Identity Provider Engineer
About The Position
Identity Provider Engineer The Opportunity: You know that the user is the last frontier for cybersecurity. It’s where the perimeter is drawn, and securing identities is pivotal in the fight against cybercriminals. As an Identity and Access Management (IAM) specialist, you have the skills and experience to keep hackers from taking data and breaking processes. We’re looking for someone like you to help our clients meet their missions without disruption. As an Identity Provider Engineer at Booz Allen, you’ll play a critical role in the world of identity and access management and zero trust. In this role, you’ll support large-scale IAM projects for our clients. You’ll interface with stakeholders and engineering teams to delve into the details and dependencies of critical processes and users’ roles within them. You’ll analyze the identity lifecycle, articulating access requirements and defining enterprise identity records. You’ll use your experience in IAM to design, deploy, and support systems that verify appropriate user privileges and manage credentials for accessing our clients’ most valuable assets. From single sign-on to privileged access systems, you’ll have the chance to implement enterprise-class solutions and stop adversaries in their tracks. Join us. The world can’t wait.
Requirements
- Experience with Ping Federate, Okta, or Entra ID
- Experience with SAML 2.0, OAuth 2.0, and OpenID Connect (OIDC)
- Experience developing custom SAML, OAuth, and OIDC integrations and troubleshooting protocol exchanges
- Experience with languages used for identity platform development and automation such as Java, JavaScript, Python, PowerShell, or Groovy
- Experience working with RESTful APIs to integrate identity providers with external applications and automate identity lifecycle processes
- Experience integrating and synchronizing with Active Directory (AD) or LDAP
- Knowledge of Zero Trust architectures and implementation of password-less authentication or multifactor authentication (MFA) within the IdP environment
- Ability to resolve complex identity and federation issues, including token validation errors, assertion mismatches, and connectivity problems
- Active TS/SCI clearance; willingness to take a polygraph exam
- HS diploma or GED
Nice To Haves
- Experience with Ping Identity Suite tools, including development using PingFederate, PingAccess, PingDirectory, or PingOne with custom workflows and scripting
- Experience building or enhancing automated user lifecycle management using System for Cross-domain Identity Management protocols
- Experience integrating identity provider code and configurations into DevOps and CI/CD pipelines for automated build and deployment workflows
- Knowledge of advanced Okta development features such as Okta Workflows, Custom Authorization Servers, Inline Hooks, and Okta APIs for enhanced platform customization
- Knowledge of compliance and regulatory standards such as NIST, FedRAMP, HIPAA, or other frameworks relevant to identity management solutions
- Knowledge of cloud identity platforms such as AWS Cognito, Azure AD B2C, or Google Cloud Identity
- Possession of excellent verbal and written communication skills
- TS/SCI clearance with a polygraph
- Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field
Benefits
- health
- life
- disability
- financial
- retirement benefits
- paid leave
- professional development
- tuition assistance
- work-life programs
- dependent care
- recognition awards program
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Education Level
High school or GED
