Senior Identity and Access Management Engineer

Senior Identity and Access Management EngineerContract role: 6+ month, 100% remote. Apply via Dice. This position is with Kforce Technology Staffing for a client in the cybersecurity space.OverviewThe Senior Identity and Access Management (IAM) Engineer is a member of the Client's Cybersecurity team and is responsible for designing, developing, and implementing high-quality IAM solutions that align with the organization's cybersecurity strategy. The candidate will collaborate with cross-functional teams to ensure IAM systems are robust, scalable, and compliant with industry best practices.The candidate must have a strong background in technology, security and metrics, and must be highly adaptive. The candidate should be highly organized and analytical and is expected to partner and mentor effectively with other teams on an ongoing basis.ResponsibilitiesDesign and architect IAM frameworks to support secure access across hybrid environmentsAutomate IAM processes to improve operational efficiency and reduce manual interventionLead the integration of IAM solutions with existing systems, ensuring compatibility and compliance with security standardsImplement role-based access control (RBAC), Least-Privilege, and Zero-Trust principlesContribute to the development and maintenance of IAM solutions - PingOne SSO, Saviynt Enterprise Identity Cloud, Entra IDMonitor and enhance IAM security posture through continuous improvement and threat mitigationImplement and support Identity Threat Detection and Response solutions and practicesEvaluate vendor IAM solutions and document their applicability and valueCreate and maintain comprehensive documentation for IAM processes and ensure compliance with regulatory requirementsResearch, design, and advocate for relevant IAM architectures and solutions supporting security requirements of the enterprise, its customers, business partners and vendorsRequirementsBachelor's or Master's degree in Computer Science, Information Systems or other related field, or equivalent work experienceProfessional security certifications, such as ISC(2) CISSP, IMI Certified Identity Management Professional (CIMP), CIAM or similarHands-on experience delivering enterprise-level IAM solutions and controlsExpertise in authentication and authorization standards, including FIDO2, SAML, OAuth, and LDAPExtensive hands-on experience implementing and supporting one or more Single Sign-On solutions (e.g., PingOne, Entra ID)Extensive hands-on experience implementing and supporting one or more Identity Governance and Administration solutions (e.g., Saviynt, SailPoint)Experience implementing and managing Privileged Access Management (PAM)Experience in migrating legacy authentication standards to modern onesExperience with Active Directory, scripting/programming languages (e.g., Python, Ruby, PowerShell)Familiarity with SAP IAM, certificate management and PKI servicesExtensive familiarity with NIST and ISO security practice frameworks, data privacy regulationsStrong problem-solving skills and the ability to communicate effectively with technical and non-technical stakeholdersStrong conceptual thinking and communication skills - the ability to translate complex business and technical requirements into effective and comprehensible solutionsNice to haveFamiliarity with architecture methodologies (e.g., SABSA, TOGAF, Zachman Framework)Demonstrable experience creating, securing, and managing Cloud infrastructures (e.g., AWS, Azure, OpenStack)Professional experience in application or infrastructure penetration testingCompensation and BenefitsThe pay range is the lowest to highest compensation we reasonably in good faith believe we would pay at posting for this role. We may ultimately pay more or less than this range. Employee pay is based on factors like relevant education, qualifications, certifications, experience, skills, seniority, location, performance, union contract and business needs. This range may be modified in the future. We offer comprehensive benefits including medical/dental/vision insurance, HSA, FSA, 401(k), and life, disability & ADD insurance to eligible employees. Salaried personnel receive paid time off. Hourly employees are not eligible for paid time off unless required by law. Hourly employees on a Service Contract Act project are eligible for paid sick leave.Note: Pay is not considered compensation until it is earned, vested and determinable. The amount and availability of any compensation remains in Kforce's sole discretion unless and until paid and may be modified in its discretion consistent with the law. This job is not eligible for bonuses, incentives or commissions.Equal OpportunityKforce is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.By clicking Apply Today you agree to receive calls, AI-generated calls, text messages or emails from Kforce and its affiliates, and service providers. If you choose to communicate with Kforce via text messaging, message and data rates may apply. You may cease communicating via text by replying STOP. #J-18808-Ljbffr

Created: 2025-10-01