Cybersecurity Staff Engineer – CIAM Consultant

Role Title: Cybersecurity Staff Engineer – CIAM Consultant

Engagement Type: Contract-to-Hire(6-9 months)

Location: McKinney, TX – Hybrid-  

 Candidates must be able to work onsite in McKinney for 2 to 3 days. 

Summary

We are seeking a senior Cybersecurity Staff Engineer – IAM / CIAM Consultant with strong hands-on experience in Customer Identity and Access Management, SailPoint Identity Security Cloud, Active Directory, and Microsoft Entra ID.

The ideal candidate will support enterprise identity initiatives across workforce IAM and customer identity use cases. This role requires strong technical depth in identity governance, identity lifecycle, application integrations, access controls, authentication, authorization, and identity data flows.

Primary Skill Set

Candidates must have strong hands-on experience with:

• CIAM / Customer Identity and Access Management
• SailPoint Identity Security Cloud / SailPoint ISC
• Active Directory
• Microsoft Entra ID / Azure AD
• Identity lifecycle management
• Application onboarding and identity integrations
• SSO, MFA, federation, and access governance

Key Responsibilities

• Lead and support Customer Identity and Access Management initiatives across customer-facing and external-user applications.
• Design, configure, and support CIAM registration, login, MFA, passwordless authentication, account recovery, and profile management flows.
• Support CIAM integrations for web, mobile, SaaS, partner, and internal applications.
• Work with SailPoint Identity Security Cloud / ISC for identity governance, access modeling, RBAC, application onboarding, certifications, and lifecycle processes.
• Work with Active Directory and Microsoft Entra ID for identity, group, role, and access management.
• Analyze identity data, entitlements, roles, groups, and access models.
• Support SSO, MFA, federation, and authentication-related integrations.
• Partner with application, security, infrastructure, audit, and business teams.
• Create technical documentation, process flows, architecture diagrams, runbooks, and control evidence.
• Oversee multiple IAM projects concurrently, ensuring timely, secure, and scalable delivery.
• Provide technical mentorship to junior engineers and develop documentation to support operational continuity and audit readiness.
• Contribute to the strategic roadmap for IAM, identifying opportunities for innovation, risk reduction, and operational efficiency.
• Provide weekly status updates, risks, issues, and recommendations to leadership.

Required Skills

• 8+ years of experience in Identity and Access Management engineering, cybersecurity, or a related field.
• Strong hands-on experience with Customer Identity and Access Management platforms and customer-facing identity use cases.
• Strong hands-on experience with SailPoint Identity Security Cloud / ISC, including sources, connectors, identity profiles, access profiles, roles, entitlements, certifications, workflows, provisioning, and lifecycle states.
• Strong experience with Active Directory, including users, groups, OUs, permissions, service accounts, and group-based access.
• Strong experience with Microsoft Entra ID / Azure AD, including enterprise applications, app registrations, conditional access, MFA, groups, external identities, and identity governance.
• Experience designing, implementing, or supporting customer registration, login, MFA, account recovery, profile management, and lifecycle flows.
• Experience with B2B, B2C, partner, vendor, and external-user identity models.
• Experience with SSO, federation, and provisioning technologies, including SAML, OAuth 2.0, OIDC, LDAP, and SCIM.
• Experience with CIAM security controls, including adaptive authentication, risk-based authentication, step-up authentication, session management, botprotection, and account takeover prevention.
• Experience with identity attributes, claims, tokens, scopes, roles, entitlements, access policies, and attribute mapping.
• Experience with customer identity data synchronization and downstream application integrations.
• Experience with identity governance, access reviews, certifications, RBAC, and entitlement management.
• Ability to troubleshoot CIAM and IAM issues across authentication, authorization, federation, provisioning, synchronization, MFA, sessions, and application access.
• Ability to work with application owners, security teams, infrastructure teams, audit teams, privacy teams, and business stakeholders.
• Excellent communication, analytical, and organizational skills.
• Comfortable working independently or within a team in a hybrid work environment.