Here at Discount Tire, we celebrate the spirit of our people with extraordinary pride and enthusiasm. Our business has been growing for more than 60 years and now is the best time in our history to join us. We are opening more locations every year and we are always looking for qualified individuals to join us in our growth. We are a company that promotes from within, both in our retail and corporate operations.

Under general supervision, the IAM Engineer II takes a strategic, adaptable, and practical approach to addressing the ever-evolving needs of the business—balancing long-term capability development with the agility to respond to emerging threats. As a hands-on technical role, strong engineering expertise is essential. Collaborating within the Identity and Access Management (IAM) team, you will be actively involved in protecting key features and ensuring system integrity, while also contributing to the long-term technology roadmap and capability expansion.

Essential Duties and Responsibilities

• Design and administer cloud-based Identity and Access Management (IAM) platforms for Single Sign-On (SSO), Multi-Factor Authentication (MFA), and lifecycle management.
• Support user provisioning, deprovisioning, and group management in Active Directory (AD).
• Implement and enforce IAM policies, including role-based access control (RBAC) and least privilege principles.
• Design, build, and implement integrations in Okta and Active Directory integrations to enhance identity workflows.
• Monitor and maintain privileged accounts, ensuring compliance with security policies.
• Assist in implementing Privileged Access Management (PAM) best practices, such as just-in-time access and credential vaulting.
• Oversee and manage Public Key Infrastructure (PKI) and SSL/TLS certificates, ensuring timely renewal and proper security configurations.
• Collaborate with teams to maintain secure certificate configurations across enterprise systems.
• Support IAM-related audits, compliance checks, and security best practices.
• Monitor IAM logs and responds to security alerts related to authentication, access anomalies, and privilege escalations.
• Work closely with Technology & Operations teams to enhance identity security posture and enforce Zero Trust principles.
• Assist in scripting and automation for user provisioning, deprovisioning, and access reviews using PowerShell, Python, and APIs.
• Continuously identify and improve IAM workflows to increase efficiency and security.
• Assess project requirements to forecast work effort, dependencies, and timelines.
• Provide Tier 3 support and on-call triage and support for IAM-related incidents.
• Participate in Incident Response and Problem Management post-mortem sessions to improve IAM resilience.
• Contribute to the IAM strategy and roadmap development, ensuring alignment with business objectives and security best practices.
• Other duties as assigned.

Qualifications

• This position requires a minimum of 4 years’ experience in IAM, Cybersecurity operations, or IT infrastructure.
• Strong knowledge of identity platform administration (SSO, MFA, user lifecycle management).
• Hands-on experience managing Active Directory (AD), Group Policies, and access controls.
• Experience working with Privileged Access Management (PAM) tools.
• Familiarity with certificate management and PKI (SSL/TLS certificates, CA management).
• Understanding of IAM security principles, RBAC, least privilege, and Zero Trust.
• Basic scripting knowledge (PowerShell, Python, or APIs) for automation.
• Ability to analyze logs and identify problems with authentication and authorization.
• Familiarity with issue/project tracking software (e.g., Jira) as a contributor.
• Strong verbal and written communication skills.

Educational Requirements

• Bachelor's degree in Computer Science, Information Security, or a related field or equivalent experience is required.
• This position requires certification within the Information Security or IAM fields or within six (6) months of hire.
• Okta certification is preferred

Work Days

Normal work days are Monday through Friday. Occasional Saturdays and Sundays may be necessary.

Work Hours

Normal work hours are 8:00 a.m. to 5:00 p.m. Additional hours may be necessary.

Discount Tire provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local laws.

#LI-Hybrid

#LI-GW1