Overview
On Site
USD 58.00 - 80.00 per hour
Full Time
Skills
Mergers and Acquisitions
High Availability
Scalability
Directory Services
Cloud Computing
Authentication
Access Control
RBAC
Risk Assessment
Auditing
Workflow
Technical Support
Collaboration
Cyber Security
Documentation
Technical Writing
Reporting
Management
Identity Management
FOCUS
SSO
SAML
OAuth
Active Directory
Replication
Multi-factor Authentication
Regulatory Compliance
Payment Card Industry
Lifecycle Management
Provisioning
Problem Solving
Conflict Resolution
Microsoft
Microsoft Azure
CISSP
TCM
DICE
Job Details
JOB TITLE: IAM Engineer
JOB LOCATION: Braintree MA
WAGE RANGE*: $58-$80
JOB NUMBER: Client-26-1062-LOT-LOTDO-11887
JOB DESCRIPTION:
The Identity and Access Management (IAM) Engineer will be responsible for implementing, managing, and maintaining the identity and access management infrastructure for the Massachusetts State Lottery Commission. This role will focus on ensuring secure, efficient, and scalable access to digital resources while supporting business objectives and maintaining compliance with security standards. The IAM Engineer will work with Microsoft Entra ID (Azure AD), Active Directory, and Single Sign-On (SSO) technologies to enable secure user access and enforce the principle of least privilege across various platforms and applications. The ideal candidate will have a strong technical background in identity and access management and be able to support and troubleshoot complex IAM-related issues.
ESSENTIAL FUNCTIONS IAM Implementation and Administration: o Assist in designing, configuring, and managing the IAM framework using Microsoft Entra ID (Azure AD), Active Directory, and SSO technologies. o Ensure alignment of IAM policies and processes with business and security requirements. Active Directory and Entra ID Management: o Support the administration and maintenance of Active Directory forests, domains, trusts, and replication models. o Manage and optimize Microsoft Entra ID services, including MFA, conditional access, and identity protection. o Ensure high availability, scalability, and security of directory services. SSO Configuration and Support: o Configure and support SSO solutions using protocols like SAML, OAuth, and OpenID Connect. o Integrate SSO with cloud and on-premises applications to provide seamless authentication and secure access. Security and Compliance: o Enforce security best practices, including role-based access control (RBAC), access policies, and identity governance. o Monitor and ensure compliance with relevant regulatory standards, such as PCI, NIST, and 201 CMR 17. o Conduct regular risk assessments, security reviews, and audits to ensure a secure IAM environment. Identity Lifecycle Management: o Manage user provisioning, de-provisioning, and access reviews across systems and applications. o Automate and improve IAM workflows to enhance efficiency and security. 3 of 3 Technical Support and Collaboration: o Troubleshoot and resolve IAM-related issues, including SSO failures and directory integration issues. o Work closely with cybersecurity, IT, and application teams to ensure seamless identity and access management. o Provide technical guidance to other teams on IAM best practices. Documentation and Reporting: o Develop and maintain technical documentation for IAM configurations and processes. o Report IAM performance and issues to senior management and stakeholders.
REQUIREMENTS Must be able to travel to Lottery offices statewide and/or other locations, as required. Ability to provide on-call support for IAM issues during critical events.
PREFERRED QUALIFICATIONS 5+ years of experience in Identity and Access Management (IAM) with a focus on Microsoft Entra ID (Azure AD), Active Directory, and SSO integration. Experience with SSO technologies including SAML, OAuth, and OpenID Connect. Strong understanding of Active Directory architecture, including forests, domains, trusts, and replication. Hands-on experience with MFA, conditional access policies, and identity protection. Familiarity with regulatory compliance frameworks such as PCI, 201 CMR 17, and NIST. Experience in identity lifecycle management, including provisioning, de-provisioning, and access reviews. Strong problem-solving and troubleshooting skills with IAM systems. Relevant certifications such as Microsoft Certified: Azure Solutions Architect Expert, CISSP, or Certified Identity and Access Manager (CIAM) preferred
Equal opportunity employer as to all protected groups, including protected veterans and individuals with disabilities
* While an hourly range is posted for this position, an eventual hourly rate is determined by a comprehensive salary analysis which considers multiple factors including but not limited to: job-related knowledge, skills and qualifications, education and experience as compared to others in the organization doing substantially similar work, if applicable, and market and business considerations. Benefits offered include medical, dental and vision benefits; dependent care flexible spending account; 401(k) plan; voluntary life/short term disability/whole life/term life/accident and critical illness coverage; employee assistance program; sick leave in accordance with regulation. Benefits may be subject to generally applicable eligibility, waiting period, contribution, and other requirements and conditions. Benefits offered are in accordance with applicable federal, state, and local laws and subject to change at TCM's discretion.
#Dice
JOB LOCATION: Braintree MA
WAGE RANGE*: $58-$80
JOB NUMBER: Client-26-1062-LOT-LOTDO-11887
JOB DESCRIPTION:
The Identity and Access Management (IAM) Engineer will be responsible for implementing, managing, and maintaining the identity and access management infrastructure for the Massachusetts State Lottery Commission. This role will focus on ensuring secure, efficient, and scalable access to digital resources while supporting business objectives and maintaining compliance with security standards. The IAM Engineer will work with Microsoft Entra ID (Azure AD), Active Directory, and Single Sign-On (SSO) technologies to enable secure user access and enforce the principle of least privilege across various platforms and applications. The ideal candidate will have a strong technical background in identity and access management and be able to support and troubleshoot complex IAM-related issues.
ESSENTIAL FUNCTIONS IAM Implementation and Administration: o Assist in designing, configuring, and managing the IAM framework using Microsoft Entra ID (Azure AD), Active Directory, and SSO technologies. o Ensure alignment of IAM policies and processes with business and security requirements. Active Directory and Entra ID Management: o Support the administration and maintenance of Active Directory forests, domains, trusts, and replication models. o Manage and optimize Microsoft Entra ID services, including MFA, conditional access, and identity protection. o Ensure high availability, scalability, and security of directory services. SSO Configuration and Support: o Configure and support SSO solutions using protocols like SAML, OAuth, and OpenID Connect. o Integrate SSO with cloud and on-premises applications to provide seamless authentication and secure access. Security and Compliance: o Enforce security best practices, including role-based access control (RBAC), access policies, and identity governance. o Monitor and ensure compliance with relevant regulatory standards, such as PCI, NIST, and 201 CMR 17. o Conduct regular risk assessments, security reviews, and audits to ensure a secure IAM environment. Identity Lifecycle Management: o Manage user provisioning, de-provisioning, and access reviews across systems and applications. o Automate and improve IAM workflows to enhance efficiency and security. 3 of 3 Technical Support and Collaboration: o Troubleshoot and resolve IAM-related issues, including SSO failures and directory integration issues. o Work closely with cybersecurity, IT, and application teams to ensure seamless identity and access management. o Provide technical guidance to other teams on IAM best practices. Documentation and Reporting: o Develop and maintain technical documentation for IAM configurations and processes. o Report IAM performance and issues to senior management and stakeholders.
REQUIREMENTS Must be able to travel to Lottery offices statewide and/or other locations, as required. Ability to provide on-call support for IAM issues during critical events.
PREFERRED QUALIFICATIONS 5+ years of experience in Identity and Access Management (IAM) with a focus on Microsoft Entra ID (Azure AD), Active Directory, and SSO integration. Experience with SSO technologies including SAML, OAuth, and OpenID Connect. Strong understanding of Active Directory architecture, including forests, domains, trusts, and replication. Hands-on experience with MFA, conditional access policies, and identity protection. Familiarity with regulatory compliance frameworks such as PCI, 201 CMR 17, and NIST. Experience in identity lifecycle management, including provisioning, de-provisioning, and access reviews. Strong problem-solving and troubleshooting skills with IAM systems. Relevant certifications such as Microsoft Certified: Azure Solutions Architect Expert, CISSP, or Certified Identity and Access Manager (CIAM) preferred
Equal opportunity employer as to all protected groups, including protected veterans and individuals with disabilities
* While an hourly range is posted for this position, an eventual hourly rate is determined by a comprehensive salary analysis which considers multiple factors including but not limited to: job-related knowledge, skills and qualifications, education and experience as compared to others in the organization doing substantially similar work, if applicable, and market and business considerations. Benefits offered include medical, dental and vision benefits; dependent care flexible spending account; 401(k) plan; voluntary life/short term disability/whole life/term life/accident and critical illness coverage; employee assistance program; sick leave in accordance with regulation. Benefits may be subject to generally applicable eligibility, waiting period, contribution, and other requirements and conditions. Benefits offered are in accordance with applicable federal, state, and local laws and subject to change at TCM's discretion.
#Dice
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.