Working Title: ICAM Security Engineer
Job Class: Information Technology Specialist 4
Agency: Minnesota IT Services
Job ID : 88891
Location : St. Paul
Telework Eligible : Yes #LI-Hybrid
Full/Part Time : Full-Time
Regular/Temporary : Unlimited
Who May Apply : Open to all qualified job seekers
Date Posted : 09/20/2025
Closing Date : 10/03/2025
Hiring Agency/Seniority Unit : Minnesota IT Services
Division/Unit : Enterprise / ICAM Staff
Work Shift/Work Hours : Day Shift
Days of Work : Monday - Friday
Travel Required : No
Salary Range: $37.07 - $61.14 / hourly; $77,402 - $127,660 / annually
Job Class Option : Information Security
Classified Status : Classified
Bargaining Unit/Union : 214 - Professional Employees (MAPE)
FLSA Status : Exempt - Administrative
Designated in Connect 700 Program for Applicants with Disabilities (https://mn.gov/mmb/careers/diverse-workforce/people-with-disabilities/connect700/) : Yes
The work you'll do is more than just a job.
At the State of Minnesota, employees play a critical role in developing policies, providing essential services, and working to improve the well-being and quality of life for all Minnesotans. The State of Minnesota is committed to equity and inclusion, and invests in employees by providing benefits, support resources, and training and development opportunities.
Join the 2,800+ professionals of Minnesota IT Services (https://mn.gov/mnit/about-mnit/careers/) (MNIT) who connect Minnesotans to services that will improve their lives. This position will be part of the Enterprise Security team, which embeds security protection statewide.
The Identity, Credential, Access Management (ICAM) Engineer is responsible for conducting independent comprehensive assessments of the management, operational, and technical security controls and control enhancements employed within or inherited by IT systems to determine the overall effectiveness of the controls as defined in the IAM policy and standards. This position collaborates across all MNIT divisions to establish, analyze, recommend, administer, and review enterprise application and system architecture requirements to ensure compliance with IAM policy and standards.
Key responsibilities will include:
Analyzing and documenting current gaps and risks in the ICAM Program and processes; develop mitigation strategies for cloud.
Collaborate with other ICAM engineers and key stakeholders across the enterprise regarding the enterprise PAM solution
Provide senior level engineering design and operations support to enterprise level solutions with an ICAM component in a ZTA environment.
Identifying risk related to ICAM and developing mitigation strategies for cloud and ZTA.
Gathering requirements to make recommendations for ICAM requests.
Review and document functionality of existing legacy applications and make recommendations to bring them into compliance with policies, standards, and controls.
Perform or oversee audits related to ICAM to ensure compliance with polices, standards, and controls.
This position requires an employee to be onsite at Saint Paul, Minnesota at least 50% of the time, with some opportunity to perform work from a telework location. Telework (https://mn.gov/mmb-stat/policies/1422-telework.pdf) for Minnesota IT Services is available on a limited basis. Employees will be required to meet current telework eligibility requirements.
Minimum Qualifications
Candidates must clearly demonstrate all of the following qualifications in their resume. Resume tips here. (https://mn.gov/mnit/about-mnit/careers/hiringprocess.jsp) **:
Position requires a minimum of four (4) years of IT related experience in information security role that includes:**
Active mid-level cybersecurity certification, such as CIAM, CISA, or equivalent, with a focus on identity governance.
Experience working across diverse business lines to resource and monitor remediation efforts to ensure compliance policies and standards or regulations.
Thorough understanding of technical systems architecture; specifically related to hybrid identity management, cloud and ZTA.
Understanding of credentials, authentication, and authorization principles and design alternatives; as well as, performing assessments to ensure security controls and compliance indicators are met.
Knowledge of and experience working with identity and access requirements for controls and configurations of Microsoft, cloud, Unix/Linux, applications, and systems.
Experience with and knowledge of the NIST cybersecurity framework.
Ability to deliver effective verbal or written messages that facilitate a mutual understanding on both parties.
Customer service skills that include active listening, empathy, and problem-solving.
A master's degree in Information Technology or an IT related field substitutes for three (3) years of experience, OR an IT related bachelor's degree substitutes for two (2) years, OR an IT related associate's degree substitutes for one (1) year.
Preferred Qualifications
Certifications: CISSP or other relevant information security certification or recipient of the Cybercops Scholarship for Service.
Skill in developing or recommending analytic approaches or solutions to problems and situations for which information is incomplete or for which no precedent exists.
Ability to function effectively in a dynamic, fast-paced environment.
Knowledge of application security concepts, risks, and controls related to digital identity and access.
Ability to communicate complex security requirements and solutions to both technical and non-technical internal and external customers, agency staff, vendors, and other governmental agencies.
Ability to prepare and conduct presentations on digital identity and access, computer security policies, procedures, and guidelines, requirements, and system solutions.
Negotiation and consensus building skills with excellent communication skills both written and verbal
Additional Requirements
It is the policy of Minnesota IT Services that a successful candidate must pass all legally required checks prior to employment which may consist of the following:
SEMA4 Records Check (applies to current and past state employees only)
Criminal History Check
Reference Check
Social Security and Address Verification
Education Verification
CJIS Background Check
Other legally required checks
Minnesota IT Services does not participate in E-Verify. Minnesota IT Services will not sponsor applicant for work visas, including F-1 STEM OPT extensions. All applicants must be legally authorized to work in the United States.
AN EQUAL OPPORTUNITY EMPLOYER
Minnesota State Colleges and Universities is an Equal Opportunity employer/educator committed to the principles of diversity. We prohibit discrimination against qualified individuals based on their race, sex, color, creed, religion, age, national origin, disability, protected veteran status, marital status, status with regard to public assistance, sexual orientation, gender identity, gender expression, or membership in a local commission as defined by law. As an affirmative action employer, we actively seek and encourage applications from women, minorities, persons with disabilities, and individuals with protected veteran status.
Reasonable accommodations will be made to all qualified applicants with disabilities. If you are an individual with a disability who needs assistance or cannot access the online job application system, please contact the job information line at 651-259-3637 or email careers@state.mn.us . Please indicate what assistance is needed.
