IAM Engineer- 3 days onsite Herndon, VA

We are seeking an experienced IAM Engineer to serve as a Subject Matter Expert in Identity and Access Management systems, including Microsoft Entra, Okta, and Active Directory. This role involves coding, automation, process development, and operational support for IAM environments.

The company is located in Herndon, VA and will require 3 days on site a week.

What You Will Be Doing:

• Act as SME for IAM systems, including Microsoft Entra, Okta, and Active Directory.
• Leverage strong PowerShell scripting skills to automate IAM tasks and processes.
• Design, implement, and document IAM processes covering performance monitoring, troubleshooting, capacity planning, configuration standards, change management, and communication strategies.
• Provide IMAC (Install, Move, Add, Change) services for systems and applications.
• Maintain server and application diagrams, workflows, and documentation.
• Diagnose and resolve incidents, conduct root cause analysis, and implement corrective actions.
• Manage installation, configuration, upgrades, and maintenance of IAM server components and applications.
• Independently prioritize and manage work requests based on system criticality.
• Collaborate with vendors for evaluation, procurement, and maintenance of IAM infrastructure.
• Lead systems analysis, design, and development of functional requirements for new IAM solutions.
• Participate in rotational on-call duties and respond to escalations.
• Ensure high levels of end-user satisfaction.

Required Skills & Experience:

• Bachelor's degree in Computer Science, MIS, IT, or equivalent experience.
• 7+ years in IT, with at least 4 years in server/application management in fast-paced environments.
• Proficiency in PowerShell scripting and automation for IAM processes.
• Experience with JSON, Python, and related coding languages.
• Hands-on experience with Microsoft Entra, Azure AD Connect, ADFS, LDAP, JAMF, and Okta workflows.
• Familiarity with API integrations for SaaS services.
• Knowledge of Azure AD (Entra) conditional access, Intune, Active Directory Group Policy, and IAM standards (SAML, OIDC, OAuth, LDAP, MFA, FIDO2, YubiKey).
• Experience with PKI, Microsoft Certificate Services, and RSA SecurID (cloud/on-prem).
• Understanding of TCP/IP, networking protocols, and firewall/IDS operations.
• Strong organizational skills with prior leadership or senior administrator experience.
• Excellent communication skills for interaction with IT and business stakeholders.

Desired Skills & Experience:

• Expert-level Azure and Microsoft Windows administration skills.
• Advanced scripting in PowerShell, Perl, Python, and PowerCLI.
• Relevant certifications (e.g., MCSE, Azure Fundamentals, Azure Administrator, Azure Solutions Architect, Okta).
• Linux administration experience (SUSE, RedHat, CentOS).
• Experience integrating SIEM tools, backups, and monitoring systems.
• Knowledge of NIST 800-53 Rev 4 and related security best practices.

Applicants must be currently authorized to work in the United States on a full-time basis now and in the future.
This position doesn't provide sponsorship.