Identity Management Developer (CEMI)

Benefits

Additional Information

Working Title: Identity Management Developer (CEMI) [Remote] [2 Year Term] No Visa Sponsorship is available for this position. This is a two (2) year term appointment which may be ended or extended based on organizational needs, funding availability, and performance. About Information Technology @ Cornell Information Technology (IT) is a strategic enabler for many functions at Cornell University, with staff located across colleges, administrative units, and campuses throughout the institution. While comprised of many organizations, IT operates as one partnering closely with faculty, staff, and students to support teaching, research, and business operations. By being embedded where the Cornell community is, IT is well positioned to provide support ranging from day‑to‑day needs to large, complex initiatives that advance major academic, research, and operational objectives across the university. Check out this link to find out more about IT@Cornell . What will you do: Reporting to the Assistant Director for Identity & Access Management, the Identity Management Developer (CEMI) provides cybersecurity‑focused technical leadership and engineering expertise in support of Cornell University's Identity & Access Management services within the university IT Security Office (ITSO). This position plays a key role in ensuring the secure, reliable, and effective delivery of enterprise authentication, authorization, and directory services that underpin the university's academic, research, and administrative operations. The Identity Management environment at Cornell consists of a diverse ecosystem of homegrown, open‑source, and vendor‑provided applications and services. The Security Engineer operates primarily in an engineering‑focused capacity, contributing deep technical expertise to the design, planning, implementation, and ongoing improvement of identity services. This role is instrumental in maintaining a strong security posture while enabling scalability, resiliency, and ease of use for a broad and varied campus community. In addition to technical leadership, this position serves as a key liaison between ITSO, campus business units, and external partners. The Security Engineer supports strong service relationships by helping stakeholders understand identity service capabilities, status, and access processes, and by translating complex technical concepts into clear, non‑technical guidance when needed. The role also contributes to the evolution of next‑generation Identity Management solutions by collaborating with vendors, peer institutions, and internal partners to stay current with emerging technologies and best practices in higher education cybersecurity. The Security Engineer is expected to work collaboratively within the Identity Management team and across ITSO to meet service levels, support operational objectives, and respond effectively to system outages or changes, including availability outside of standard university business hours when required. This is a two (2) year term appointment which may be ended or extended based on organizational needs, funding availability, and performance. While position responsibilities vary, every member of our community is expected to foster a culture of belonging and a healthy work environment by communicating across differences; being cooperative, collaborative, open, and welcoming; showing respect, compassion, and empathy; engaging and supporting others regardless of background or perspective; speaking up when others are being excluded or treated inappropriately; and supporting work/life integration of oneself and others. Required Qualifications: Bachelor's degree with a minimum of three to five years of relevant experience, or an equivalent combination of education and experience. Demonstrated success providing technical support and application or middleware development in a distributed, team‑focused computing environment. Demonstrated expertise with one or more scripting or programming languages, such as Java, Perl, Python, and/or VB (.NET), ReactJS, Ruby, and/or PHP Approximately 1 year+ of professional experience developing ReactJS applications and/or Ruby on Rails. System administration experience with Linux required; and Windows experience preferred. Working to advanced knowledge of one or more identity and access management technologies, including directory services, virtual directories, SAML2, OAuth2, LDAP, and Active Directory authorization technologies. Proven experience writing technical design documentation, conducting code reviews, and working with version control systems such as Git . Ability to translate user and business needs into clear functional requirements and technical specifications, and to promote effective and efficient information sharing. Demonstrated ability to communicate complex Identity Management concepts-including system functions, capabilities, and processes-into business terms that are clear, accessible, and meaningful to non‑tec

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at Cornell University? Share your experience