ISD Engineer III/IV (Customer Identity Access Management)

$87,800 - $185,200

Full Time


    ITAccessWebChange ManagementSecurityApplicationsUNIXLinuxCISSP

    Job Description


    You have goals, dreams, hobbies and things you're passionate about.

    What's Important to You Is Important to Us
    We're looking for people who not only want to do meaningful, challenging work, keep their skills sharp and move ahead, but who also take time for the things that matter to them-friends, family and passions. And we're looking for team members who are passionate about our mission-making a difference in military members' and their families' lives. Together, we can make it happen.

    Don't take our word for it.

    • Military Times 2021 Best for Vets Employers
    • WayUp Top 100 Internship Programs
    • Forbes® 2022 The Best Employers for New Grads
    • Forbes® America's Best Employers
    • Newsweek Top 100 Most Loved Workplaces
    • Fortune Best Workplaces for Women
    • Fortune 100 Best Companies to Work For®
    • Computerworld® Best Places to Work in IT

    Basic Purpose

    To research, evaluate, design, implement, and maintain system and product solutions, applying knowledge of engineering principles related to Client Identity Access, Authorization, and Authentication (IAM). To provide technical direction and engineering support for projects and infrastructure build for IAM solutions. Develop and maintain a working knowledge of evolving IT engineering industry technologies/competition, vendors, concepts, and trends directly related to Identity, Authorization, and Authentication for business to client (E.g., Navy Federal Online Banking and other channels).


    • Ability to administer and provide support for IAM applications such as ForgeRock, SailPoint, RSA, Daon, Ping, Azure, SiteMinder components policy servers, databases, and directories
    • Experience in setup, configuration, and management of Policy servers, Web agents, Secure Proxy Server, and Federation
    • Develop and support federations with internal systems and external organizations
    • Implement changes through multiple environments utilizing the Change Management process
    • Apply engineering principles into the design and enhancement of new and existing systems
    • Provide input and make budgetary recommendations regarding staffing and equipment Document new system components, or modifications to existing components
    • Ensure the security and integrity of system and product solutions, including compliance with Navy Federal, industry engineering, and Information Security principles and practices
    • Present clear, organized, and concise information to all audiences through a variety of media to enable effective business decisions
    • Perform engineering tasks and assignments in support of business needs
    • Perform engineering technology research, procurement, deployment, and configuration for new and modified systems
    • Perform other duties as assigned


    • Extensive experience that demonstrates a strong knowledge and skill of information security technology focusing on IAM Applications (e.g., ForgeRock, SailPoint, RSA, Daon, Ping, Azure, SiteMinder, etc.)
    • Extensive experience deploying ForgeRock on Azure Kubernetes Service (AKS)
    • Extensive experience supporting multiple IAM environments. Must be confident implementing, configuring, managing, and deploying IAM products
    • Extensive experience and expert knowledge of information security analysis and design techniques
    • Expert knowledge of data security practices and procedures, including systems analysis, authentication technologies, and access controls. Priorities will be given to those with expert knowledge and skill in UNIX/Linux system administration and scripting, Identity Federation, SAML, JBoss, and Directory Services/LDAP.
    • Extensive experience in project planning and resource management
    • Strong planning and organizational skills
    • Strong research, analytical, and problem-solving skills
    • Strong verbal, written, and interpersonal communication skills, including proficiency in negotiating and persuading others
    • Ability to present findings and conclusions clearly and concisely

    Desired Qualifications

    • Extensive IAM applications experience
    • Bachelor Degree in business, information technology, or related fields
    • CISSP, CISA, CCSP, or other related Information Security certifications
    • BA, Master's degree, PMP, MSCE/MCITP, Linux certifications
    • Experience with Agile methodologies (e.g., SAFe)
    • ForgeRock Identity & Access Specialist or Professional certification(s)
    • Experience with multiple open-source authentication protocols including SAML, OAuth, and OpenID
    • Experience with Ping Identity products
    • Experience with Azure Active Directory Federation
    • Experience with Kubernetes and Docker services
    • Knowledge of the financial services industry
    • Experience with Daon IdentityX Platform

    Hours: Monday - Friday, 8:00AM - 4:30PM

    Location: 820 Follin Lane, Vienna, VA 22180 | 5550 Heritage Oaks Dr. Pensacola, FL 32526 | 141 Security Dr. Winchester, VA 22602

    Navy Federal is now hybrid! Our standard enterprise requirement for a hybrid schedule is to report on-site 4-16 days each month. The number of days reporting on-site will ultimately be determined by the employee's leadership and business unit needs. You will learn more throughout the hiring and on boarding process.

    Salary Range: $87,800 - $185,200 annually

    Navy Federal Credit Union assesses market data to establish salary ranges that enable us to remain competitive. You are paid within the salary range, based on your experience, location and market position.

    Posting End Date: 04/05/2023

    Job postings are subject to close early or extend out longer than the anticipated closing date at the hiring team's discretion based on qualified applicant volume.

    Equal Employment Opportunity

    Navy Federal values, celebrates, and enacts diversity in the workplace. Navy Federal takes affirmative action to employ and advance in employment qualified individuals with disabilities, disabled veterans, Armed Forces service medal veterans, recently separated veterans, and other protected veterans. EOE/AA/M/F/Veteran/Disability


    Navy Federal reserves the right to fill this role at a higher/lower grade level based on business need. An assessment may be required to compete for this position.

    Bank Secrecy Act

    Remains cognizant of and adheres to Navy Federal policies and procedures, and regulations pertaining to the Bank Secrecy Act.

    Employee Referrals

    This position is eligible for the TalentQuest employee referral program. If an employee referred you for this job, please apply using the system-generated link that was sent to you.
    Company Image

    Connect with Navy Federal Credit Union