ICAM Identity Engineer

BarbaricumTampa, FL
101d
Match Resume

About The Position

Barbaricum is a rapidly growing government contractor providing leading-edge support to federal customers, with a particular focus on Defense and National Security mission sets. We leverage more than 17 years of support to stakeholders across the federal government, with established and growing capabilities across Intelligence, Analytics, Engineering, Mission Support, and Communications disciplines. Founded in 2008, our mission is to transform the way our customers approach constantly changing and complex problem sets by bringing to bear the latest in technology and the highest caliber of talent. Headquartered in Washington, DC's historic Dupont Circle neighborhood, Barbaricum also has a corporate presence in Tampa, FL, Bedford, IN, and Dayton, OH, with team members across the United States and around the world. As a leader in our space, we partner with firms in the private sector, academic institutions, and industry associations with a goal of continually building our expertise and capabilities for the benefit of our employees and the customers we support. Through all of this, we have built a vibrant corporate culture diverse in expertise and perspectives with a focus on collaboration and innovation. Our teams are at the frontier of the Nation's most complex and rewarding challenges. Join our team.

Requirements

  • Demonstrated, hands-on expertise with at least one core ICAM platform (Microsoft Entra ID, enterprise PAM such as Delinea, or enterprise IGA such as SailPoint).
  • Strong understanding of identity security principles: least privilege, MFA, JIT/JEA, RBAC/ABAC.
  • Experience with Active Directory administration and Group Policy management.
  • Ability to design, implement, and troubleshoot complex enterprise security policies.
  • DoD 8140 compliance at IAT Level II.

Nice To Haves

  • Microsoft Certified: Identity and Access Administrator (SC-300).
  • Delinea Certified Administrator.
  • SailPoint Certified IdentityNow Engineer.
  • Ping Certified Professional.
  • Experience with Red Hat IdM policy management.

Responsibilities

  • Deploy, configure, and sustain enterprise identity platforms and controls.
  • Design and implement Microsoft Entra ID Conditional Access policies aligned with Zero Trust principles for Azure and AWS.
  • Configure and maintain CAC/PKI-based Certificate Authentication and legacy ADFS environments.
  • Manage Ping Federate as an enterprise federation gateway; onboard applications for SSO using SAML and OIDC; enforce phishing-resistant MFA.
  • Onboard privileged user, service, and application accounts into Delinea.
  • Implement policies for credential rotation, session recording, and privileged session monitoring.
  • Develop and maintain Just-in-Time (JIT) and Just-Enough-Administration (JEA) workflows to reduce standing privileges.
  • Configure SailPoint to automate Joiner-Mover-Leaver processes.
  • Build and maintain enterprise access catalogs and automated approval workflows.
  • Execute periodic access certification campaigns for critical roles and applications.
  • Use One Identity Active Roles to implement delegated administration and automate AD lifecycle tasks.
  • Configure Red Hat IdM policies for host-based access control and sudo privileges across Linux servers.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume

What This Job Offers

Number of Employees

101-250 employees

Job Search Resources

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service