Lead Consultant (Identity Access Management Engineer)

Job#: 2087078

Job Description:

LEAD CONSULTANT (IDENTITY ACCESS MANAGEMENT ENGINEER)

WHO WE ARE

Apex Systems is a leading global technology services firm that incorporates industry insights and experience to deliver solutions that fulfill our clients' digital visions. We provide a continuum of services, including strategy and enablement, innovation and productivity, and technology foundations to drive better results and bring more value to our clients. Apex transforms our customers with modern enterprise solutions tailored to the industries we serve. Apex has a presence in over 70 markets across North America, Europe, and India. Apex is a part of the Commercial Segment of ASGN Incorporated (NYSE: ASGN). To learn more, visit .

At Apex Systems, we prioritize professional development, work-life balance, and fostering a collaborative culture. We value our teams well-being and recognize the importance of building strong relationships. Thats why we organize regular team-building events and philanthropic days to give back to the community - fostering a sense of purpose and fulfillment among our team.

Join us for career advancement, innovative solutions, and a supportive environment focused on your success.

JOB DESCRIPTION

Apex Systems is seeking a seasoned Identity & Access Management (IAM) Engineer to join our cybersecurity consulting practice. This role offers the opportunity to collaborate on enterprise identity initiatives across diverse Fortune 500 clients. You will design comprehensive IAM solutions and implement emerging Zero Trust technologies. As both a technical engineer and strategic advisor, you will collaborate with client stakeholders to design and implement identity programs and tools that align business objectives and regulatory requirements.

As a Lead IAM Consultant, you will lead cross-functional project teams, mentor junior engineers, and provide technical expertise for Apexs sales initiatives. This position provides exposure to innovative identity technologies and complex technical challenges across multiple industries. The ideal candidate combines deep technical expertise in enterprise identity platforms with strong consulting skills and a passion for solving complex security challenges.

RESPONSIBLITIES

• Architect end-to-end identity projects including requirements gathering, solution design, development, implementation, testing, and deployment with primary focus on identity platforms (e.g., SailPoint IdentityNow, Security Cloud/IdentityIQ and Saviynt).
• Design and configure comprehensive identity governance and administration (IGA) processes including access request workflows, automated provisioning/de-provisioning, role management, access certification campaigns, and policy enforcement.
• Configure and customize identity infrastructure and environments, develop custom connectors and APIs, integrate with cloud platforms (e.g., Azure, AWS), identity providers (e.g., Microsoft Entra, Okta), PAM solutions (e.g., CyberArk), and establish connectivity with enterprise applications and authoritative sources.
• Lead assessments of existing identity infrastructure, identify security gaps and vulnerabilities, and recommend strategies aligned with business objectives and regulatory requirements.
• Lead cross-functional teams, including security, IT operations, and application teams, to ensure seamless integration of identity solutions and translate business requirements into technical implementations.
• Develop detailed implementation guides, configuration documentation, test plans, runbooks, and establish metrics that provide visibility into identity ecosystem performance and efficiency.
• Support technical aspects of pre-sales activities, assist with solution scoping, and contribute technical expertise to proposal development and client presentations.
• Provide guidance and mentorship to junior team members and maintain awareness of emerging trends and technologies in the identity space.

JOB REQUIREMENTS

• 6+ years of experience in enterprise identity and access management with demonstrated expertise in access governance, identity lifecycle management, and compliance frameworks.
• Direct experience with IGA platforms including (e.g., SailPoint Identity Security Cloud/ IdentityIQ, Saviynt) with ability to design, configure, and customize workflows, rules, and connectors.
• Experience integrating or configuring identity providers such as Microsoft Entra, Okta, or similar solutions in enterprise environments.
• Integration experience with privileged access management (PAM) tools such as CyberArk, HashiCorp Vault, or Delinea.
• Direct experience with cloud identity services and APIs in Azure, AWS, or Google Cloud Platform environments.
• Experience with authentication technologies and protocols including SSO, SAML, OIDC, OAuth, LDAP, and SCIM implementations.
• Proven history of developing governance documentation, technical procedures, and compliance artifacts with consideration of security controls and regulatory frameworks.
• Experience collaborating with cross-functional teams to gather requirements, assess system impacts, and ensure successful identity platform deployments.
• Strong background in developing and implementing role-based access control (RBAC) models, access policies, and separation of duties (SoD) frameworks.
• Experience working with technical teams and contributing to project deliverables with ability to communicate effectively with both technical and non-technical stakeholders.
• SailPoint Professional certification strongly preferred, other certifications (e.g., Saviynt, Microsoft Entra, CyberArk, Okta, etc.) preferred.
• Deep understanding of identity principles, concepts, and best practices including access control, authentication, credential verification, machine identity, and provisioning.
• Strong knowledge of authentication technologies, standards, and protocols such as SSO, OIDC, SAML, LDAP, OAuth, and SCIM.
• Direct experience with SailPoint configuration including connector development and customization (JDBC, LDAP, Active Directory, cloud connectors) and application onboarding processes.
• Experience with rule writing (identity, correlation, transformation) and workflow design for approval processes and provisioning.
• Experience with programming languages such as Python, PowerShell, or BeanShell and database technologies (Oracle, MSSQL, MySQL) for connector development and data integration.
• Proficiency with API integration (REST/SOAP) and data transformation and mapping between systems.
• Experience with various integration methods including flat files and database connectivity for onboarding authoritative sources and applications.
• Ability to lead to identity infrastructure assessments, gap analyses, and strategic planning initiatives with increasing responsibility based on experience level.
• Excellent written and verbal communication skills with demonstrated ability to clearly explain technical concepts to non-technical audiences.
• Strong critical thinking skills with ability to analyze complex issues and implement effective solutions.
• Highly motivated, consultative, problem-solving mindset with ability to influence others, build relationships, and manage conflicts.

OUR COMPREHENSIVE BENEFITS:

• Competitive Salary
• Health, Dental and Vision Insurance
• Health Savings Accounts (HSA) with Employer Contribution
• Flexible Spending Accounts
• Long and Short-Term Disability
• Life Insurance
• Voluntary Benefits
• Employee Assistance Program
• Paid Parental Leave
• Wellness Incentives
• Vacation and Holiday Pay
• 401(k) Retirement Plan with Employer Match
• Employee Stock Purchase
• Training and Advancement Opportunities
• Tuition Reimbursement
• Birthdays Off
• Philanthropic Opportunities
• Referral Program
• Partial Gym Membership Paid
• Team Building Events
• Discount Programs

EEO Employer

Apex Systems is an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law. Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation in using our website for a search or application, please contact our Employee Services Department at or .

Apex Systems is a world-class IT services company that serves thousands of clients across the globe. When you join Apex, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package. Our commitment to excellence is reflected in many awards, including ClearlyRated's Best of Staffing in Talent Satisfaction in the United States and Great Place to Work in the United Kingdom and Mexico.

Apex Benefits Overview: Apex offers a range of supplemental benefits, including medical, dental, vision, life, disability, and other insurance plans that offer an optional layer of financial protection. We offer an ESPP (employee stock purchase program) and a 401K program which allows you to contribute typically within 30 days of starting, with a company match after 12 months of tenure. Apex also offers a HSA (Health Savings Account on the HDHP plan), a SupportLinc Employee Assistance Program (EAP) with up to 8 free counseling sessions, a corporate discount savings program and other discounts. In terms of professional development, Apex hosts an on-demand training program, provides access to certification prep and a library of technical and leadership courses/books/seminars once you have 6+ months of tenure, and certification discounts and other perks to associations that include CompTIA and IIBA. Apex has a dedicated customer service team for our Consultants that can address questions around benefits and other resources, as well as a certified Career Coach. You can access a full list of our benefits, programs, support teams and resources within our 'Welcome Packet' as well, which an Apex team member can provide.