Identity and Access Management (IAM) Specialist - 100% Remote

Our customer is a large United States insurance company that is backed by more than 100 years of experience and provides insurance products and services for businesses and professionals in the United States., Canada and Europe. Headquartered in Chicago, IL, they have more than 20 US locations.

We are seeking a contract IAM Specialist to support our Customer's business needs. This role is 100% remote.

This role will lead Phase 2 application deep‑dives within the ECM Change Management Audit Remediation program and coordinate application team responses end‑to‑end. This role will facilitate and document what constitutes “privileged access” with application and service owners, drive data collection and analysis, and own all IAM aspects of project execution for the IAM workstream—including alignment to the policy and Privileged Account Management (PAM) standard. Phase 2 focuses on risk‑based deep‑dive assessments of applications prioritized by business criticality, regulatory impact, data classification, foundational system status, and usage profiles

Responsibilities:

• Plan, schedule, and run deep‑dive assessment sessions with application and service owners; tailor question sets to hosting model (on‑prem/SaaS), access model, and criticality.
• Drive application response completion (surveys, interviews, workshops) and ensure evidence is collected and stored in approved repositories (e.g., CMDB/SharePoint/ServiceNow).
• Define and document “privileged access” per app (roles/entitlements, credentials, break‑glass accounts, service accounts/keys, cloud admin roles), aligned to the PAM Standard.
• Map entitlements to accounts and controls (vaulting, rotation, JIT, session management, MFA) and identify remediation needs when gaps are found.
• Apply risk‑based prioritization using the Phase 2 model (business criticality, regulatory/data classification, foundational status, users/usage) and document rationale in CMDB attributes.
• Produce application‑level deep‑dive reports (current state, control gaps, recommendations, target dates) and portfolio rollups for weekly program governance.
• Ensure outcomes align with the IAM Policy and PAM Standard definitions and control expectations; raise exceptions only when justified with mitigating controls and an action plan.
• Partner with app teams to establish/confirm privileged access scopes for upcoming PAR/PUAR campaigns and certify in-scope accounts accordingly
• Coordinate with platform owners to onboard/vault privileged credentials and related secrets in CyberArk; ensure Okta access patterns and SailPoint IIQ governance reflect agreed entitlements.
• Ensure CMDB attributes and ServiceNow IRM records reflect final risk ratings and control states for assessed applications.

Skills and Responsibilities:

• Bachelor's degree in Computer Science or equivalent experience.
• Minimum of 4 years of experience in security aspects of multiple platforms, operating systems, software communications, and network protocols.
• Previous help desk experience is desirable.
• Applicable certifications preferred.

We offer a competitive salary range for this position. Most candidates who join our team are hired at the median of this range, ensuring fair and equitable compensation based on experience and qualifications.

Contractor benefits are available through our 3rd Party Employer of Record (Available upon completion of waiting period for eligible engagements)

Benefits include: Medical, Dental, Vision, 401k.

An Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against on the basis of disability.