Security Ops Engineer - Identity/IAM

Our Client, a Financial company, is looking for a Security Ops Engineer - Identity/IAM for their McLean, VA/Plano, TX/Hybrid/Remote location. Responsibilities: Analyze, enhance, and support the security posture of a highly complex, enterprise level Active Directory and Single Sign On environment in a hybrid on-premise and cloud hosted configuration. Active Directory SME (Domain Controller operations, GPO, AD Sites & Services, Ability to automate day to day tasks, user & group management, etc...) AD Management & security tools from Quest or Semperis -- including ARS, Change Auditor, password manager, AD recovery manager Radiant Logic VDS & Global Sync Management Manage enterprise cloud infrastructures in AWS Translate business needs into workable technology solutions that meet the needs of internal customers. Participate in or lead troubleshooting and incident resolution of complex, high severity incidents Develop automated solutions using scripts, pipelines, and cloud based server-less computing platforms Develop detailed architecture, standards, design, and implementation documentation Analyze the current Authentication Services environment to identify both technical and operational opportunities and develop continuous improvement action plans. Requirements: High School Diploma, GED or equivalent certification At least 4 years of experience working in cybersecurity or information technology At least 1 years of experience with Active Directory, AWS At least 1 years of experience with AD Management tool - Quest or Semperis At least 1 years of experience with Radiant Logic Virtual Directory (VDS) , Global Sync At least 1 years of experience with Cloud Infrastructure management Active Directory Domain Service 2016/2020 OS advanced - All things AD - replication, sites, GP, managing a domain, creating a DC, domain reduction etc... 5+ years of experience with securing and managing Active Directory at an enterprise level 5+ years working with Quest or Semperis products 5+ years working with Radiant Logic Virtual Directory, Global Sync 5+ years of experience with EC2, CFT, and AWS cloud infrastructures 5+ years of experience in Active Directory security 5+ years of experience developing complex scripts in PowerShell, VBScript, YAML, Python or other languages to develop automated solutions 3+ ADDS engineering /Ops senior experience 3+ PowerShell advanced 3+ Identity Lifecycle Management 3+ Splunk (querying, dashboards), New Relic (Identity Security, compliance NIST, Group Policy controls, Governance polices), Observability 3+ AWS, Azure CICD pipeline/DevOps, Git and version controls Jira, Confluence ServiceNow AWS Solutions Architect &/or MS SC-300 Certified Why Should You Apply? Health Benefits Referral Program Excellent growth and advancement opportunities As an equal opportunity employer, ICONMA provides an employment environment that supports and encourages the abilities of all persons without regard to race, color, religion, gender, sexual orientation, gender identity or express, ethnicity, national origin, age, disability status, political affiliation, genetics, marital status, protected veteran status, or any other characteristic protected by federal, state, or local laws.

Created: 2026-03-04