CrawlJobs Logo
Brightstar Lottery Logo Brightstar Lottery · IT - Administration

Identity and Directory Services Engineer

United States, Lakeland 38281.00 USD / Year · Job Posted February 08, 2026
Apply Position
Job Link Share

Job Description

We’re looking for an Identity and Directory Services Engineer who is passionate about building secure, scalable identity and directory solutions. In this role, you’ll design, implement, and maintain enterprise-class Active Directory (AD) and Identity and Access Management (IAM) systems that keep our global network secure and efficient. You’ll collaborate with infrastructure, security, and application teams to deliver solutions that support thousands of users across on-premises and cloud environments.

Job Responsibility

  • Architect and implement Active Directory (AD) solutions for enterprise-scale environments
  • Develop secure domain structures, organizational units (OUs), and trust relationships
  • Install, configure, and maintain AD Domain Services, DNS (Domain Name System), DHCP (Dynamic Host Configuration Protocol), and Group Policy Objects (GPOs)
  • Manage LDAP (Lightweight Directory Access Protocol) integrations and certificate services for secure communications
  • Deploy and maintain identity synchronization tools such as Microsoft Identity Manager (MIM) and Azure AD Connect
  • Implement lifecycle processes for provisioning, de-provisioning, and role-based access control (RBAC)
  • Integrate identity data between HR systems and directories for consistent governance
  • Apply best practices for AD security, including tiered administrative models and privileged access design
  • Conduct audits, vulnerability scans, and remediation to maintain compliance
  • Develop PowerShell scripts and automation workflows for AD operations and reporting
  • Monitor system health and performance using enterprise tools
  • Resolve complex identity and authentication issues across hybrid environments
  • Collaborate with cross-functional teams to ensure seamless integration and governance

Requirements

  • Bachelor’s degree in Computer Science, Information Technology, or related field (or equivalent experience)
  • 4+ years of experience in Active Directory and identity management
  • Strong knowledge of DNS, DHCP, GPOs, LDAP, and certificate services
  • Familiarity with Microsoft security best practices and identity lifecycle management
  • Experience with PowerShell scripting and automation
  • Excellent problem-solving skills and ability to work collaboratively

Nice to have

  • Experience with Microsoft Identity Manager (MIM) and Azure AD Connect
  • Background in hybrid identity environments (on-premises and cloud)
  • Knowledge of compliance frameworks and security standards
  • Familiarity with automation and orchestration tools

What we offer

  • 401(k) Savings Plan with Company contributions
  • health, dental, and vision insurance
  • life, accident, and disability insurance
  • tuition reimbursement
  • paid time off
  • wellness programs
  • identity theft insurance
Brightstar Lottery - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Identity and Directory Services Engineer

8 matching positions

Active Directory and Azure Engineer

Active Directory and Azure Engineer Charlotte, NC - On site Skills: Active Dir...
Location
Location
United States , Charlotte
Salary
Salary:
Not provided
enormousenterprise.com Logo
Enormous Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Serve as a subject matter expert for Directory Services (AD / AAD) under the IAM services portfolio
  • Perform in the capacity of AD / AAD Engineer
  • Understand how the service works from a business/end-user/technical perspective
  • Have command of the service, including its capabilities and proper use
  • Execute proof-of-concepts guided by the Service Manager and Director
  • Complete assigned projects/tasks in a timely manner
  • Interact with key stakeholders and project/program teams to understand their requirements and architect solutions based on best practices
  • Ensure proper oversight for quality assurance of IAM artifacts
  • Architect, own, and maintain processes, metrics, and procedures
  • Enforce adherence to architectural standards/principles
Read More
Arrow Right

Identity and Access Management Engineer

We are looking for an Identity and Access Management Engineer to support secure ...
Location
Location
United States , Silver Spring
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven experience designing and supporting identity and access management solutions in complex enterprise environments
  • Strong knowledge of federation concepts and hands-on experience with OAuth 2.0, OpenID Connect, claims, and token-based authentication
  • Ability to develop process documentation and integration standards for onboarding enterprise applications
  • Experience improving identity lifecycle workflows, including user onboarding, role changes, and offboarding activities
  • Familiarity with access governance practices such as certification reviews, remediation tracking, and segregation of duties enforcement
  • Working knowledge of Active Directory-related technologies, including Group Policy Objects and enterprise access architecture
  • Understanding of supporting infrastructure domains such as server virtualization, enterprise storage, DevOps practices, and architecture standards
Job Responsibility
Job Responsibility
  • Architect and support identity federation integrations for enterprise platforms using modern authentication and authorization standards such as OAuth 2.0 and OpenID Connect
  • Establish and maintain trust relationships and secure sign-on configurations to ensure dependable access across connected applications
  • Create clear onboarding frameworks and technical documentation to streamline the integration of new business systems into the identity environment
  • Investigate and resolve complex authentication issues involving tokens, claims, and federated access flows
  • Drive improvements to joiner, mover, and leaver processes so that account provisioning and deprovisioning remain accurate and timely
  • Enhance access models and contribute to role engineering efforts that align user permissions with business responsibilities
  • Support access review activities by helping coordinate certification campaigns and tracking remediation work through completion
  • Reinforce segregation of duties controls and apply policy standards that reduce risk and strengthen governance
  • Collaborate with infrastructure and engineering teams on directory services, Group Policy Objects, virtualization, storage, and DevOps-related IAM dependencies
What we offer
What we offer
  • Medical insurance
  • Vision insurance
  • Dental insurance
  • Life insurance
  • Disability insurance
  • 401(k) plan
  • Free online training
  • Access to top jobs
  • Fulltime
Read More
Arrow Right

Identity and Access Management Engineer

We are seeking an Identity and Access Management Engineer to design and protect ...
Location
Location
United States , San Jose
Salary
Salary:
133400.00 - 200000.00 USD / Year
archer.com Logo
Archer Aviation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5 plus years of experience in Identity and Access Management or related roles, with a minimum of 2 years in a senior or architect-level capacity
  • Hands-on design and implementation experience with enterprise Identity Providers such as Okta, Azure AD (Active Directory), or Ping Identity
  • Deep technical understanding of authentication protocols and standards, including OIDC, SAML, OAuth 2.0, and LDAP
  • Extensive experience designing and operating Privileged Access Management (PAM) solutions, preferably Delinea, including credential vaulting, session recording, and approval workflows
  • Working knowledge of RBAC (Role-Based Access Control) design and implementation, with the ability to map complex organizational hierarchies to access policies
  • Experience implementing and managing Multi-Factor Authentication (MFA) technologies such as FIDO2, Okta Verify, Duo Security, YubiKey, and PKI-based authentication
  • Strong understanding of NIST SP 800-171 and CMMC Level 2 requirements, specifically as they relate to access control, audit logging, and identity governance
  • Proficiency in scripting and automation using PowerShell, Python, or Bash to automate identity workflows, audit processes, and integrations
  • Excellent communication skills to translate complex identity architecture and compliance requirements to both technical teams and executive leadership
Job Responsibility
Job Responsibility
  • Design and implement Zero Trust Architecture (ZTA) across Archer's enterprise network, eliminating implicit trust and enforcing continuous verification of user identity and device posture before granting access
  • Architect and maintain Okta as the authoritative Identity Provider (IdP) for Archer, managing Single Sign-On (SSO), Multi-Factor Authentication (MFA), and user lifecycle management across all enterprise applications and SaaS platforms
  • Design and implement Privileged Access Management (PAM) using Delinea, including credential vaulting, privileged session management, and automated credential rotation for administrative and service accounts
  • Implement Identity Governance and Administration (IGA) controls to enforce role-based access control (RBAC), segregation of duties, periodic access reviews, and just-in-time (JIT) access provisioning
  • Build and maintain federated identity standards (OIDC, SAML, SCIM) to enable secure integration between Archer's identity platform and third-party applications, cloud providers, and vendor systems
  • Conduct access control audits and design remediation strategies to ensure compliance with NIST SP 800-171 Access Control (AC) requirements, CMMC Level 2 practices, and SOX ITGC expectations for financial systems
  • Implement automated audit logging and session recording for all authentication and privileged access events, ensuring that individual users' actions can be uniquely traced for compliance investigations and forensic analysis
  • Secure third-party and contractor access by implementing time-limited, role-restricted access provisioning and automated de-provisioning upon project completion or relationship termination
  • Stay current with emerging identity threats, attack vectors, and security best practices, including insider threats, account takeover (ATO), and lateral movement techniques
  • Provide technical guidance and training to IT, application, and security teams on identity best practices and policy enforcement
  • Fulltime
Read More
Arrow Right

Senior Staff Identity and Access Management Engineer

GEICO is seeking an experienced Engineer with a passion for building high perfor...
Location
Location
United States , Chevy Chase; Palo Alto; Dallas; Seattle
Salary
Salary:
120000.00 - 260000.00 USD / Year
geico.com Logo
Geico
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of professional experience in technology or identity engineering
  • 8+ years of experience with security, identity, architecture, and design
  • 4+ years of experience with open-source frameworks is desired
  • 4+ years of experience with AWS, GCP, Azure, or another cloud service
  • 1+ years of people management experience
  • Bachelor’s degree in computer science, Information Systems, or equivalent education or work experience
  • Experience building the architecture and design (architecture, design patterns, reliability, and scaling) of new and current systems
  • Fluency in DevOps Concepts, Cloud Architecture, and the Software Development Lifecycle
  • Experience in security protocols and products: Understanding of Active Directory, Kerberos, LDAP, SAML, OAuth, and OIDC
  • Experience with continuous delivery and infrastructure as code
Job Responsibility
Job Responsibility
  • Lead execution and adoption of modern authentication and authorization mechanisms (SAML, OIDC/OAUTH2)
  • Engage peers and leaders at all levels
  • Consistently share best practices and improve processes within and across teams
  • Determine and support resource requirements, evaluate operational processes, measure outcomes to ensure desired results, and demonstrate adaptability and sponsoring continuous learning
  • Own the complete project lifecycle for application integrations of both on-premises and SaaS applications with our IGA platform
  • Collaborate with application team to implement tokenization solutions that reduce sensitive data exposure, thereby enhancing data security and minimizing the risk of unauthorized access
  • Stay at the forefront of emerging identity trends, technologies, and best practices, and apply this knowledge to enhance GEICO’s data protection strategies
  • Provide technical guidance and mentorship to the team, fostering a culture of innovation, collaboration, and continuous improvements
  • Collaborate with cross-functional teams, including security, compliance, and application teams to ensure the seamless integration and alignment of solutions with organizational goals
  • Build resilient and scalable architecture, driving innovation and cost efficiency
What we offer
What we offer
  • Comprehensive Total Rewards program that offers personalized coverage tailor-made for you and your family’s overall well-being
  • Financial benefits including market-competitive compensation
  • a 401K savings plan vested from day one that offers a 6% match
  • performance and recognition-based incentives
  • and tuition assistance
  • Access to additional benefits like mental healthcare as well as fertility and adoption assistance
  • Supports flexibility- We provide workplace flexibility as well as our GEICO Flex program, which offers the ability to work from anywhere in the US for up to four weeks per year
  • Fulltime
Read More
Arrow Right

Identity and Access Management Engineer

The Identity and Access Management (IAM) Engineer is accountable for the design,...
Location
Location
United States , Tucker
Salary
Salary:
99360.00 - 173900.00 USD / Year
gasoc.com Logo
Georgia System Operations
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Cybersecurity, Engineering, Information Systems, or a related field from an accredited college or university
  • Minimum of 4 years of experience implementing and operating enterprise IAM solutions, including SSO, MFA, identity lifecycle management, and directory services
  • Hands-on experience with enterprise IAM platforms such as Microsoft Entra ID (Azure AD), Okta, Ping Identity, or ForgeRock
  • Strong knowledge of SSO, MFA, conditional access, RBAC, ABAC, and Zero Trust architectures
  • Experience integrating IAM with Azure, AWS, and/or GCP
  • Working knowledge of Active Directory, Azure AD, LDAP, and identity synchronization
  • Experience with Privileged Access Management solutions and secure service account management
  • Experience with IAM and PAM platforms
  • Scripting and automation (PowerShell, Python preferred)
  • Logging and monitoring integrations with SIEM platforms
Job Responsibility
Job Responsibility
  • Design, implement, and operate enterprise IAM solutions across on-premises and cloud environments, including SSO, MFA, conditional access, RBAC, directory services, and application integrations
  • Own and continuously improve Joiner/Mover/Leaver processes using authoritative identity sources
  • Implement role- and attribute-based access models and automation to ensure timely provisioning and deprovisioning
  • Implement and operate PAM solutions for administrative and service accounts, enforcing least privilege, credential vaulting, session monitoring, and secure break-glass access
  • Support access reviews, audits, and regulatory assessments
  • Maintain IAM documentation, standards, and procedures
  • Identify and remediate identity-related risks and control gaps
  • Assist with identity-related incident response activities
  • Investigate authentication anomalies, improve IAM logging and monitoring, and enhance alerting and detection capabilities
  • Serve as the IAM subject-matter expert
What we offer
What we offer
  • Comprehensive medical, dental, and vision coverage
  • Strong retirement program
  • Career development
  • Flexible work schedules
  • Focus on wellness
  • Fulltime
Read More
Arrow Right

Identity and Access Management Engineer

We are seeking an Identity & Access Management (IAM) Security Specialist to supp...
Location
Location
United Arab Emirates , Dubai
Salary
Salary:
Not provided
parserdigital.com Logo
Parser Limited
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Computer Science, Information Security, or related field
  • equivalent experience accepted
  • 3–7 years of experience in Identity & Access Management, Identity Governance, or Security Operations
  • Proven experience reviewing and improving identity processes, procedures, and internal controls
  • Hands-on experience implementing or operating IAM platforms such as: OneLogin, Okta, SailPoint IdentityIQ / IdentityNow, Microsoft Entra ID (formerly Azure AD), AWS IAM, AWS SSO, or AWS Organizations
  • Strong understanding of authentication, authorization, SSO, MFA, federation, and identity protocols (SAML, OAuth2, OIDC, SCIM)
  • Experience with RBAC, least privilege, privileged access, and access attestation processes
  • Excellent communication and documentation skills
Job Responsibility
Job Responsibility
  • Review, assess, and optimize identity lifecycle processes, including onboarding, offboarding, access reviews, recertification, and role-based access control (RBAC)
  • Conduct access control audits of other applications such as Salesforce, Netsuite etc to identify and access control gaps and security issues. Work alongside Salesforce and Netsuite teams to close findings
  • Identify control gaps and recommend improvements to strengthen identity assurance and compliance
  • Ensure IAM processes meet regulatory, audit, and internal security requirements
  • Operational Management: Oversee the day-to-day operation and maintenance of IDAM controls and security solutions, ensuring high availability and optimal performance
  • Operate and monitor IAM controls across the environment, ensuring proper execution of provisioning, deprovisioning, and privilege assignment
  • Support day-to-day IAM operations, including user access requests, privileged access management (PAM) oversight, and multi-factor authentication (MFA) management
  • Conduct periodic access reviews, segregation of duties (SoD) assessments, and user entitlement analyses
  • Implement and configure IAM tools and platforms to support identity governance, SSO, MFA, directory services, and access control mechanisms
  • Integrate applications and systems into the IAM ecosystem using SAML, OAuth, OIDC, SCIM, and other relevant identity protocols
What we offer
What we offer
  • The chance to join an organization with triple-digit growth that is changing the paradigm on how software products are built
  • The opportunity to form part of an amazing, multicultural community of tech experts
  • A highly competitive compensation package
  • Fulltime
Read More
Arrow Right

Identity Governance and Privileged User Engineer

Join the IAM team to manage privileged access and identity governance. Work with...
Location
Location
Switzerland , Bioggio
Salary
Salary:
Not provided
avaloq.com Logo
Avaloq
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Degree in IT or a related field
  • 2–3 years of experience in PAM/IGA roles
  • Hands-on experience with One Identity Safeguard or similar tools (e.g., CyberArk, BeyondTrust, Delinea)
  • Strong Windows and Linux engineering skills
  • Solid knowledge of AD, Azure AD/Entra ID, LDAP, and authentication protocols
  • Proficiency in Terraform, Ansible, and PowerShell
  • SQL knowledge preferred
  • Strong documentation skills and a compliance-focused mindset
  • Fluent in English
Job Responsibility
Job Responsibility
  • Operate and maintain One Identity Safeguard
  • Manage credential policies, password rotation, and integrations
  • Onboard systems and accounts into PAM
  • Monitor platform health and troubleshoot issues
  • Support JML processes with One Identity Manager
  • Maintain workflows, mappings, and job server operations
  • Integrate new applications and validate access assignments
  • Maintain SOPs, runbooks, and audit-compliant records
  • Manage IAM components on Windows/Linux
  • Perform patching, hardening, and monitoring
What we offer
What we offer
  • Annual bonus
  • Flexible working
  • Instant recognition scheme
  • Access to Udemy for professional and personal learning
  • Fulltime
Read More
Arrow Right

Identity Governance and Privileged User Engineer

Join the IAM team to manage privileged access and identity governance. Work with...
Location
Location
Switzerland , Bioggio
Salary
Salary:
Not provided
avaloq.com Logo
Avaloq
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Degree in IT or a related field
  • 2–3 years of experience in PAM/IGA roles
  • Hands-on experience with One Identity Safeguard or similar tools (e.g., CyberArk, BeyondTrust, Delinea)
  • Strong Windows and Linux engineering skills
  • Solid knowledge of AD, Azure AD/Entra ID, LDAP, and authentication protocols
  • Proficiency in Terraform, Ansible, and PowerShell
  • SQL knowledge preferred
  • Strong documentation skills and a compliance-focused mindset
  • Fluent in English
  • German or French is a plus
Job Responsibility
Job Responsibility
  • Operate and maintain One Identity Safeguard
  • Manage credential policies, password rotation, and integrations
  • Onboard systems and accounts into PAM
  • Monitor platform health and troubleshoot issues
  • Support JML processes with One Identity Manager
  • Maintain workflows, mappings, and job server operations
  • Integrate new applications and validate access assignments
  • Maintain SOPs, runbooks, and audit-compliant records
  • Manage IAM components on Windows/Linux
  • Perform patching, hardening, and monitoring
What we offer
What we offer
  • Annual bonus
  • Flexible working
  • Instant recognition scheme
  • Access to Udemy for professional and personal learning
  • Fulltime
Read More
Arrow Right