Yesterday
Top Secret
Senior Level Career (10+ yrs experience)
IT - Support
Lorton, VA (On-Site/Office)
IAM Engineer
Location: Lorton, VA
Duration: ~6 years
Clearance: Top Secret w/ SCI Eligibility
Rate: $105-$125/hr (1099 or C2C Only)
This role will work closely with various engineers and architects to build Identity integrations with business applications. Solid understanding needed of Active Directory architecture, Sites and Services and management, creating, administering, and troubleshooting Group Policies (GPOs), Active Directory Federation Services (ADFS), SAML, SSO (Okta, SailPoint IIQ, IdentityNow and etc.), PKI, Networking DNS, DHCP, Authentication, Kerberos, NTLM. The candidate will engineer solutions that enable growth of the Identity Suite and provide support for its various integrations. They will provide strong leadership and project management skills as well as problem resolution and break fix support for the IAM tools portfolio.
Key Responsibilities:
Requirement Gathering & Solution Design: Extensively gather requirements from users, experts, and key personnel to understand the current functionality of existing IAM systems and design tailored solutions that meet business and security needs.
IAM Solution Implementation: Implement provisioning features using SailPoint IIQ and various connectors, including LDAP, Active Directory (AD), and Workday, ensuring seamless integration with client systems and applications.
SSO & MFA Integration: Implement Multi-Factor Authentication (MFA), Single Sign-On (SSO) solutions, and other identity management features, ensuring security across on-premises environments.
IdentityNow Deployment: Configure and deploy SailPoint IdentityNow in client environments, ensuring compliance with client requirements for access certification, automated provisioning, and governance.
Privileged Access Management (PAM): Implement PAM services through SailPoint to manage privileged accounts and ensure robust security practices.
Access Certification & Governance: Design and implement access certification processes, including application owner, entitlement owner, and advanced certifications to maintain compliance.
Lifecycle Management (LCM): Create and manage LCM workflows, including the onboarding, offboarding, and role changes of users, as well as ensuring entitlement management and user account provisioning.
SailPoint & Okta Integration: Integrate and deploy SailPoint Identity IQ and IdentityNow products with third-party applications such as Okta, ServiceNow, and Active Directory.
Implement Okta AD agents and integrate AD groups into Okta for automated user group membership via Group Rules.
Configure SailPoint connectors for various applications, ensuring seamless communication and synchronization with target systems.
Custom Development: Develop custom solutions to extend SailPoint and Okta capabilities, including designing and implementing custom workflows, rules, policies, and provisioning.
Security Monitoring & Compliance: Monitor user access for suspicious activity in real-time using appropriate tools to prevent unauthorized access and ensure compliance with industry standards and client policies.
Audit & Reporting: Design and implement Windows PowerShell scripts to meet client audit and account cleanup needs, using SQL and SailPoint for managing stale and inactive accounts.
Collaboration & Support: Work with application teams to integrate IAM solutions like Okta for SSO, MFA, and automated provisioning. Provide ongoing support, troubleshooting, and improvements to IAM systems post-deployment.
Documentation & Training: Maintain clear technical documentation of system configurations, workflows, and processes. Provide training and knowledge transfer to other team members and clients.
Qualifications:
Education: Bachelor's degree in Information Technology, Computer Science, or a related field (Master’s degree preferred).
Experience:
4+ years of experience in Identity and Access Management (IAM), with hands-on expertise in deploying and managing SailPoint IIQ, IdentityNow, Okta, and related IAM technologies.
Strong experience with SailPoint connectors (LDAP, AD, Workday) and Okta integrations.
Deep understanding of SSO, MFA, and identity federation protocols, including SAML 2.0, OAuth 2.0, OpenID Connect (OIDC), and WS-Federation.
Proven experience in provisioning, entitlement management, and user lifecycle management within SailPoint and Okta.
Experience with enterprise applications like ServiceNow, SAP, and Active Directory.
Technical Skills:
Proficiency in scripting and automation using PowerShell, SQL, Java, and BeanShell to implement custom solutions.
In-depth knowledge of Active Directory (AD), ServiceNow, and other identity management tools.
Familiarity with governance compliance and role-based access control (RBAC) policies.
Strong knowledge of identity governance concepts like Access Certification, Role Mining, and Segregation of Duties (SoD).
Certifications: Preferred certifications include CISSP, SailPoint Certified IdentityNow Engineer, Okta Certified Professional, or equivalent IAM certifications.
Problem-Solving & Communication: Strong analytical and troubleshooting skills, with the ability to communicate complex technical information to both technical and non-technical stakeholders.
Project Management: Experience in managing IAM projects, from requirement gathering to implementation, with a focus on meeting deadlines and client needs.
Location: Lorton, VA
Duration: ~6 years
Clearance: Top Secret w/ SCI Eligibility
Rate: $105-$125/hr (1099 or C2C Only)
This role will work closely with various engineers and architects to build Identity integrations with business applications. Solid understanding needed of Active Directory architecture, Sites and Services and management, creating, administering, and troubleshooting Group Policies (GPOs), Active Directory Federation Services (ADFS), SAML, SSO (Okta, SailPoint IIQ, IdentityNow and etc.), PKI, Networking DNS, DHCP, Authentication, Kerberos, NTLM. The candidate will engineer solutions that enable growth of the Identity Suite and provide support for its various integrations. They will provide strong leadership and project management skills as well as problem resolution and break fix support for the IAM tools portfolio.
Key Responsibilities:
Requirement Gathering & Solution Design: Extensively gather requirements from users, experts, and key personnel to understand the current functionality of existing IAM systems and design tailored solutions that meet business and security needs.
IAM Solution Implementation: Implement provisioning features using SailPoint IIQ and various connectors, including LDAP, Active Directory (AD), and Workday, ensuring seamless integration with client systems and applications.
SSO & MFA Integration: Implement Multi-Factor Authentication (MFA), Single Sign-On (SSO) solutions, and other identity management features, ensuring security across on-premises environments.
IdentityNow Deployment: Configure and deploy SailPoint IdentityNow in client environments, ensuring compliance with client requirements for access certification, automated provisioning, and governance.
Privileged Access Management (PAM): Implement PAM services through SailPoint to manage privileged accounts and ensure robust security practices.
Access Certification & Governance: Design and implement access certification processes, including application owner, entitlement owner, and advanced certifications to maintain compliance.
Lifecycle Management (LCM): Create and manage LCM workflows, including the onboarding, offboarding, and role changes of users, as well as ensuring entitlement management and user account provisioning.
SailPoint & Okta Integration: Integrate and deploy SailPoint Identity IQ and IdentityNow products with third-party applications such as Okta, ServiceNow, and Active Directory.
Implement Okta AD agents and integrate AD groups into Okta for automated user group membership via Group Rules.
Configure SailPoint connectors for various applications, ensuring seamless communication and synchronization with target systems.
Custom Development: Develop custom solutions to extend SailPoint and Okta capabilities, including designing and implementing custom workflows, rules, policies, and provisioning.
Security Monitoring & Compliance: Monitor user access for suspicious activity in real-time using appropriate tools to prevent unauthorized access and ensure compliance with industry standards and client policies.
Audit & Reporting: Design and implement Windows PowerShell scripts to meet client audit and account cleanup needs, using SQL and SailPoint for managing stale and inactive accounts.
Collaboration & Support: Work with application teams to integrate IAM solutions like Okta for SSO, MFA, and automated provisioning. Provide ongoing support, troubleshooting, and improvements to IAM systems post-deployment.
Documentation & Training: Maintain clear technical documentation of system configurations, workflows, and processes. Provide training and knowledge transfer to other team members and clients.
Qualifications:
Education: Bachelor's degree in Information Technology, Computer Science, or a related field (Master’s degree preferred).
Experience:
4+ years of experience in Identity and Access Management (IAM), with hands-on expertise in deploying and managing SailPoint IIQ, IdentityNow, Okta, and related IAM technologies.
Strong experience with SailPoint connectors (LDAP, AD, Workday) and Okta integrations.
Deep understanding of SSO, MFA, and identity federation protocols, including SAML 2.0, OAuth 2.0, OpenID Connect (OIDC), and WS-Federation.
Proven experience in provisioning, entitlement management, and user lifecycle management within SailPoint and Okta.
Experience with enterprise applications like ServiceNow, SAP, and Active Directory.
Technical Skills:
Proficiency in scripting and automation using PowerShell, SQL, Java, and BeanShell to implement custom solutions.
In-depth knowledge of Active Directory (AD), ServiceNow, and other identity management tools.
Familiarity with governance compliance and role-based access control (RBAC) policies.
Strong knowledge of identity governance concepts like Access Certification, Role Mining, and Segregation of Duties (SoD).
Certifications: Preferred certifications include CISSP, SailPoint Certified IdentityNow Engineer, Okta Certified Professional, or equivalent IAM certifications.
Problem-Solving & Communication: Strong analytical and troubleshooting skills, with the ability to communicate complex technical information to both technical and non-technical stakeholders.
Project Management: Experience in managing IAM projects, from requirement gathering to implementation, with a focus on meeting deadlines and client needs.
group id: 10507520
