"Cyber Security Engineer - Identity Access Management (IAM)"

The people of Memorial Sloan Kettering Cancer Center (MSK) are united by a singular mission: ending cancer for life. Our specialized care teams provide personalized, compassionate, expert care to patients of all ages. Informed by basic research done at our Sloan Kettering Institute, scientists across MSK collaborate to conduct innovative translational and clinical research that is driving a revolution in our understanding of cancer as a disease and improving the ability to prevent, diagnose, and treat it. MSK is dedicated to training the next generation of scientists and clinicians, who go on to pursue our mission at MSK and around the globe.

Exciting Opportunity at MSK: Cyber Security Engineer - Identity Access Management (IAM)

Do you want to join an innovative team and contribute to cancer research? Are you creative and want to tackle meaningful problems? Then join us here at MSK, where we can provide you with the opportunity to do all of those things!

We are seeking a Cyber Security Engineer for our Access Management Administration (AMA) function within the Identity Access Management (IAM) team. We are searching for someone with strong .NET, C#, and web development skills to design, build, and maintain automation and orchestration solutions that enhance our cybersecurity operations, identity platforms, and compliance posture.

This role combines secure web application development, API-driven automation, and orchestration workflows to replace manual security processes with scalable, auditable, and resilient solutions.

Role Overview:

• Design and develop secure automation services using C# and .NET.
• Build and maintain web-based MFA registration portals, dashboards, and helpdesk self-service tools using modern web technologies.
• Develop and maintain RESTful APIs for security and IAM integrations.
• Build orchestration workflows using platforms such as PingOne DaVinci or similar orchestration tools.
• Automate cybersecurity processes including the following: MFA enforcement and validation, Certificate rotation, Federation onboarding, Incident response actions, Compliance evidence collection
• Integrate security platforms using REST APIs, JSON, OAuth, OIDC, and SAML.
• Implement CI/CD pipelines for automation and web applications.
• Ensure all solutions meet security, audit, and compliance requirements.
• Provide documentation and operational support for automation solutions.
• Experience or knowledge in the following technologies will be a plus:
• Design, development, and maintenance of authentication systems using OAuth, SAML, and OpenID Connect with PingFederate or equivalent platforms.

Key Qualifications:

• 2-5+ years of professional software development experience building, testing, and supporting production applications.
• Strong hands-on experience with C# and the .NET ecosystem.
• Strong web development experience using: HTML, CSS, JavaScript, ASP.NET / ASP.NET Core
• Strong experience with REST APIs, JSON, and web services.
• Hands-on experience with orchestration / workflow automation tools.
• Experience implementing secure authentication and authorization.
• Experience with Git and CI/CD pipelines.
• Experience working with SQL databases and API testing tools such as Postman.
• Comfort working across Windows and Linux environments.
• Experience with PowerShell or similar scripting/automation tools.
• Ability to integrate with enterprise systems such as Active Directory.
• Exposure to security, identity, or access management platforms (Ping, SailPoint, PAM tools) is a plus.

Core Skills:

• Proven ability to collaborate in a team-oriented, agile environment, balancing delivery, quality, and continuous improvement.
• Excellent written and verbal communication skills, including the ability to document technical designs, workflows, and operational procedures clearly.
• A good decision-maker, with proven success at making timely decisions that keep the organization moving forward.
• Strong analytical and problem-solving skills with the ability to troubleshoot complex technical issues, analyze logs and system behavior, and drive root-cause resolution.
• Experience in enterprise or regulated environments is a plus.

Additional Information:

Schedule: 9:00 AM - 5:00 PM EST, Monday - Friday with Flexible to work after hours, weekends and holidays when required. Must be available to provide 3rd level 24 x 7 support on a rotating schedule.

Location: Hybrid; Predominantly remote with flexibility to work come on site as needed. Must live in commutable distance to NYC or New Jersey Middletown locations

Reporting to Associate Director, Identity & Access Management

Helpful Links:

• Compensation Philosophy
• Benefits

Pay Range: $90,700.00 - $145,300.00 FSLA Status: Exempt