Active Directory engineer (IAM) - Security (Onsite)
Washington, DC, DC
Contracted
Experienced
Job Title: Active Directory engineer (IAM) - Security (Onsite)
Location: Washington, DC
Duration: 12 Months+
Job Description:
Messaging and Directory Services Subject Matter Expert (SME) position requires in-depth knowledge of Microsoft-based infrastructure design and development, messaging and directory services best-practices and advanced knowledge of systems engineering, operations and management. The consultant should have architect level experience planning, documenting, installing, managing, monitoring, and troubleshooting high-availability Exchange Server 2013, 2016, and 2019 environments. Active Directory for Windows Server 2012/2016/2019, a wide range of wireless messaging technologies and advanced knowledge of messaging security and hygiene. O365 and Azure AD.
Skills with Azure AD and cloud authentication
Responsibilities:
Skills:
Location: Washington, DC
Duration: 12 Months+
Job Description:
Messaging and Directory Services Subject Matter Expert (SME) position requires in-depth knowledge of Microsoft-based infrastructure design and development, messaging and directory services best-practices and advanced knowledge of systems engineering, operations and management. The consultant should have architect level experience planning, documenting, installing, managing, monitoring, and troubleshooting high-availability Exchange Server 2013, 2016, and 2019 environments. Active Directory for Windows Server 2012/2016/2019, a wide range of wireless messaging technologies and advanced knowledge of messaging security and hygiene. O365 and Azure AD.
Skills with Azure AD and cloud authentication
- Single sign-on and federation solutions including operations and implementation knowledge of products (such as Azure AD, MFA, SecureAuth, OKTA)
- Privilege accounts lifecycle management solutions including operations and implementation knowledge of products
- Azure AD Identity & Access management skills such as (permission sets, policies, and roles management); proficient in providing guidance on least privilege to business partners
- Manage Identity Governance and Administration (IGA) provisioning tools
- Assist with maintaining M365 accounts, permissions, and applications
- Maintain Single Sign-on (SSO) and multi-factor authentication (MFA) solutions.
- Integration with user directories (including Active Directory, LDAP, Azure, etc.)
- Installation of new software releases and system upgrades
- Evaluate and install patches; resolve software related problems
- Provide technical support by utilizing working knowledge of IAM systems, browsers, etc.
- Assist with integration, implementation, and administration of systems
- Familiarity with software development lifecycle (SDLC)
- Hands-on development/coding
- Integrating on-premise applications with a SSO solution and multiple IdPs using SAML
- Utilize IAM (Identity and Access Management) programs to enable government clients to protect against digital identity risks.
- Provide appropriate access to applications, systems, and data with advanced authentication.
- Oversee the spread of information with privileged access management.
- Verify identity utilizing a wide range of IAM solutions and advanced authentication methods.
Responsibilities:
- Expertise in implementing, administrating and operating information security technologies such as firewalls, IDS/IPS, SIEM, Antivirus, network traffic analyzers and malware analysis tools.
- Utilizes advanced experience with scripting and tool automation such as Perl, PowerShell, Regex.
- Develops, leads, and executes information security incident response plans.
- Develops standard and complex IT solutions & services, driven by business requirements and industry standards.
- May also leverage dynamic and static code assessment tools to measure vulnerability of applications throughout the SDLC.
Skills:
| Skills | Required / Desired | Amount | of Experience |
| Prior experience as technical support to security technologies for implementation, evolution and operations of the authentication infrastructure | Required | 6 | Years |
| Experience with Secure Authentication Systems, deployment and operation | Required | 6 | Years |
| Experience with Managed Public Key Infrastructure (PKI) Solution, deployment and operation is a MUST | Required | 6 | Years |
| PowerShell scripting | Required | 6 | Years |
| Experience with strong authentication technologies and protocols | Required | 6 | Years |
| Expert knowledge of O365 | Required | 5 | Years |
| Experience troubleshooting and resolving AD issues | Required | 6 | Years |
| Prior hands on experience with SSL | Required | 6 | Years |
| Experience with Active Directory | Required | 6 | Years |
| Experience with LDAP is a MUST | Required | 6 | Years |
| Experience with Radius | Required | 6 | Years |
| Experience with NTLM, Kerberos authentication is a MUST | Required | 6 | Years |
| Experience with SAML, ADAL, WS-TRUST is a MUST | Required | 5 | Years |
| Experience/familiarity with one or more of these technologies: RSA Secure ID, Cisco ACS, SecureAuth, ADFS, OneLogin, Okta is a MUST | Required | 6 | Years |
| 6-10 yrs leading projects, ensuring they are in compliance with established standards/procedures | Required | 6 | Years |
| Bachelor’s degree in IT or related field or equivalent experience | Desired |
Apply for this position
Required*