Access Control Specialist

About The Position

Requirements

• Must meet contract requirements.
• Ability to obtain and maintain SEC Public Trust (or higher if required).
• Bachelors.
• Minimum 2 years of experience administering access control in an enterprise IT environment.
• Experience managing account creation, modification, termination, and expiration processes.
• Experience managing groups, mailbox permissions, and file permissions while maintaining accurate account records.
• Microsoft Active Directory and underlying directory service concepts.
• User account lifecycle administration (account creation, modification, and termination).
• Group administration and permission management.
• Mailbox and file permission management.
• Access control protocol and SOP maintenance.

Nice To Haves

• Experience supporting federal agency IT environments with formal security and compliance requirements.
• Hands-on experience with Microsoft Entra ID and hybrid identity administration.
• Familiarity with RBAC, identity governance, MFA, and privileged access concepts.
• Working knowledge of FISMA/NIST-aligned access control practices.
• Experience using PowerShell or similar scripting tools to automate access administration tasks.
• Microsoft Certified: Identity and Access Administrator Associate (SC-300)
• CompTIA Security+
• ITIL 4 Foundation

Responsibilities

• Create, modify, disable, and terminate user accounts based on approved requests and established timelines.
• Execute joiner/mover/leaver workflows, including account expiration and deprovisioning controls.
• Validate approvals and request details before implementing access changes.
• Track, update, and resolve access-related requests and escalations in the designated ticketing system.
• Manage security and distribution groups, including membership updates and periodic validation.
• Administer mailbox permissions and delegation settings for individual and shared mail resources.
• Configure and maintain file and folder permissions according to approved access needs.
• Correct stale, conflicting, or excessive permissions to maintain appropriate access.
• Maintain Microsoft Active Directory account attributes and directory data accuracy across systems.
• Ensure account information remains accurate, complete, and current.
• Coordinate with security and system owners to ensure access controls remain current and enforceable.
• Support routine validation activities for access provisioning and account changes.
• Maintain and update access control protocols, SOPs, and process documentation.
• Produce audit-ready records for access provisioning, changes, and terminations.
• Identify recurring access issues and recommend process improvements.
• Support compliance with SEC security policies and contract requirements.

Benefits

• competitive compensation
• Health and Wellness programs
• Income Protection
• Paid Leave
• Retirement