Senior Identity and Access Management (IAM) Engineer

Overview

On Site
Depends on Experience
Contract - W2
Contract - Independent
Contract - 24 Month(s)
75% Travel
Able to Provide Sponsorship

Skills

Access Control
Active Directory
Analytical Skill
Authentication
Authorization
Cloud Computing
Collaboration
Communication
Computer Science
Conflict Resolution
Identity Management
FOCUS
Kerberos
LDAP
Management
Microsoft Azure
OAuth
PCI DSS
Problem Solving
Regulatory Compliance
SAML
SSO
Systems Engineering

Job Details

Senior Identity and Access Management (IAM) Engineer

We are seeking a Senior Identity and Access Management (IAM) Engineer to lead the design, implementation, and governance of enterprise authentication systems, including Active Directory, Azure AD, and cloud-based identity providers. The ideal candidate will serve as the subject matter expert responsible for deploying a robust Privileged Access Management (PAM) solution, establishing strict authentication policies within a Cardholder Data Environment (CDE), and ensuring IAM practices comply with rigorous security and compliance standards, including PCI-DSS. This role requires a strategic thinker with deep technical expertise and the ability to drive complex IAM projects from planning through successful execution.

Responsibilities:

  • Lead the architecture, design, and implementation of enterprise authentication systems (Active Directory, Azure AD, and cloud identity providers).

  • Implement and manage a robust PAM system to enforce secure authentication, session management, and access controls for privileged accounts.

  • Develop, enforce, and maintain comprehensive authentication policies and standards, especially within the Cardholder Data Environment (CDE).

  • Drive complex IAM projects through all phases— from planning and scoping to execution and integration.

  • Collaborate with security, infrastructure, and application teams to ensure secure, seamless authentication and authorization experiences.

  • Ensure IAM solutions and processes comply with PCI-DSS, Zero Trust Architecture principles, and other security frameworks.

  • Provide expert-level technical guidance and troubleshooting for identity services (LDAP, Kerberos, SAML, OAuth, etc.) to resolve complex issues and maintain system availability.

Requirements:

  • Bachelor’s degree in Computer Science, IT, or equivalent practical experience.

  • Minimum 5 years of progressive experience in systems engineering with a focus on authentication, security, and identity management.

  • Strong hands-on expertise with Active Directory, Azure AD, LDAP, Kerberos, and SSO technologies.

  • In-depth knowledge and experience with Privileged Access Management (PAM) solutions.

  • Solid understanding of security frameworks and compliance standards, including PCI-DSS.

  • Practical experience with Zero Trust Architecture principles in enterprise environments.

  • Excellent analytical, problem-solving, and communication skills, with the ability to lead and collaborate across teams.

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.