SITEC - Senior Identity Management Engineer - MacDill AFB

About The Position

Requirements

• Min 12 years with HS degree, 10 years with AS/AA degree, 8 years with BS/BA, 6 years with MS/MA
• DoD 8570 IAT II Certification
• DoD TS/SCI clearance
• 3–8 years in enterprise-level identity management
• Hands-on experience with PingFederate, SailPoint, and Radiant Logic
• Proficiency in managing Active Directory, ADFS, and Microsoft Entra ID

Nice To Haves

• Microsoft Certified: Identity and Access Administrator Associate (SC-300): Validates expertise in Microsoft Entra ID and identity governance
• Ping Identity Certified Professional: Specifically for PingFederate or PingOne specialists
• Certified Identity and Access Manager (CIAM): A vendor-neutral certification covering the strategic lifecycle of identity management
• Radiant Logic Training: While they don't have a broad public exam like Microsoft, completion of their specialized training tracks is highly valued for this role

Responsibilities

• Identity Lifecycle Management: Design and maintain automated "Joiner-Mover-Leaver" workflows within SailPoint to ensure precise user provisioning and de-provisioning.
• Hybrid Identity Operations: Manage and synchronize identities between on-premises environments and the cloud using Azure AD Connect and Microsoft Entra ID.
• Federated Access: Configure and troubleshoot Single Sign-On (SSO) and federation services using PingFederate and Active Directory Federation Services (ADFS) to enable secure access across disparate systems.
• Virtual Directory Management: Implement and maintain Radiant Logic (MUR) to aggregate and correlate identity data from multiple authoritative sources for a unified global profile.
• Zero Trust Policy Enforcement: Develop conditional access policies and risk-adaptive access controls within the Entra ID ecosystem to align with DoW Zero Trust Strategy.
• Compliance & Security: Ensure all IAM configurations meet DISA STIG requirements and follow the DoW Enterprise ICAM Reference Design.