to leading complex initiatives, driving design decisions, and influencing IAM strategy and best practices.

• Support and lead the development and engineering of IAM platforms and solutions, increasing ownership with experience
• Contribute to and drive system design, configuration, and implementation activities
• Manage and continuously improve application onboarding and user access lifecycle (joiner, mover, leaver) processes
• Develop, support, and eventually own integrations with enterprise applications and identity systems
• Support and serve as a subject matter resource for SSO, MFA, and directory services (e.g., Active Directory, Azure AD)
• Troubleshoot and resolve IAM-related issues, progressing to leading root cause analysis and long-term improvements
• Collaborate with IT, security, and business teams, while helping influence consistent IAM standards and best practices
• Support and lead access reviews, audits, and compliance activities
• Create, maintain, and enhance technical documentation, procedures, and user guidance
• Contribute to and drive continuous improvement efforts, including automation, scalability, and process optimization