Solutions Engineer

Quanta Services Management PartnershipHouston, TX

About The Position

This role is responsible for developing solutions for Identity and Access Management with Azure, AWS and OCI. Integrate current architectures, create technical documentation, and works with business to provide technical support. There is a strong focus on Identity security as well as on automation and workflow processes.

Requirements

  • 5+ years of hands-on identity and access management engineering experience, including demonstrable experience authoring custom IAM policies and roles/permission sets in AWS and Azure.
  • Hands-on experience administering Entra ID (Conditional Access, app registrations, SSO, MFA) and on-premises Active Directory.
  • Bachelor's degree in computer science, Information Security, or related field, or equivalent experience.
  • Expert-level understanding of authentication and authorization protocols: SAML, OIDC, OAuth 2.0, SCIM, Kerberos, LDAP.
  • Strong scripting and automation skills: PowerShell, Python; infrastructure as code (Terraform preferred).
  • Working knowledge of DNS architecture (internal/public, hybrid resolution) and PKI/certificate lifecycle management (ADCS).
  • Experience using API integrations (Microsoft Graph, cloud-native APIs, REST) for cross-application interoperability.
  • Familiarity with privileged access management, identity governance (IGA), and access certification concepts.
  • Strong documentation skills and the ability to communicate technical designs to engineering and business stakeholders

Nice To Haves

  • Experience with IAM in OCI and GCP in addition to AWS and Azure.
  • Experience designing identity for AI/ML platforms, agentic systems, or large-scale non-human identity environments.
  • Experience supporting Azure Virtual Desktop environments.
  • Experience in customer-facing or cross-functional technical support roles.
  • Microsoft SC-300 (Identity and Access Administrator) or equivalent
  • AWS Certified Security - Specialty or AWS Solutions Architect

Responsibilities

  • Design, author, and maintain custom IAM policies, roles, permission boundaries, and trust relationships across AWS (IAM, IAM Identity Center, STS), Azure (Entra ID, RBAC, PIM), OCI (IAM domains, policies, dynamic groups), and GCP (IAM, Workload Identity Federation), with AWS as the deepest area of expertise.
  • Apply least-privilege and zero-trust principles to human, service, and workload identities, including cross-account and cross-cloud federation patterns.
  • Design and govern non-human identities: service principals, managed identities, service accounts, workload identities, and API credentials across all four clouds.
  • Architect and build identity solutions for AI agents and agentic workflows, including secure credential issuance, scoped delegation, token lifecycle management, and auditability for autonomous and semi-autonomous systems.
  • Evaluate and integrate emerging standards and tooling for machine and agent identity (e.g., workload identity federation, OAuth token exchange, fine-grained authorization) into Quanta's identity architecture.
  • Leverage AI tooling to automate identity operations, access reviews, and anomaly detection where appropriate.
  • Configure and maintain Entra ID single sign-on via application registrations and enterprise applications using SAML, OIDC, and OAuth/Microsoft Graph API.
  • Manage Conditional Access policies, Azure MFA, and hybrid identity via Entra Connect (Azure AD Connect), including monitoring and troubleshooting synchronization.
  • Administer the enterprise AD forest/domain and domain controllers: Group Policy, replication, sites and subnets, and account lifecycle in accordance with security, privacy, and regulatory best practices.
  • Provide engineering support for Azure Virtual Desktop identity integration, including app registrations.
  • Configure and maintain internal and public DNS, including cloud-hosted zones and hybrid resolution architectures.
  • Administer enterprise PKI / Active Directory Certificate Services, including certificate issuance, renewal automation, and certificate lifecycle management for applications, infrastructure, and workload identities.
  • Build and manage identity infrastructure as code using tools such as Terraform, Azure CLI, PowerShell, and CI/CD pipelines.
  • Develop API-driven integrations (Microsoft Graph, AWS APIs, REST) for cross-application interoperability and automated identity workflows.
  • Create best-practice documentation and runbooks to be leveraged by infrastructure and security teams.
  • Anticipate, identify, respond to, and resolve problems affecting identity systems performance, availability, and security.
  • Support technical M&A integration efforts, including directory consolidation, trust establishment, and identity migration.
  • Provide 3rd-tier escalation support for identity-related break/fix with application support teams, subsidiary IT staff, and the service desk.
  • Research emerging identity technologies and recommend solutions that improve security posture, cost effectiveness, and flexibility.
  • Performs other duties as assigned.

Benefits

  • career development is encouraged
  • excellence is rewarded
  • diversity is prized
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service