Lead Federated Identity Cybersecurity Engineer

The Lead Federated Identity Cybersecurity Engineer is a senior technical leader responsible for owning and evolving the enterprises federated identity management (FIM) and Privileged Access Management (PAM) infrastructure. This role will act as the primary subject matter expert (SME) for FIM and PAM solutions ensuring they meet business and security objectives. Key responsibilities include owning the product lifecycle defining roadmaps overseeing system integrations developing technical documentation and leading the training of junior engineers and stakeholders. This position ensures operational excellence while contributing to long-term strategies to enhance identity security and zero-trust principles.

Essential Job Functions:

Strategic Ownership and Leadership:

• Serve as the SME for FIM and PAM providing guidance to technical teams and leadership.
• Own the lifecycle of FIM and PAM solutions including roadmap planning vendor management and upgrades.
• Identify and drive improvements to existing identity management solutions.
• Act as the primary technical advisor for projects requiring identity integration.
• Develop and maintain standards policies and best practices for FIM and PAM.

Federated Identity Management Operations:

• Lead the deployment and management of federated identity solutions using SAML OIDC OAuth and related protocols.
• Oversee the integration of FIM solutions with enterprise directories applications and cloud services.
• Manage configuration and lifecycle workflows for FIM and PAM systems ensuring scalability and security.
• Monitor federated authentication and authorization systems addressing performance and security issues proactively.
• Develop advanced reporting and dashboards to track system health user activity and policy compliance.

Training and Knowledge Sharing:

• Train and mentor junior engineers and operational teams on FIM and PAM technologies and processes.
• Conduct workshops and knowledge-sharing sessions to improve organization-wide understanding of federated identity and privileged access security.
• Collaborate with cross-functional teams to align security protocols with business needs.

Operational Excellence:

• Maintain and update technical documentation including architecture diagrams configuration details and troubleshooting guides.
• Conduct periodic reviews and penetration testing of FIM and PAM infrastructure to ensure resilience.
• Lead incident response efforts related to FIM/PAM systems providing expert-level troubleshooting and root-cause analysis.
• Represent the organization in discussions with vendors external partners and audit teams regarding FIM and PAM capabilities.

KNOWLEDGE AND EXPERIENCE

• A minimum of seven (7) to ten (10) years of technology experience working full-time in a cybersecurity or related role with information security duties.
• A minimum of one (1) year experience working with identity infrastructure solutions
• Working knowledge of FIM and PAM technologies and functionalities
• Superior communication skills both verbal and written.
• Excellent analytical and problem-solving skills.
• Detail-oriented and proactive approach to work.
• Knowledge of cybersecurity standards (NIST CSF NIST SP 800-53 ISO 27001 Mitre Att&ck).
• Experience with common IdP and SP platforms (e.g. Azure AD Okta ADFS).
• Knowledge of directory services (e.g. Active Directory LDAP)
• Technical knowledge and ability to use software systems and procedures to support the department.
• Bachelors degree in computer science Cybersecurity Information Technology or a related field or equivalent work experience.

Preferred

• Experience with Active Directory Okta Ping SailPoint and other Identity Access Management Platforms
• Experience with CyberArk and Privileged Access Management
• Certified training in Security Management. CISSP CCSP Security or similar.