Share this Job

Identity & Access Management engineer


North Bergen, NJ, US

Explore the possibilities across our global house of brands.

Defined by inclusivity rather than exclusivity, Tapestry embraces the exploration of individuality and invests in helping you grow personally and professionally. Every individual in our global house has the opportunity to make an impact, learn and be part of our growing and unique story.

At Tapestry, we have the freedom to express ourselves and run with our best ideas across Coach, Kate Spade New York, and Stuart Weitzman. We share a profound belief in both our individual and collective potential, and know that with hard work and dedication, anything is possible.

Primary Purpose: The Identity & Access Management Engineer will be responsible for the designing, engineering, implementation and on-going management of all IAM, Active Directory Services and related technologies across the global enterprise. This role will serve as a technical lead and subject matter expert in identity management, Active Directory and authentication technologies, directory services and public-key infrastructure within and hybrid infrastructure. The individual must be a motivated team player with a positive attitude, solid interpersonal skills and someone who can quickly take ownership within their area. The individual must be hands-on, work under minimal supervision and have the ability to work in a fast-paced global environment.


Key Responsibilities

  • Implementation and Management:
    • Design, engineer & deploy IAM related technologies
    • Provide guidance to IT partners on configuration, debugging, and deployment of tools requiring IAM integration
    • Direct operations team in proactively monitoring and management of IAM infrastructure
    • Manage & monitor quality of services delivered by internal & external partners
    • Identify opportunities to optimize IAM environment and provide suggestions on improvements
    • Provide on-going feedback & thought leadership to operations teams
  • Support and Enablement:
    • Provide Level 3 Support on operational issues
    • Collaborate & support IT & business team on various projects in the pipeline
    • Leverage various tools and custom scripts to monitor the operational status of IAM environment
    • Optimizes and fine-tune performance as appropriate
    • Guide root cause analysis, debugging, support, and post-mortem analysis for any service interruptions
    • Guide maintenance, upgrades, and support for existing systems and infrastructure to ensure operational stability
    • Act as a vendor relationship manager
    • Work with operational team to prepare technical documentation and run-books
    • Monitor tools and where applicable, proactively help operational teams with systems issues
    • Guide the creation of scripts and tools that drive automation and enable operational teams and end users to move towards self service
    • Acts as a mentor to junior members in the team
  • Strategy & Architecture:
    • Help drive the strategy and architecture of global IAM & Directory Services environment
    • Keep abreast of innovations and industry trends as well as changes to internal systems and determines how they impact tools, training, and support necessary to keep systems up, running, and secure
    • Evaluation, development, and testing of IAM and related technology solution
    • Provide technology recommendations to provide cost-effective solutions that meet business and technology requirements
    • Provide on-going guidance to operational teams for proactive management, monitoring and support of the environment
    • Develop and deliver training or knowledge transfer activities for operational teams
    • Effectively engage and collaborate with InfoSec peers, IT & business partners
    • Proactively review articles, tutorials, and videos to learn about new technologies and best practices being used within the industry


Required Technical Skills

  • At least 6+ Years of expert-level hands-on experience in IAM & related technologies, including Active Directory, Directory Services, Single Sign-On, LDAP, PKI, Cloud Directory Services, Authorization & Authentication Technologies, User Provisioning, Privileged Access Management, Role-Based Access Control (RBAC), etc.
  • Possess deep domain expertise and hands-on experience managing on-prem and Azure Active Directory - supporting enterprise-level systems in a global hybrid-cloud infrastructure (Azure, AWS & GCS)
  • Strong experience with initiatives like Domain Consolidation, domain controller promotion and demotion, OU setup and delegation of administration, group policy creation and modification, administration of AD sites, subnets and site links, schema changes and other AD related operational tasks
  • Hands-On experience with one or more IAM tools – CA Siteminder, Sailpoint, Okta, Ping Identity or others
  • Fluency in Active Directory components – GPO, Kerberos, Federation Services, Domain Trusts, etc.
  • Advanced debugging and troubleshoot issues, including interacting with internal operations teams & external technology vendors
  • Hands-on experience creating and managing PowerShell scripts
  • Thorough familiarity with standards such as SAML, WS-Sec; SOAP; REST, OATH; OAuth2.0; Digest, XML, JSON, REST, etc.
  • User Directory Administration experience and System Administration experience a plus
  • Familiarity with various IT / Security technologies including DNS, DHCP, MS Exchange, Firewalls, VPN Gateways, IPS, Proxy, Endpoint Security, Vulnerability Management, SEIM, etc.

Required Professional Skills

  • BA/BS in Computer Science or equivalent
  • Minimum 5 years of direct experience with IAM technologies
  • Creative and inquisitive professional with excellent interpersonal and cross functional/divisional collaboration skills able to handle work smoothly under stress, managing multiple assignments concurrently, adjusting easily as business needs change, and acquiring necessary new working knowledge quickly
  • Advanced communication (including group presentations), problem solving, and conflict resolution with internal and external stakeholders including senior leaders
  • Extensive knowledge and a proven record of success in managing IAM projects end-to-end
  • Ability to produce high-quality deliverables, reports, and presentations for IT team members & senior management
  • Ability to manage multiple activities and competing priorities in a rapidly growing, fast-paced interactive, results-based team environment
  • Ability to confidentially discuss and provide guidance on InfoSec in areas such as vulnerability assessment, penetration testing, identity and access management, web application security, secure network architecture, authentication, encryption data protection and internet networking in general (i.e. TCP/IP, DNS, routing, etc.)
  • Formal certification in Information Security and/or IAM preferred
  • Certifications from cloud providers such as AWS, Azure, and GCP or similar
  • Experience working in Retail Industry is a plus


Our Competencies for All Employees

  • Drive for Results: Can be counted on to exceed goals successfully; is constantly and consistently one of the top performers; very bottom-line oriented; steadfastly pushes self and others for results.
  • Customer Focus: Is dedicated to meeting the expectations and requirements of internal and external customers; gets first-hand customer information and uses it for improvements in products and services; acts with customers in mind; establishes and maintains effective relationships with customers and gains their trust and respect.
  • Creativity: Comes up with a lot of new and unique ideas; easily makes connections among previously unrelated notions; tends to be seen as original and value-added in brainstorming settings.
  • Interpersonal Savvy: Relates well to all kinds of people, up, down, and sideways, inside and outside the organization; builds appropriate rapport; builds constructive and effective relationships; uses diplomacy and tact; can diffuse even high-tension situations comfortably.
  • Learning on the Fly: Learns quickly when facing new problems; a relentless and versatile learner; open to change; analyzes both successes and failures for clues to improvement; experiments and will try anything to find solutions; enjoys the challenge of unfamiliar tasks; quickly grasps the essence and the underlying structure of anything.
  • Perseverance: Pursues everything with energy, drive, and a need to finish; seldom gives up before finishing, especially in the face of resistance or setbacks.
  • Dealing with Ambiguity: Can effectively cope with change; can shift gears comfortably; can decide and act without having the total picture; isn’t upset when things are up in the air; doesn’t have to finish things before moving on; can comfortably handle risk and uncertainty.

Our Competencies for All People Managers

  • Strategic Agility: Sees ahead clearly; can anticipate future consequences and trends accurately; has broad knowledge and perspective; is future oriented; can articulately paint credible pictures and visions of possibilities and likelihoods; can create competitive and breakthrough strategies and plans.
  • Building Effective Teams: Blends people into teams when needed; creates strong morale and spirit in their team; shares wins and successes; fosters open dialogue; lets people finish and be responsible for their work; defines success in terms of the whole team; creates a feeling of belonging in the team.
  • Managerial Courage: Doesn’t hold back anything that needs to be said; provides current, direct, complete, and “actionable” positive and corrective feedback to others; lets people know where they stand; faces up to people problems on any person or situation (not including direct reports) quickly and directly; is not afraid to take negative action when necessary.

Tapestry, Inc. is an equal opportunity and affirmative action employer and we pride ourselves on hiring and developing the best people. All employment decisions (including recruitment, hiring, promotion, compensation, transfer, training, discipline and termination) are based on the applicant’s or employee’s qualifications as they relate to the requirements of the position under consideration. These decisions are made without regard to age, sex, sexual orientation, gender identity, genetic characteristics, race, color, creed, religion, ethnicity, national origin, alienage, citizenship, disability, marital status, military status, pregnancy, or any other legally-recognized protected basis prohibited by applicable law. #LI-CE1 Visit Tapestry, Inc. at

Req ID:  86938

Nearest Major Market: New York City
Nearest Secondary Market: Newark