Senior Infrastructure Operations Analyst – Identity Access Management

Location: Maryland, US

Apply

Requisition Number: 80824

Position Title:

External Description:

Role Summary

The Senior Infrastructure Operational Analyst within the Identity Access Management (IAM) team is responsible for safeguarding digital identities throughout the organization. This role involves designing, implementing, and managing access policies, user lifecycle processes (onboarding/offboarding), and authentication systems. Leveraging deep expertise in identity management and related security disciplines, the analyst leads critical initiatives, applies comprehensive analysis to deliver innovative solutions, and establishes identity management standards across the enterprise. As an individual contributor, this position collaborates closely with cross-functional partners to influence technical direction and support the implementation of IAM solutions.

Responsibilities

  • Define and manage user access roles, permissions, and entitlements in line with the principle of least privilege (Access Governance).
  • Automate user provisioning, de-provisioning, and role modifications (Identity Lifecycle Management).
  • Administer IAM platforms such as Entra ID, Azure AD, CyberArk, and directory services (System Administration).
  • Conduct access reviews, audit logs for unauthorized access, and ensure compliance with regulatory mandates such as PCI and GDPR (Security & Compliance).
  • Implement and support authentication protocols including Single Sign-On (SSO), Multi-Factor Authentication (MFA), SAML, and OAuth (Authentication Protocols).
  • Provide technical support for identity-related issues and assist incident response teams (Technical Support).
  • Configure, administer, operate, and support identity management technologies, integrating with networks, hardware, software, applications, and databases.
  • Deliver end-to-end identity management services across all technology domains, including backup, recovery, and disaster recovery strategies.
  • Support identity management technologies in complex environments, including data centers, cloud providers, hosted vendor solutions, and co-location facilities globally.

Day-to-Day Activities:

  • Identify, plan, and execute identity-driven projects.
  • Fulfill IAM-related service requests via ServiceNow.
  • Monitor the health of IAM systems and enhance observability across supported services.
  • Manage incidents and problems as they arise.
  • Implement system changes, supporting modernization and mitigating vulnerabilities (often during off-hours).
  • Collaborate with Enterprise Security to address and remediate findings from penetration tests and vulnerability scans.
  • Automate manual processes to improve service efficiency.
  • Plan and execute migrations of on-premises workloads to AWS as part of the Data Center Exit strategy.

Qualifications

Required:

  • Bachelor’s degree (or equivalent combination of education and relevant experience)
  •  5+ years of relevant work experience.
  • Comprehensive understanding of authentication protocols (SAML, Kerberos, OAuth, OpenID).
  • In-depth knowledge of AWS, cloud computing, and identity management integrations.
  • Expertise with F5 Access Policy Manager (APM).
  • Experience with IBM Security Access Manager (iSAM) and IBM LDAP Server
  • Advanced skills in managing Active Directory, Entra ID, DNS, and DHCP.
  • Intermediate proficiency in Windows and Linux operating systems, including integration with Active Directory domains.
  • Experience with MS Defender for environment security.
  • Proficiency in scripting languages such as PowerShell and/or Python.
  • Strong verbal and written communication skills.
  • Proven ability to work independently and collaboratively, with project management skills.
  • Exceptional attention to detail, accuracy, and timeliness.
  • Self-motivated and eager to contribute in a creative, highly collaborative corporate environment.
  • Ability to participate in off-hours work, including scheduled on-call rotations.

Preferred:

  • Knowledge of certificate management.
  • Experience with Centrify, Netbackup, Quest Active Roles, CyberArk, and Venafi.

FINRA Requirements

FINRA licenses are not required and will not be supported for this role.

Work Flexibility

This role is eligible for hybrid work, with up to three days per week from home.

City:

State:

Community / Marketing Title: Senior Infrastructure Operations Analyst – Identity Access Management

Company Profile:

Location_formattedLocationLong: Maryland, US

CountryEEOText_Description: Commitment to Diversity, Equity, and Inclusion: We strive for equity, equality, and opportunity for all associates. When we embrace the power of diversity and create an environment where people can bring their authentic and best selves to work, our firm is stronger, and we create greater value for our clients. Our commitment and inclusive programming aim to lift the experience for each associate and builds allies for our global associate community. We know that a sense of belonging is key not only to your success at the firm, but also to your ability to bring your best each day. Benefits: We invest in our people through a wide range of programs and benefits, including: • Competitive pay and bonuses as well as a generous retirement plan and employee stock purchase plan with matching contributions • Flexible and remote work opportunities • Health care benefits (medical, dental, vision) • Tuition assistance • Wellness programs (fitness reimbursement, Employee Assistance Program) Our policies may change as our working lives evolve. Yet, our commitment to supporting our associates’ well-being and addressing the needs of our clients, business, and communities is unwavering. T. Rowe Price is an equal opportunity employer and values diversity of thought, gender, and race. We believe our continued success depends upon the equal treatment of all associates and applicants for employment without discrimination on the basis of race, religion, creed, color, national origin, sex, gender, age, mental or physical disability, marital status, sexual orientation, gender identity or expression, citizenship status, military or veteran status, pregnancy, or any other classification protected by country, federal, state, or local law.

We’re driven by our purpose: To identify and actively invest in opportunities to help people thrive in an evolving world.

Find us on:     Facebook     X     YouTube     LinkedIn     Instagram

Do Not Sell or Share My Personal Information

Transparency in Coverage Disclosure

This website does not provide investment advice or recommendations. Nothing in this website shall be considered a solicitation to buy or an offer to sell a security, or any other product or service, to any person in any jurisdiction where such offer, solicitation, purchase, or sale would be unlawful under the laws of such jurisdiction.

T. ROWE PRICE, INVEST WITH CONFIDENCE, and the Bighorn Sheep design are, collectively and/or apart, trademarks of T. Rowe Price Group, Inc. All rights reserved.

© 2026 T. Rowe Price. All Rights Reserved.