PV: LorienGlobal.
Client: City Of Hope
Job Title: Senior Identity & Access Management (IAM) Engineer
100% Remote
2 rounds of interview Virtual.
1opening 1 Year plus contract
C2C Rate: $70/HR
MUST HAVE SAILPOINT AND & BEYONDTRUST EXPERIENCE.
Senior Identity & Access Management (IAM) Engineer
Role Overview
City of Hope is seeking an elite, highly technical Senior IAM Engineer to architect, secure, and operate our enterprise identity infrastructure [1, 2]. This role is a critical position focused on modernizing our hybrid identity footprint, enforcing zero-trust architecture, and securing privileged access. The ideal candidate possesses deep, hands-on engineering mastery across the Microsoft Entra ID suite, SailPoint Identity Governance, Active Directory, and BeyondTrust PAM [3, 4]. You will be responsible for eliminating identity risk, automating the Joiner-Mover-Leaver (JML) lifecycle, and providing high-confidence identity security across our healthcare and research networks [2].
Core Technical Stack
- Identity Platforms: Microsoft Entra ID (Azure AD), Active Directory (AD) [3].
- Identity Governance (IGA): SailPoint [3, 4].
- Privileged Access Management (PAM): BeyondTrust [4].
- Protocols & Standards: SAML, OIDC, OAuth 2.0, Kerberos, LDAP, KQL.
Key Responsibilities
Microsoft Entra ID & Hybrid Identity Operations
- Tenant & Core Identity: Maintain Entra ID tenant architecture, service accounts, directory roles, and emergency break-glass account governance.
- Hybrid Identity & Synchronization: Manage Entra Connect and Cloud Sync topologies, resolve complex attribute authority matching issues, and monitor global synchronization health.
- Groups & RBAC: Define enterprise security group standards, engineer dynamic assignment rules, and build scalable Role-Based Access Control (RBAC) and least-privilege authorization models.