Senior IAM Administrator

Job Description

Position : Sr. IAM Administrator

Location : Herndon VA Hybrid (Onsite 3 days in a week)

Duration : 1 years

Job Summary:

The Senior Identity and Access Management (IAM) Administrator is responsible for leading secure compliant identity solutions in alignment with organizational policies and CMMC requirements. Working as part of the IAM team this role manages user lifecycle processes enforces access governance and integrates IAM platforms with enterprise systems. The position collaborates closely with security compliance and other applicable teams to ensure that access controls meet both business needs and regulatory standards.

Job Description:

A strong emphasis is placed on advanced PowerShell scripting to automate provisioning deprovisioning bulk updates and auditing across Active Directory Azure AD and related services. The Senior IAM Administrator develops and maintains scripts to improve efficiency accuracy and compliance while also supporting IAM incident resolution and security monitoring. This role requires meticulous attention to detail a collaborative approach within the IAM team and the ability to ensure identity processes meet CMMC access control audit and reporting requirements.

Job Responsibilities:

• SME in IAM systems such as Microsoft Entra Okta Active Directory
• Strong coding skills with PowerShell and background in automation of tasks
• Create implement and document the following processes for the IAM Environment -
  • performance monitoring
  • problem troubleshooting / helpdesk response
  • utilization availability and growth patterns (capacity planning)
  • landscape design configuration and standards
  • 24/7 support escalation and SLA models
  • IMAC (installation move add change) services for systems and applications
  • change management methodology and communication strategy
• Create and maintain server/application diagrams and workflows
• Perform/coordinate incident diagnosis corrective action and root cause analysis
• Oversee the configuration testing installation modification and servicing of all server components and applications within the IAM landscape
• Independently organize work requests based on departmental priorities and system criticality
• Manage vendor relationships required for the evaluation installation modification upgrade repair and preventative maintenance of IAM Infrastructure components
• Function as a Subject Matter Expert (SME) and consultant to other Infrastructure groups (Cloud Operations Cyber Security and Systems Administration).
• Plan lead and perform comprehensive systems analysis and design activities including development of detailed functional requirements for new server infrastructure solutions
• Maintain responsibility for end-user (customer) satisfaction.

Job Skills:

• Expert level experience with Azure (compute network cost/usage analysis resource mgmt.)
• Expert level Microsoft Windows administration skills (AD DNS Group Policy file services IIS SQL)
• Expert level scripting: Especially PowerShell
• Professional industry certifications in area of expertise certification such as MCSE MCITP Microsoft Azure Fundamentals (AZ900) Microsoft Azure Administrator (AZ104) Azure Certified Solutions Architect (AZ303/304) or Okta certs.
• Linux experience with the following platforms: SUSE RedHat or CentOS
• Experience with integration of SEIM tools backups and monitoring tools
• Knowledge of Best Practice and security guides (ex. NIST 800-53 rev 4)
• Experience with implementation of CMMC guidelines within the IAM Environment

MUST HAVES:

• Bachelors degree in Computer Science / MIS / Information Technology or equivalent experience in Information Security Information Technology or related technical discipline
• Minimum 7 years Information Technology experience
• Minimum 4 years server and applications experience in fast-paced environment
• Expert in PowerShell commands and scripting/automation and customization of IAM processes and tasks
• Experience with JSON/Python other coding languages
• Experience or functional knowledge with Identity Management technologies including (but not limited to): Microsoft Entra Azure Active Directory Connect (Entra Connect) ADFS services LDAP Services JAMF
• Experience with Integration of Okta IdP Active Directory and Azure Active Directory (Microsoft Entra) Okta Workflow design implementation
• Experience with API integrations of third-party SaaS services
• Azure AD (Entra) and MEM (Intune) conditional access configuration app and management profiles
• Knowledge of Active Directory Group Policy
• Experience with industry standards and best practices in IAM such as SAML OpenID Connect OAuth LDAP MFA Fido2 YubiKey
• Understanding of REST fundamentals and design
• Knowledge of PKI Microsoft Certificate Services
• RSA SecurID Administration (Cloud and On-Prem)
• Working knowledge of TCP/IP and related networking protocols
• Experience with desktop operating systems and server environments
• Advanced experience in developing evaluating and implementing information security architectures technologies standards and practices to secure applications and IT systems
• Experience with the operation of firewalls Intrusion Detection Systems and 24x7 monitoring of these networks
• Advanced experience with enterprise and data center security policy design and deployment

Experience Matrix

Category

Skill / Responsibility

Metric

Response

Domain Experience

Department of Defense

Number of Years

Federal Government

Number of Years

Intelligence Community

Number of Years

IT

Number of Years

Security

Number of Years

IAM Leadership & Governance

Led secure compliant identity solutions in alignment with organizational policies and CMMC requirements

Number of Projects

Managed user lifecycle processes enforced access governance and integrated IAM platforms with enterprise systems

Number of Projects

Ensured access controls met both business needs and regulatory standards

Number of Projects

Scripting & Automation

PowerShell scripting (provisioning deprovisioning bulk updates auditing across AD/Azure AD)

Number of Projects

Developed/Maintained scripts for efficiency accuracy compliance IAM incident resolution and monitoring

Number of Projects

Ensured identity processes met CMMC access control/audit/reporting requirements

Number of Projects

Information Security

Developed/Evaluated/Implemented security architectures technologies standards practices

Number of Projects

Operated firewalls/IDS monitored networks (24x7)

Number of Projects

Designed/Deployed enterprise & data center security policies

Number of Projects

Programming Skills

PowerShell (commands scripting automation customization)

Number of Years

JSON coding

Number of Years

Python coding

Number of Years

IAM Standards & Tools

IAM Standards/Best Practices (SAML OpenID Connect OAuth LDAP MFA Fido2 YubiKey etc.)

Number of Years

Identity Management (Microsoft Entra Entra Connect ADFS LDAP JAMF etc.)

Number of Years

PKI / Microsoft Certificates Services

Number of Years

RSA SecurID Administration (Cloud & On-Prem)

Number of Years

Integrations

API Integration (SaaS services)

Number of Years

Okta / Active Directory / Azure AD (Entra) integrations

Number of Years

Okta workflow design & implementation

Number of Years

Infrastructure / Access Control

Azure AD (Entra) & MEM (Intune) conditional access configuration app & management profiles

Number of Years

Active Directory Group Policy

Number of Years

Networking & Systems

REST fundamentals & design

Number of Years

TCP/IP & related networking protocols

Number of Years

Desktop OS / Server Environments

Number of Years

Cloud & Security Compliance

Azure (compute network cost/usage analysis resource management)

Number of Years

Microsoft Windows Administration (AD DNS Group Policy file services IIS SQL etc.)

Number of Years

SEIM Tools / Backups / Monitoring

Number of Years

Best Practices / Security Guides (NIST 800-53 rev 4)

Number of Years

CMMC Guidelines

Number of Years

Client Roles

Senior IAM Administrator

List Client(s)

Other Server Administration / Architecture roles

List Client(s)

Other Senior/Lead Server Administration roles

List Client(s)

Certifications

Relevant Certifications

List Certification(s)

Feel free to reach out to