Identity Engineer

About The Position

Requirements

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field
• 5+ years of experience in Identity and Access Management with a strong focus on identity governance, lifecycle management, and identity data governance
• Hands-on experience with Microsoft Entra ID including Governance, Conditional Access, PIM, and SCIM-based provisioning
• Demonstrated experience designing and maintaining Master User Record (MUR) frameworks and identity reconciliation processes
• Understanding of and experience with role mining methodologies and frameworks used to effectively identify, analyze, and define business roles
• Experience designing and implementing Joiner, Mover, Leaver (JML) workflows in enterprise or federal environments
• Strong understanding of ABAC and RBAC access control methodologies
• Proficiency in PowerShell scripting and automation
• Working knowledge of federal identity standards including NIST SP 800-63 and FICAM guidance
• Ability to obtain a Public Trust clearance
• U.S. citizenship required

Nice To Haves

• Familiarity with IAM platforms such as SailPoint, Saviynt, or Okta preferred
• Relevant certifications preferred (e.g., SC-300, AZ-104, CISSP, Security+)

Responsibilities

• Design, implement, and maintain Identity Governance and Administration (IGA) capabilities within Microsoft Entra ID
• Develop and maintain the Master User Record (MUR) as the centralized authoritative source for user identity attributes, entitlements, and access data
• Establish identity data quality standards, reconciliation processes, and synchronization workflows across HR systems, directories, and downstream applications
• Design and implement automated Joiner, Mover, Leaver (JML) lifecycle workflows to support timely provisioning and deprovisioning activities
• Integrate identity lifecycle processes with HR platforms (e.g., Workday, SAP) and ITSM solutions (e.g., ServiceNow)
• Design and implement Attribute-Based Access Control (ABAC) and Role-Based Access Control (RBAC) models aligned with organizational and federal security requirements
• Configure and support Entra ID Governance capabilities including access reviews, entitlement management, Privileged Identity Management (PIM), and lifecycle workflows
• Develop and maintain PowerShell automation supporting provisioning, synchronization, reporting, and governance operations
• Troubleshoot complex provisioning failures, synchronization issues, and identity data discrepancies
• Partner with business stakeholders to streamline identity-driven processes including provisioning, role management, and entitlement governance
• Develop dashboards, reporting metrics, and operational reporting related to provisioning activity, access certifications, lifecycle workflows, and MUR integrity