Identity System Engineer

The Identity Systems Engineer is responsible for implementing, and securing enterprise identity and access management infrastructure that enables reliable authentication, authorization, and access management across hybrid environments. Engineers in this family ensure that users, systems, and applications are authenticated, authorized, and protected in alignment with security standards, regulatory requirements, and business needs. The Identity Systems Engineer is a mid-level role responsible for implementing, maintaining, and securing enterprise identity infrastructure across both on-premises and cloud environments. This position deploys and manages Active Directory services, including domain controllers, OU structures, replication health, schema extensions, and trust relationships, while ensuring alignment with business and security requirements. The engineer oversees synchronization between AD, Entra ID, and other identity platforms, enabling seamless hybrid identity and single sign-on for applications. Core responsibilities include configuring and managing secure authentication methods, administering enterprise PKI and certificate lifecycles, and enforcing access governance policies through Group Policy Objects and role-based models. The role also integrates systems via API calls (REST, SOAP, JSON), automates provisioning and de-provisioning workflows, and supports modern authentication protocols such as Kerberos, OAuth, OpenID Connect, and SAML. In addition, the Identity Systems Engineer enforces least privilege, conducts access audits, supports compliance with SOX, HIPAA, and GDPR, and provides technical expertise during audits and governance reviews. With a technical focus complemented by operational oversight, this role ensures the organization's identity services remain secure, resilient, and aligned with both regulatory and business objectives. This role requires technical expertise in Active Directory, Entra ID, authentication protocols, Identity Governance Administration (IGA), Privileged Access Management (PAM) and PKI with a strong focus on information security, compliance, problem-solving skills, a security-first mindset, and least-privilege enforcement. The Identity Systems Engineer ensures the organization's identity platforms are resilient, scalable, and secure to support business operations and protect sensitive data. The Identity Systems Engineer will work closely with cross-functional IT, application, and security teams to ensure alignment with business objectives, regulatory requirements, and industry best practices.