TS/SCI Sr. Identity Management Engineer (54399)

• Identity Lifecycle Management: Design and maintain automated "Joiner-Mover-Leaver" workflows within SailPoint to ensure precise user provisioning and de-provisioning.
• Hybrid Identity Operations: Manage and synchronize identities between on-premises environments and the cloud using Azure AD Connect and Microsoft Entra ID.
• Federated Access: Configure and troubleshoot Single Sign-On (SSO) and federation services using PingFederate and Active Directory Federation Services (ADFS) to enable secure access across disparate systems.
• Virtual Directory Management: Implement and maintain Radiant Logic (MUR) to aggregate and correlate identity data from multiple authoritative sources for a unified global profile.
• Zero Trust Policy Enforcement: Develop conditional access policies and risk-adaptive access controls within the Entra ID ecosystem to align with DoW Zero Trust Strategy.
• Compliance & Security: Ensure all IAM configurations meet DISA STIG requirements and follow the DoW Enterprise ICAM Reference Design.

• Min 12 years with HS degree, 10 years with AS/AA degree, 8 years with BS/BA, 6 years with MS/MA
• DoD 8570 IAT II Certification
• DoD TS/SCI clearance
• 3-8 years in enterprise-level identity management
• Hands-on experience with PingFederate, SailPoint, and Radiant Logic
• Proficiency in managing Active Directory, ADFS, and Microsoft Entra ID, * Microsoft Certified: Identity and Access Administrator Associate (SC-300): Validates expertise in Microsoft Entra ID and identity governance
• Ping Identity Certified Professional: Specifically for PingFederate or PingOne specialists
• Certified Identity and Access Manager (CIAM): A vendor-neutral certification covering the strategic lifecycle of identity management
• Radiant Logic Training: While they don't have a broad public exam like Microsoft, completion of their specialized training tracks is highly valued for this role

Benefit packages for this role will start on the 1st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.