Sr. IAM Engineer

Lanteris Space Systems•Palo Alto, CA

1d•Remote

About The Position

Lanteris Space Systems is seeking an experienced Identity and Access Management (IAM) Engineer to lead the transition and ongoing management of our enterprise IAM program. This role can be based remotely in the US. This position will play a pivotal role as we shift responsibility from our sister company's managed services to an in-house IAM team. The ideal candidate will be responsible for creating transition plans, implementing integrations, and performing configuration and administration across our identity ecosystem. We're looking for a hands-on expert who can establish IAM operational standards, optimize directory services, manage access lifecycles, ensure cloud security, and maintain compliance with regulatory frameworks. If you have deep expertise in Active Directory, Entra ID/Azure AD, and cloud IAM technologies, with a strong background in governance and automation, we want to hear from you.

Requirements

Must be a US Citizen or US Person
Bachelor's Degree in the following area(s): Computer Science, Cybersecurity, or related field. Four additional years of experience may be substituted for a degree
Minimum of 8 years of hands-on experience in IAM engineering or architecture roles.
Experience with Active Directory, Entra ID/Azure AD, LDAP, MFA, and SSO technologies.
Experience in cloud IAM (AWS, Azure, GCP) and federated identity management.
Experience integrating identity platforms with SaaS and on-premises applications.
Experience with identity governance and administration (IGA) tools and best practices.
Experience in scripting languages (e.g., PowerShell, Python) for IAM automation.

Nice To Haves

Professional certifications such as CISSP, Microsoft Certified: Identity and Access Administrator Associate, AWS Certified Security – Specialty, or similar.
Experience implementing or managing IAM components within regulated or DoD/CMMC environments.
Strong collaboration skills and ability to guide cross-functional teams through complex IAM transitions.

Responsibilities

Program Transition and Ownership Lead the in-sourcing and knowledge transfer process from the current managed service provider.
Establish IAM operational standards, processes, and documentation for internal management.
Design and implement IAM governance aligned with corporate cybersecurity and compliance frameworks.
Identity Platform Administration Administer and optimize Active Directory (AD), Azure AD / Entra ID, LDAP, and Group Policy Objects (GPOs).
Manage domain join policies, trust relationships, and directory synchronization.
Configure and maintain Multi-Factor Authentication (MFA), conditional access, and passwordless authentication mechanisms.
Access Lifecycle Management Oversee user provisioning, deprovisioning, and access reviews across enterprise systems (cloud, on-prem, SaaS).
Integrate IAM with HR and ITSM systems for automated identity lifecycle workflows.
Define and enforce least-privilege access and role-based access control (RBAC) models.
Cloud and Application Security Manage IAM integrations with AWS IAM, Azure, and SaaS applications using SAML, OIDC, and OAuth.
Ensure consistency of IAM policies across hybrid and multi-cloud environments.
Work closely with enterprise architects to design secure authentication and authorization patterns.
Monitoring and Continuous Improvement Implement IAM-related threat detection and auditing processes.
Maintain compliance with regulatory frameworks (e.g., NIST 800-53, NIST 800-171, CMMC, ISO 27001).
Continually evaluate IAM solutions for modernization, automation, and risk reduction.