CACI International IncRemote
Junior Identity, Credential and Access Management (IAM) Engineer
Virginia, United States of America
Full Time
1 week ago
$98,500 - $206,800 USD
No Visa Sponsorship
Key skills
AzurePowerShellOAuthSAMLLDAPActive DirectoryCommunication
About this role
Role Overview
- Implement ICAM solutions to support PIV, Certificate Base Authentication, FIDO 2
- Engineer and build a secure and robust enterprise identify and access management solution
- Responsible for installing, customizing, configuration and supporting SailPoint Identity and Access Management tool and processes. This includes automated provisioning/deprovisioning to downstream applications.
- Facilitate and support ICAM integration to business applications and third parties, including Single Sign On enablement and management
- Collaborate with customer to define organization constructs/naming conventions and user access roles
- Assist with the development of process and workflows to support ICAM operation activities such as user onboarding, user lifecycle management and privilege access management
- Provide assistance with the integration of an Enterprise PKI solution.
- Engage with, and advise stakeholders within the business on Identity and Access Management best practices
- Define, improve, and support Active Directory, Azure Active Directory and Privileged Access Management within the organization
- Identify areas for delivery automated solutions (e.g. onboarding/offboarding) and maturation of existing processes by leveraging scripting
Requirements
- Ability to obtain Department of Homeland Security (DHS) Entry On Duty (EOD)
- Active EOD preferred
- BA/BS + 10 years of applicable experience; AA + 12 years’ applicable experience, MA + 7 or 16 years experience no degree
- Experience and knowledge in building out SailPoint IDAM solutions
- Experience in the Identity space with a background in Active Directory or similar LDAP stores
- Strong knowledge of HSPD12 and implementation of government smart card authentication
- Expert knowledge of authentication with SAML, OAuth, OpenID, WSO2, and Kerberos
- Prior experience in providing RBAC solutions for clouds solutions (e.g. Azure)
- Strong scripting and automation abilities including PowerShell
- Understanding of Microsoft Azure PIM, Access Review, Service Principles, Managed Identities and ABAC
- Strong knowledge of enterprise PKI integration with SCEP and ACME clients
- Experience creating technical architecture documentation
- Strong communication and written skills
Tech Stack
- Azure
Benefits
- healthcare
- wellness
- financial
- retirement
- family support
- continuing education
- time off benefits