IAM engineer with EntraID and On-Prem exp - local to MA - Hybrid role

Overview

Hybrid
$50 - $60
Contract - W2
Contract - 12 Month(s)

Skills

IAM specialist
EntraID
On-Prem Active Directory

Job Details

IAM engineer with On-Prem and EntraID exp

Briantree, MA / Boston , MA - Hybrid role

6-12 months

Include answers to these questions on the Candidate Bid Sheet:

How many years of direct Identity Access Management experience does the candidate have? How many years of direct EntraID experience does the candidate have?

How many years of direct On-Prem Active Directory experience does the candidate have? Please list any relevant professional certifications the candidate has.

The Identity and Access Management (IAM) Engineer will be responsible for implementing, managing, and maintaining the identity and access management infrastructure for the Massachusetts State Lottery Commission. This role will focus on ensuring secure, efficient, and scalable access to digital resources while supporting business objectives and maintaining compliance with security standards.

The IAM Engineer will work with Microsoft Entra ID (Azure AD), Active Directory, and Single Sign-On (SSO) technologies to enable secure user access and enforce the principle of least privilege across various platforms and applications. The ideal candidate will have a strong technical background in identity and access management and be able to support and troubleshoot complex IAM-related issues.

ESSENTIAL FUNCTIONS

  • IAM Implementation and Administration:
    • Assist in designing, configuring, and managing the IAM framework using Microsoft Entra ID (Azure AD), Active Directory, and SSO technologies.
    • Ensure alignment of IAM policies and processes with business and security requirements.

  • Active Directory and Entra ID Management:
    • Support the administration and maintenance of Active Directory forests, domains, trusts, and replication models.
    • Manage and optimize Microsoft Entra ID services, including MFA, conditional access, and identity protection.
    • Ensure high availability, scalability, and security of directory services.

  • SSO Configuration and Support:
    • Configure and support SSO solutions using protocols like SAML, OAuth, and OpenID Connect.
    • Integrate SSO with cloud and on-premises applications to provide seamless authentication and secure access.

  • Security and Compliance:
    • Enforce security best practices, including role-based access control (RBAC), access policies, and identity governance.
    • Monitor and ensure compliance with relevant regulatory standards, such as PCI, NIST, and 201 CMR 17.
    • Conduct regular risk assessments, security reviews, and audits to ensure a secure IAM environment.

  • Identity Lifecycle Management:
    • Manage user provisioning, de-provisioning, and access reviews across systems and applications.
    • Automate and improve IAM workflows to enhance efficiency and security.

  • Technical Support and Collaboration:
    • Troubleshoot and resolve IAM-related issues, including SSO failures and directory integration issues.
    • Work closely with cybersecurity, IT, and application teams to ensure seamless identity and access management.
    • Provide technical guidance to other teams on IAM best practices.

  • Documentation and Reporting:
    • Develop and maintain technical documentation for IAM configurations and processes.
    • Report IAM performance and issues to senior management and stakeholders.

REQUIREMENTS

  • Must be able to travel to Lottery offices statewide and/or other locations, as required.
  • Ability to provide on-call support for IAM issues during critical events.

PREFERRED QUALIFICATIONS

  • 5+ years of experience in Identity and Access Management (IAM) with a focus on Microsoft Entra ID (Azure AD), Active Directory, and SSO integration.
  • Experience with SSO technologies including SAML, OAuth, and OpenID Connect.
  • Strong understanding of Active Directory architecture, including forests, domains, trusts, and replication.
  • Hands-on experience with MFA, conditional access policies, and identity protection.
  • Familiarity with regulatory compliance frameworks such as PCI, 201 CMR 17, and NIST.
  • Experience in identity lifecycle management, including provisioning, de-provisioning, and access reviews.
  • Strong problem-solving and troubleshooting skills with IAM systems.
  • Relevant certifications such as Microsoft Certified: Azure Solutions Architect Expert, CISSP, or Certified Identity and Access Manager (CIAM) preferred.

Sateesh

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.