Identity and Access Management Architect, Senior

The Challenge:

Everyone knows security needs to be “baked in” to a system architecture, but you actually know how to bake it in. You can identify and implement ways to harden systems and reduce their attack surface. What if you could use your cyber skills to design and build secure systems for the US government? We’re looking for an engineer who can help create solutions for that will stand up to even the most advanced cyber threats.

As an identity and privilege access management engineer on our project, you’ll identify the right mix of tools and techniques to translate your customer’s needs and future goals into a plan that will enable secure and effective solutions. You’ll coordinate work with in house teams to identify the right mix of tools and techniques to translate your customer’s IT needs and future goals into a plan that will enable secure and effective solutions. We need to come up with the best solution, so you’ll investigate new techniques, break free from the legacy model, and go where the industry is going. You’ll lead the team through a critical approach to network design, providing alternatives and customizing solutions, to maintain a balance of security and mission needs. This is a chance to make a difference in the security of government networks and systems. Your technical expertise will be vital as you help customers overcome their most difficult challenges by integrating secure practices like identity and access management (IAM) frameworks. You’ll be able to broaden your skillset into areas like articulating and authoring multiple findings, recommendations, and other artifacts, including interfacing with key stakeholders to implement tailored IAM solutions while building piece of mind in a critical infrastructure. Join our team, as we improve government networks and systems through cybersecurity.

Empower change with us.

You Have:

-8+ years of experience with supporting access management solutions, including user privileges management, user credential management, and user security behavior monitoring

-5+ years of experience with Commercial off the Shelf (COTS) IAM tools, including Cyberark, Sailpoint, or CA PAM

-Experience with implementing identity and access management tools

-Experience with requirements, design, implementation, integration, testing, and change management

-Experience in leading technical and managerial sessions with clients

-Knowledge of the following areas: Active Directory or LDAP design and configuration, PKI X509, SSO across multiple domains, two factor authentication (2FA) via personal identity verification (PIV) or common access card (CAC), or scripting and coding

-Ability to obtain a security clearance

-BA or BS degree

Nice to Have:

-Experience with SQL database administration or management

-Experience with a security information and event management (SIEM) tool, including Splunk or the ELK stack

-Experience with authoring cybersecurity guidance, including policies, strategies, and whitepapers

-Experience with supporting IAM in a Cloud environment, including Azure or Amazon Web Services (AWS)

-Experience with implementing public key infrastructure (PKI) and PIV standards

-Experience with HSPD-12, FIPS 201-2, FICAM, OMB 11-11, FedRAMP, PCI, FISMA, or NIST 800-53, 800-63, 800-79-2, or 800-157 policies and standards a plus

-Knowledge of HTTP, XML, REST, or JSON a plus

-MS degree in IT, Information Systems, or CS

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information.

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, veteran status, or other protected characteristic—to fearlessly drive change.


Not ready to apply? Join our talent community and sign up for job alerts.