Senior Identity and Access Management (IAM) Engineer

Randstad is seeking a highly experienced and results-driven Senior Identity and Access Management (IAM) Engineer to join our clients team in the Washington D.C. area. This critical role involves leading the design implementation and governance of enterprise authentication systems including Active Directory Azure AD and cloud-based identity providers. The successful candidate will be the subject matter expert responsible for deploying a robust Privileged Access Management (PAM) solution establishing stringent authentication policies within a Cardholder Data Environment (CDE) and ensuring all IAM practices meet rigorous security and compliance standards particularly PCI-DSS. This position requires a proven ability to drive complex projects from initial planning through execution making it ideal for a strategic thinker with deep hands-on technical skills and a strong focus on enterprise-level security architecture.

• Lead the architecture design and implementation of enterprise-level authentication systems including Microsoft Active Directory Azure AD and various cloud-based identity providers.
• Implement and manage a robust Privileged Access Management (PAM) system to enforce secure authentication session management and access controls for privileged accounts across the enterprise.
• Develop enforce and maintain comprehensive authentication policies and standards specifically within the sensitive Cardholder Data Environment (CDE) ensuring maximum security posture.
• Act as the primary driver for complex IAM projects managing all phases from initial planning and scoping through execution on-time delivery and successful integration with business objectives.
• Collaborate cross-functionally with security infrastructure and application development teams to ensure secure seamless and compliant authentication and authorization experiences for all systems.
• Ensure all identity and access management solutions and processes are fully compliant with PCI-DSS Zero Trust Architecture principles and other relevant security frameworks.
• Provide expert-level technical guidance and troubleshooting for all core identity services (LDAP Kerberos SAML OAuth etc.) to resolve complex issues and maintain system availability.

• Bachelors degree in Computer Science Information Technology or a closely related field or equivalent practical experience.
• Minimum of 5 years of progressive experience in systems engineering with a dedicated focus on authentication security and identity management.
• Strong verifiable hands-on expertise with core directory services including Active Directory Azure AD LDAP Kerberos and Single Sign-On (SSO) technologies.
• In-depth knowledge and hands-on experience with the implementation and management of Privileged Access Management (PAM) solutions.
• Solid understanding of industry security frameworks and compliance standards with specific and demonstrated experience in adhering to PCI-DSS requirements for identity and access control.
• Practical experience and conceptual understanding of Zero Trust Architecture principles and their application within an enterprise environment.
• Excellent analytical problem-solving and communication skills with the ability to lead and collaborate effectively across technical and non-technical teams.

Required Skills :

Basic Qualification :

Additional Skills :

Background Check : No

Drug Screen : No