Share this Job

At Gentherm, we say, “It’s about the person.” We’re with you on a cold winter day when you turn on your heated seat and steering wheel or helping manage patient body temperature in the operating room, recovering room or intensive care units. We take a human approach with everything we do.


As the global market leader of innovative thermal management and pneumatic comfort technologies for the automotive industry we embrace the opportunity to create and deliver extraordinary solutions that make meaningful differences in everyday life.  We do this by improving health, wellness, comfort and energy efficiency. 


We embrace an entrepreneurial spirit and combine that with our global leadership to deliver results. Working at Gentherm provides you the opportunity to not only shape the future of the automotive and medical industries, but also influence your career throughout the company. You will be engaged, challenged and inspired by our team to deliver leading thermal technologies that positively impact lives around the world.

Senior IT Engineer, Identity and Access Management (IAM)




In this position, you will leverage IAM methodology to help manage employee, contractor, customer & supplier access to corporate resources and streamline the existing IAM process. You will provide guidance and support executing the design and implementation of the Identity and Access Management (IAM) roadmap and Role-Based Access Controls, IAM, SSO, and Attribute-Based Access Controls for corporate identities in a hybrid environment.



  • Implementing, integrating, and supporting MFA (Okta) cloud technologies into our IAM environment and on-prem and cloud applications.
  • Contribute to the development of our enterprise identity and access management strategy and RBAC. Develop and strengthen IAM procedures around AD, cloud computing user access, user identity, and SSO.
  • Build, design test workflows, including connecting applications, import, and edit data
  • Design Portal Identity management with Okta, Integrate and federate authentication with 3rd party portals
  • Design Dynamic access grants, granular link between identities and entitlements for better access identification
  • Analyze user access roles and processes to independently assess compliance with defined standards.
  • Partner with application development teams to integrate with authentication services and implement best practices for authentication and authorization requirements for internal and external applications
  • Manage user Role for Access Control, Access Policy, and Privileged roles
  • Design delegation of access governance for specific catalogs to non-IT admins and Implement industry-standard IAM and IGA concepts



  • Ensure that data ownership, data custodians and responsibilities are established for each authorization boundary, including accountability, access rights, and special handling.
  • Design and configure risk scoring for entitlements and evaluate risk
  • Automate the cleanup of excessive and unnecessary entitlements for policy enforcement.
  • Work with application owners to determine the best access policy for their application, including admin accounts
  • Responsible for aiding in developing, deploying, and ensuring full adoption of IAM process in Okta, AD, SNOW, and other enterprise applications
  • The information is not intended to be an all-inclusive list of the duties and responsibilities of the job, nor are they intended to be an all-inclusive list of the skills and abilities required to do the job. Duties and responsibilities may change at any time.



  • Requires a University Degree or equivalent experience and minimum of 6 years prior relevant experience working for an enterprise company.
  • Experience with MFA, SSO, Kerberos, SAML, OIDC, OAuth, Privileged Access Management (PAM)
  • Experience with SCIM connectors, Okta Workflows and Life cycle management
  • Experience in how legacy and web-based systems interfaces, Application Programmable Interfaces (APIs).
  • Strong knowledge of LDAP, Active Directory, SAML, SPML, SSO, RBAC
  • Proficient in all areas of active directory
  • Demonstrated experience providing excellent customer service in a professional environment



  • 8+ years' experience and a successful track record of implementing RBAC with AD and Okta integration.
  • 7+ years of overall IAM/software development, solution design and technical architecture experience. In-depth experience with LCM and driving application architecture design
  • IT service availability and uptime experience/knowledge along with an understanding of ITIL/ITSM processes
  • Preferred CISSP, CIAM, I&AM vendor or industry certification such as Okta, CSP technical certifications (Azure, AWS, GCP)
  • Knowledge of software development security and cryptography.
  • Knowledge of Java EE, Ruby, Java, C, ksh/bash shell scripts, Python or Perl and other development frameworks.
  • Familiar with SOX audit requirements



TRAVEL: Up to 10%, local.




  • Deliver Results
    • Understand the mission and output of your team; set SMART objectives and deliver
  • Drive Change
    • Focus on agility and commitment to continuous improvement; Understand and act on internal and external drivers of change
  • Build Capability
    • Foster a culture of learning and development; Support individual growth through continuous feedback to achieve personal and professional goals
  • Cultivate Innovation
    • Openly embrace, create, implement and support new and innovative ideas, processes and technology that deliver business results





All positions in our office require interaction with people and technology while either standing or sitting. In order to best serve our customers, internal and external, all associates must be able to communicate face-to-face and on the phone with or without reasonable accommodation. Gentherm is committed to compliance with its obligations under all applicable state and federal laws prohibiting employment discrimination. In keeping with this commitment, it attempts to reasonably accommodate applicants and employees in accordance with the requirements of the disability discrimination laws. It also invites individuals with disabilities to participate in a good faith, interactive process to identify reasonable accommodations that can be made without imposing an undue hardship. 

Gentherm is an Equal Opportunity Employer.  All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, national origin, genetic information, sexual orientation, gender identity, disability or protected veteran status.

Job Req ID:  7942
Country/Region:  US
Published:  Jan 31, 2023

Nearest Major Market: Detroit

Job Segment: Thermal Engineering, Information Security, Cloud, Testing, Corporate Security, Engineering, Technology, Security