Position Title: Senior / Lead IAM Engineer Active Directory & Entra ID Architecture
Location: Richmond, VA / Boston, MA / New York City, NY / Philadelphia, PA / Cleveland, OH / Atlanta, GA / Chicago, IL / St. Louis, MO / Minneapolis, MN / Kansas City, MO / Dallas, TX / San Francisco, CA
Clearance Requirements: Public Trust
Position Status: 12-Month Contract (Strong potential for extension or conversion)
Pay Rate: $65 $70/hour
Position Description:
We are seeking a Senior / Lead IAM Engineer to drive enterprise identity modernization within a complex, highly regulated environment. This is a hands-on architecture and engineering leadership role, focused on transforming a traditional Active Directory centric infrastructure into a modern, cloud-first identity architecture leveraging Microsoft Entra ID (Azure AD) and Zero Trust security principles. The ideal candidate has led enterprise-scale Active Directory modernization initiatives, reduced legacy dependencies, and designed hybrid identity solutions across large environments.
Responsibilities:
- Lead modernization, consolidation, and redesign of enterprise Active Directory domain/forest architecture
- Design and manage trust relationships, GPO strategy, DNS integration, and directory hygiene initiatives
- Architect and support Hybrid Active Directory + Microsoft Entra ID (Azure AD) environments
- Develop strategies to reduce legacy AD reliance by shifting authentication and governance to cloud-native identity platforms
- Implement and enhance Zero Trust identity controls, including Conditional Access, MFA, and least-privilege models
- Modernize authentication frameworks (passwordless, phishing-resistant MFA, protocol hardening)
- Define and document target-state identity architecture, migration roadmaps, and enterprise design standards
- Partner with security, infrastructure, and application teams to deliver secure, scalable, resilient identity services
- Improve automation, monitoring, and lifecycle management of identity systems
Required Skills/Education:
- 8+ years of progressive IAM engineering experience
- Expert-level Microsoft Active Directory architecture experience:
- Domain & forest design
- Trust models
- Group Policy (GPO)
- DNS integration
- Proven experience leading Active Directory modernization and legacy reduction initiatives
- Strong Hybrid AD + Microsoft Entra ID (Azure AD) architecture expertise
- Deep knowledge of cloud identity, Zero Trust, and identity governance frameworks
- Hands-on experience with:
- Conditional Access
- Multi-Factor Authentication (MFA)
- Least-privilege access models
- Strong understanding of authentication and federation protocols:
- Kerberos
- LDAP
- SAML
- OAuth 2.0
- OpenID Connect (OIDC)
- Enterprise-level design documentation and architecture diagramming skills
- Experience collaborating across large, complex enterprise environments
Additional Requirements:
- Candidates must be currently employed (extended background/onboarding process)
- Ability to work onsite in Boston, MA Monday Friday
About Seneca Resources
At Seneca Resources, we are more than just a staffing and consulting firm we are a trusted career partner. With offices across the U.S. and clients ranging from Fortune 500 companies to government organizations, we provide opportunities that help professionals grow their careers while making an impact.
When you work with Seneca, you re choosing a company that invests in your success, celebrates your achievements, and connects you to meaningful work with leading organizations nationwide. Our consultants and contractors enjoy competitive pay, comprehensive health, dental, and vision coverage, 401(k) retirement plans, and dedicated support throughout every engagement.
Seneca Resources is proud to be an Equal Opportunity Employer committed to fostering a diverse and inclusive workplace where all qualified individuals are encouraged to apply.
Never miss an opportunity! Create an alert based on the job you applied for.
