Overview
Skills
Job Details
Need consultant from DC,VA or MD this is preffered as role is hybrid onsite.
Key Responsibilities
Identity & Access Operations
Administer user provisioning, de-provisioning, and lifecycle management.
Manage roles, groups, entitlements, and access requests across enterprise systems.
Ensure compliance with the principle of least privilege and segregation of duties (SoD).
Maintain and monitor IAM workflows, approvals, and access audits.
Security & Governance
Enforce security policies for authentication and authorization.
Conduct periodic access reviews, recertification campaigns, and audit reporting.
Manage MFA, SSO, password policies, privileged access, and session monitoring.
Support compliance for SOX, GDPR, PCI-DSS, ISO27001, and internal governance.
Platform Administration
Configure and maintain IAM tools such as:
Okta, Azure AD, SailPoint, CyberArk, Ping Identity, OneLogin, ForgeRock, etc.
Troubleshoot authentication/SSO issues (SAML, OAuth, OIDC).
Collaborate with application owners to onboard new apps to SSO/IAM platforms.
Manage directory services (AD/LDAP) and identity synchronization.
Incident & Problem Management
Respond to access incidents, lockouts, and privilege escalation requests.
Assist in security investigations involving user accounts or credentials.
Support identity threat detection and mitigation.
Collaboration
Partner with security, cloud, network, and application teams to improve IAM posture.
Train end-users and teams on IAM processes and best practices.
Required Skills & Experience
3 7+ years experience in Identity & Access Management or IT security.
Strong hands-on knowledge of:
Azure AD / Entra ID, Active Directory, LDAP, SSO, MFA.
IAM tools like Okta, SailPoint, CyberArk, Ping, BeyondTrust, etc.
Understanding of authentication protocols:
SAML, OAuth2.0, OIDC, Kerberos, RADIUS.
Knowledge of RBAC, ABAC, Zero Trust, directory services, and privilege management.
Basic scripting (PowerShell, Python, Bash) for automation.