CrawlJobs Logo

Identity Governance and Administration (IGA) Engineer

United States, Tampa · Job Posted March 19, 2026
Apply Position
Job Link Share

Job Description

Barbaricum is seeking an Identity Governance and Administration (IGA) Engineer to support identity lifecycle management within a USSOCOM Zero Trust program. This role will lead the deployment and administration of SailPoint identity governance platforms across classified and unclassified environments. The selected candidate will implement identity lifecycle automation processes and ensure access to sensitive data is governed by dynamic, attribute-driven policies that align with Zero Trust principles.

Job Responsibility

  • Deploy and administer SailPoint IdentityNow or IdentityIQ across enterprise environments
  • Design and automate identity lifecycle processes including Joiner, Mover, and Leaver (JML) workflows
  • Define and manage identity attribute schemas supporting Attribute-Based Access Control (ABAC) models
  • Implement access certification campaigns and governance processes to maintain compliance with audit requirements
  • Develop and maintain role-based and attribute-based access models within SailPoint
  • Integrate SailPoint with Active Directory, Azure Active Directory (Entra ID), and enterprise applications
  • Support synchronization of identity data across classified and unclassified networks

Requirements

  • Active DoD Top Secret clearance with SCI eligibility
  • Bachelor’s or Master’s degree in Cybersecurity, Information Technology, Computer Science, or related field
  • 3–10 years of relevant experience (Journeyman) or 10+ years of experience (Senior)
  • Hands-on experience implementing and administering SailPoint identity governance solutions
  • Strong knowledge of Active Directory, LDAP, and Azure Active Directory structures and management
  • Experience implementing Role-Based Access Control (RBAC), Separation of Duties (SoD), and access certification processes
  • Required: CompTIA Security+ CE (DoD 8570 IAT Level II)

Nice to have

  • Experience implementing Attribute-Based Access Control (ABAC) strategies
  • Familiarity with DoD Identity, Credential, and Access Management (ICAM) architectures
  • Experience integrating identity systems using REST, SCIM, or SOAP APIs
  • Prior experience supporting USSOCOM or other DoD organizations
  • Preferred: SailPoint Certified IdentityNow Engineer or SailPoint Certified IdentityIQ Engineer
  • Preferred: Certified Identity and Access Manager (CIAM) or Certified Information Systems Auditor (CISA)

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Identity Governance and Administration (IGA) Engineer

8 matching positions

IAM Security Engineer – Identity Governance & Administration

We are seeking a Senior IAM Security Engineer specializing in Identity Governanc...
Location
Location
United States , Indianapolis
Salary
Salary:
40.00 - 48.00 USD / Hour
solomonpage.com Logo
Solomon Page
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Information Security, Computer Science, or related field (or equivalent experience)
  • Strong hands-on experience with IGA platforms such as SailPoint and/or Saviynt
  • Experience managing user, entitlement, privileged, and non-human identity certifications
  • Solid understanding of IAM concepts including: Least privilege and access governance, Role-Based Access Control (RBAC), Non-human identity management, Joiner / Mover / Leaver (JML) lifecycle
  • Experience supporting access governance audits and compliance activities
  • Strong Excel and documentation skills
  • Strong project coordination or project management experience
Job Responsibility
Job Responsibility
  • IGA Certification Lifecycle Execution
  • Own the end-to-end lifecycle of access certifications, including design, configuration, launch, monitoring, escalation, closure, and documentation
  • Configure and manage certifications within SailPoint and Saviynt
  • Define certification parameters including scope, reviewers, schedules, escalation rules, and completion criteria
  • Monitor certification campaigns daily and manage reviewer follow-ups, escalations, and overdue items
  • Post-Certification Remediation & Follow-Through
  • Manage all post-certification remediation activities
  • Partner with IAM provisioning teams and application owners to ensure remediation activities are properly executed
  • Ensure certifications are closed with complete, audit-ready documentation and evidence
  • Audit Readiness & Governance
What we offer
What we offer
  • medical
  • dental
  • 401(k)
  • direct deposit
  • commuter benefits
  • Fulltime
Read More
Arrow Right

Engineer, Identity and Access Management

As an Identity Engineer, you will be responsible for the design, implementation,...
Location
Location
United States
Salary
Salary:
66379.50 USD / Year
stridelearning.com Logo
Stride, Inc.
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Five (5+) years of experience in identity & access management, user administration, or security compliance
  • Documented experience and a solid understanding of identity lifecycle management, credential management, role-based access, and identity governance
  • Demonstrable experience with identity management & administration tools and practices
  • Prior in-depth expertise with Active Directory, Entra ID, and SailPoint Identity Security Cloud required
  • Hands-on experience with Privileged Identity Management systems required
  • In-depth understanding of leading-edge identity governance - enabling technologies & practices
  • Strong demonstrated ability to gain consensus and support across diverse functions and departments
  • Excellent communication and presentation skills (verbal and written)
  • Experienced guiding stakeholders with risk-based decision-making
  • Ability to identify, document, and communicate information security issues to business and information owners
Job Responsibility
Job Responsibility
  • Design, implement, and maintain Stride’s Identity Governance, Management, Privileged Access Management technologies and Access technologies
  • Enforce company policies and procedures related to IAM, IGA, and PAM
  • Update and maintain policies, standards, and procedures as needed
  • Work with other IT team members to ensure seamless integrations into the overall IT infrastructure
  • Develop architecture diagrams, process workflows, and technical documentation for identity governance frameworks
  • Design and implement API integrations to enhance automation and system interoperability
  • Work with DevOps and engineering teams to integrate IAM capabilities into cloud and hybrid environments
  • Troubleshoot IAM & IGA issues and develop creative solutions to solve problems
  • Implement IGA & IAM controls & support IT IAM Controls testing (SOX and non-SOX)
  • Create detailed technical documentation and architecture diagrams to support IAM and PAM initiatives
What we offer
What we offer
  • Health benefits
  • Retirement contributions
  • Paid time off
  • Eligible employees may receive a bonus
  • Fulltime
Read More
Arrow Right

Senior Cyber Security Engineer II-Identity Governance

The Sr. Cyber Security Engineer II – Identity Governance is a pivotal role respo...
Location
Location
United States , Framingham
Salary
Salary:
139000.00 - 191000.00 USD / Year
staplespromo.com Logo
Staples Promotional Products
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Cybersecurity, Computer Science, or a related field or equivalent work experience
  • 10 or more years of progressively complex experience in cybersecurity
  • Proven experience with cybersecurity frameworks (e.g., NIST, ISO 27001)
  • Hands-on experience with security systems, including firewalls, intrusion detection systems, anti-virus software, authentication systems, log management, and content filtering
  • Knowledge of network protocols and data encryption methods
  • Hands-on experience supporting Active Directory in an enterprise environment
  • Practical experience with identity and access management concepts including: user lifecycle provisioning, entitlement management, role-based access control (RBAC)
  • Experience building or supporting application integrations with an IGA platform
  • Experience supporting SSO and authentication integrations
  • Working knowledge of conditional access and modern authentication controls
Job Responsibility
Job Responsibility
  • Engineer, maintain, and secure Active Directory components including domains, OUs, group structures, service accounts, and delegated administration models
  • Support hybrid identity patterns integrating on‑premises Active Directory with cloud identity platforms
  • Partner with infrastructure and cloud teams to ensure directory services are resilient, monitored, and aligned to security best practices
  • Apply Zero Trust security concepts to identity systems, recognizing Active Directory and identity connectors as high‑risk control plane assets
  • Support privileged access separation, administrative role scoping, and least‑privilege enforcement across identity platforms
  • Participate in hardening initiatives to reduce privilege escalation paths and credential exposure within identity services
  • Implement and support SSO and federation integrations using industry‑standard protocols (SAML, OIDC, OAuth)
  • Assist in designing and maintaining conditional access policies based on user risk, role, device posture, and authentication context
  • Troubleshoot authentication and authorization issues across directories, identity providers, and integrated applications
  • Support joiner / mover / leaver lifecycle processes across Active Directory and downstream applications
What we offer
What we offer
  • Competitive base salary + bonus on eligible positions
  • 22 days plus 7 major holidays and 1 floating holiday
  • Company match 401(k) plan
  • Online and retail discounts
  • Physical and mental health wellness programs
  • Daycare, cafeteria, fitness center, and coffee shop at our HQ
  • Inclusive culture with associate-led Business Resource Groups
  • Fulltime
Read More
Arrow Right

Identity and Access Management Engineer

We are seeking an Identity and Access Management Engineer to design and protect ...
Location
Location
United States , San Jose
Salary
Salary:
133400.00 - 200000.00 USD / Year
archer.com Logo
Archer Aviation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5 plus years of experience in Identity and Access Management or related roles, with a minimum of 2 years in a senior or architect-level capacity
  • Hands-on design and implementation experience with enterprise Identity Providers such as Okta, Azure AD (Active Directory), or Ping Identity
  • Deep technical understanding of authentication protocols and standards, including OIDC, SAML, OAuth 2.0, and LDAP
  • Extensive experience designing and operating Privileged Access Management (PAM) solutions, preferably Delinea, including credential vaulting, session recording, and approval workflows
  • Working knowledge of RBAC (Role-Based Access Control) design and implementation, with the ability to map complex organizational hierarchies to access policies
  • Experience implementing and managing Multi-Factor Authentication (MFA) technologies such as FIDO2, Okta Verify, Duo Security, YubiKey, and PKI-based authentication
  • Strong understanding of NIST SP 800-171 and CMMC Level 2 requirements, specifically as they relate to access control, audit logging, and identity governance
  • Proficiency in scripting and automation using PowerShell, Python, or Bash to automate identity workflows, audit processes, and integrations
  • Excellent communication skills to translate complex identity architecture and compliance requirements to both technical teams and executive leadership
Job Responsibility
Job Responsibility
  • Design and implement Zero Trust Architecture (ZTA) across Archer's enterprise network, eliminating implicit trust and enforcing continuous verification of user identity and device posture before granting access
  • Architect and maintain Okta as the authoritative Identity Provider (IdP) for Archer, managing Single Sign-On (SSO), Multi-Factor Authentication (MFA), and user lifecycle management across all enterprise applications and SaaS platforms
  • Design and implement Privileged Access Management (PAM) using Delinea, including credential vaulting, privileged session management, and automated credential rotation for administrative and service accounts
  • Implement Identity Governance and Administration (IGA) controls to enforce role-based access control (RBAC), segregation of duties, periodic access reviews, and just-in-time (JIT) access provisioning
  • Build and maintain federated identity standards (OIDC, SAML, SCIM) to enable secure integration between Archer's identity platform and third-party applications, cloud providers, and vendor systems
  • Conduct access control audits and design remediation strategies to ensure compliance with NIST SP 800-171 Access Control (AC) requirements, CMMC Level 2 practices, and SOX ITGC expectations for financial systems
  • Implement automated audit logging and session recording for all authentication and privileged access events, ensuring that individual users' actions can be uniquely traced for compliance investigations and forensic analysis
  • Secure third-party and contractor access by implementing time-limited, role-restricted access provisioning and automated de-provisioning upon project completion or relationship termination
  • Stay current with emerging identity threats, attack vectors, and security best practices, including insider threats, account takeover (ATO), and lateral movement techniques
  • Provide technical guidance and training to IT, application, and security teams on identity best practices and policy enforcement
  • Fulltime
Read More
Arrow Right

Identity and Access Management Engineer

The Identity and Access (IAM) Engineer will help mature Clark’s security posture...
Location
Location
United States , McLean; Baltimore
Salary
Salary:
Not provided
clarkconstruction.com Logo
Clark Construction Company
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in the information technology field
  • 3+ years of experience of IAM-related experience
  • Strong oral communication and writing skills
  • Ability to collaborate across business units and engage with stakeholders
  • Proficient knowledge of IAM concepts
  • Authentication Methods
  • Least Privilege Access
  • Experience integrating with account and access management technologies
  • APIs
  • SCIM
Job Responsibility
Job Responsibility
  • Identity and Access Governance (IGA) Administration
  • Administer and maintain the IGA platform (Saviynt)
  • Onboarding new applications to the platform
  • Resolve IAM-related issues
  • Authentication and Authorization Administration
  • Configure and maintain single sign-on (SSO) integrations
  • Administer and maintain SSO platforms
  • Identity Lifecycle Management
  • Automate user provisioning and de-provisioning processes.
  • Develop and maintain role and attribute-based access controls.
  • Fulltime
Read More
Arrow Right

Senior Solutions Engineer Identity - East

Location
Location
United States , New York
Salary
Salary:
198000.00 - 273000.00 USD / Year
paloaltonetworks.com Logo
Palo Alto Networks
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • A passion for working with customers and a deep belief in problem solving as a team sport
  • Advanced knowledge (3-5 years) of Identity & Access Management, Identity Governance and Administration and/or Endpoint Security related technology – i.e., MFA/SSO, IDP/Directory Services/Federation, OAuth, OIDC, Identity lifecycle management, No-Code/Low-Code automation, Least Privilege principles, and other related topics
  • Knowledge of Identity & Access Management vendors and products
  • ability to compare with CyberArk products
  • An emphasis on (IAM/IGA) vendors and technologies in use across large enterprises for both on-premises and cloud is preferred
  • Exposure to and or administering identity platforms/directories like CyberArk, Active Directory, LDAP, SailPoint, Saviynt, Okta, or Microsoft Entra ID
  • An understanding of security concepts and the development of security roles within organizations that meet functional, technical, and regulatory requirements
  • Proficiency with REST APIs and use of API testing tools like Postman or Bruno
  • Deep understanding of IAM Compliance, Governance, Lifecycle and Workflows best practices
  • Excellent communication skills, with a strong drive to teach, document, and enable others
Job Responsibility
Job Responsibility
  • Act as a Subject Matter Expert (SME) to support both our Workforce IAM and IGA initiatives across the Central US region
  • Work directly with customers and prospects to understand their business goals and design secure, scalable identity solutions that meet them
  • Lead engaging product demonstrations, run workshops, guide evaluations, and partner with Sales Specialists to drive opportunities from discovery through technical close
  • Play a proactive role in the field beyond deal cycles—supporting marketing efforts that generate new pipeline, contributing to technical content like demos and videos, and offering real-world feedback to Product teams to make our solutions better
  • Clearly explain technical capabilities, identify integration paths, and troubleshoot challenges
  • Fulltime
Read More
Arrow Right

Senior Solutions Engineer Identity - East

CyberArk is looking for a customer-obsessed, technically curious Solutions Engin...
Location
Location
United States , New York
Salary
Salary:
198000.00 - 273000.00 USD / Year
paloaltonetworks.it Logo
Palo Alto Networks Italia
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • A passion for working with customers and a deep belief in problem solving as a team sport
  • Advanced knowledge (3-5 years) of Identity & Access Management, Identity Governance and Administration and/or Endpoint Security related technology – i.e., MFA/SSO, IDP/Directory Services/Federation, OAuth, OIDC, Identity lifecycle management, No-Code/Low-Code automation, Least Privilege principles, and other related topics
  • Knowledge of Identity & Access Management vendors and products
  • ability to compare with CyberArk products
  • An emphasis on (IAM/IGA) vendors and technologies in use across large enterprises for both on-premises and cloud is preferred
  • Exposure to and or administering identity platforms/directories like CyberArk, Active Directory, LDAP, SailPoint, Saviynt, Okta, or Microsoft Entra ID
  • An understanding of security concepts and the development of security roles within organizations that meet functional, technical, and regulatory requirements
  • Proficiency with REST APIs and use of API testing tools like Postman or Bruno
  • Deep understanding of IAM Compliance, Governance, Lifecycle and Workflows best practices
  • Excellent communication skills, with a strong drive to teach, document, and enable others
Job Responsibility
Job Responsibility
  • Act as a Subject Matter Expert (SME) to support both our Workforce IAM and IGA initiatives across the Central US region
  • Work directly with customers and prospects to understand their business goals and design secure, scalable identity solutions
  • Lead engaging product demonstrations, run workshops, guide evaluations, and partner with Sales Specialists to drive opportunities from discovery through technical close
  • Support marketing efforts that generate new pipeline
  • Contribute to technical content like demos and videos
  • Offer real-world feedback to Product teams to make our solutions better
  • Fulltime
Read More
Arrow Right

Senior IGA Engineer

Senior IGA Engineer IAM Role Summary: We are seeking a highly motivated, self st...
Location
Location
United States , Plano
Salary
Salary:
114000.00 - 152000.00 USD / Year
citizensbank.com Logo
Citizens Bank
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong systems engineering experience with emphasis on IGA, IDM, BPM, workflow, and process engineering
  • Experience supporting cloud based and hybrid deployments including AWS and Azure
  • Seven or more years of hands on experience with one or more IGA platforms such as SailPoint, Saviynt, ForgeRock IDM, Okta IGA, Omada, Entra ID, or similar tools
  • Strong understanding of Active Directory and Entra ID identity and access models
  • Hands on development experience with Java and JavaScript
  • Experience with CI CD pipelines and source controlled code deployments
  • Strong Bash or shell scripting skills
  • Experience integrating systems via APIs, including building custom integrations using Spring Boot or Node.js
  • Strong foundation in Linux and Windows systems administration
  • Experience working with relational databases, with strong preference for PostgreSQL
Job Responsibility
Job Responsibility
  • Design, implement, and support IGA and privileged access management solutions in alignment with established security standards
  • Lead technical execution of IGA initiatives, including onboarding applications, workflows, certifications, and access controls
  • Contribute to the definition and improvement of standards, processes, and documentation supporting IAM and IGA solutions
  • Identify and implement opportunities for automation across identity lifecycle and access governance processes
  • Build and enhance IGA environments, including greenfield or expansion implementations
  • Collaborate with security architecture, engineering, and operations teams to ensure solutions integrate cleanly across platforms
  • Provide technical guidance and knowledge sharing with peers and junior engineers
  • Troubleshoot complex identity, access, and integration issues across platforms and environments
  • Effectively manage multiple priorities in a fast paced and evolving environment
What we offer
What we offer
  • comprehensive medical, dental, and vision coverage
  • retirement benefits
  • maternity and paternity leave
  • flexible work arrangements
  • education reimbursement
  • wellness programs
  • Citizens paid time off exceeds local and state requirements
  • eligibility for an annual discretionary bonus
  • Fulltime
Read More
Arrow Right