CrawlJobs Logo
Robert Half Logo Robert Half · IT - Administration

Lead Identity Access & Management Engineer

United States, Easton · Job Posted April 23, 2026
Apply Position
Job Link Share

Job Description

We are looking for a skilled Lead Identity Access & Management Engineer to join our team in Easton, Pennsylvania. This Contract to permanent position offers the opportunity to lead critical initiatives in Active Directory and cloud-based identity management solutions. The ideal candidate will bring expertise in designing and implementing secure access systems while driving strategic improvements.

Job Responsibility

  • Design, implement, and maintain Active Directory (AD) structures to enhance organizational efficiency
  • Develop and manage Group Policy Objects (GPOs) to ensure compliance and streamlined access control
  • Lead the transition and architecture planning for Active Directory cloud integration
  • Identify and address security vulnerabilities within identity and access management systems
  • Collaborate with cross-functional teams to map out and execute the organization's cloud migration strategy
  • Redefine and restructure existing AD configurations to align with best practices
  • Provide expert guidance on IAM technologies and processes to support business objectives
  • Monitor and optimize the performance of AD and IAM systems
  • Stay updated on industry trends and emerging technologies to enhance IAM solutions

Requirements

  • Extensive experience with Active Directory administration and architecture
  • Proven expertise in managing and configuring Group Policy Objects (GPOs)
  • Strong knowledge of identity and access management principles and technologies
  • Demonstrated ability to plan and execute cloud-based AD migrations
  • Familiarity with security protocols and methods to safeguard IAM systems

What we offer

  • medical, vision, dental, and life and disability insurance
  • eligible to enroll in our company 401(k) plan
Robert Half - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Lead Identity Access & Management Engineer

8 matching positions

Senior Identity Access Management Engineer

Roku is seeking a senior-level Identity Engineer to enhance its Zero-Trust archi...
Location
Location
United States , New York
Salary
Salary:
158000.00 - 279000.00 USD / Year
roku.com Logo
Roku
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years of hands-on experience with identity and access management and automating cloud technologies, particularly within the Microsoft ecosystem
  • Strong analytical skills and attention to detail, with the ability to troubleshoot complex infrastructure and identity-related issues
  • Excellent communication skills, with the ability to clearly explain technical concepts to both technical and non-technical stakeholders
  • Deep experience with Microsoft Entra ID, including Conditional Access, Identity Governance, and Privileged Identity Management
  • Familiarity with Microsoft 365 services: Exchange Online, Defender, Purview, Sentinel, Intune, and related platforms
  • Automation and scripting skills using PowerShell, Azure CLI, and Microsoft Graph API
  • working knowledge of Azure services such as Function Apps and Logic Apps
  • Experience in onboarding and managing enterprise applications in Azure Entra ID
  • Advanced knowledge of Azure Single Sign-On (SSO) login methods, including OAuth2, OpenID Connect, and SAML, and their integration with enterprise applications
  • Knowledge of privileged access tools (Azure PIM, CyberArk, etc), secrets management (HashiCorp or Azure Key Vault), and workload identity patterns SPIFEE & SPIRE
Job Responsibility
Job Responsibility
  • Lead enterprise-wide IAM standardization, including identity lifecycle, access governance, and policy enforcement across global regions
  • Drive automation across IAM to streamline administration and deliver a smoother user experience
  • Support enterprise applications onboarding into Azure Entra ID, including SSO, Conditional Access, and role-based access control (RBAC)
  • Enhance privileged access management and implement scalable monitoring, alerting, and auditability solutions to support a secure, geographically distributed workforce
  • Collaborate with IT, Networking, and Security teams to troubleshoot identity-related issues and support global infrastructure initiatives
  • Advance Zero Trust Identity Fabric principles like continuous verification, least-privilege access, and identity-aware policy enforcement across users, devices, workloads, and non-human identities
  • Build identity automation with a DevOps mindset, writing scripts, developing pipelines, and engineering tooling from scratch rather than just configuring them
What we offer
What we offer
  • health insurance
  • equity awards
  • life insurance
  • disability benefits
  • parental leave
  • wellness benefits
  • paid time off
  • global access to mental health and financial wellness support and resources
  • healthcare (medical, dental, and vision)
  • commuter
  • Fulltime
Read More
Arrow Right

Senior IT Engineer — Identity & Access Management

This contract-to-permanent opportunity is ideal for a senior-level candidate who...
Location
Location
United States , Ada
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Demonstrated experience in identity and access management engineering, with strong depth in enterprise IAM architecture and operations
  • Hands-on expertise with Okta, including tenant configuration, lifecycle management, authentication policies, and single sign-on enablement
  • Strong knowledge of SSO and federation technologies, including SAML, OAuth, and modern authentication concepts across SaaS applications
  • Experience integrating identity platforms with systems such as Microsoft Entra ID, Active Directory, Google Workspace, or other directory services
  • Ability to design secure provisioning, deprovisioning, and access governance processes in regulated or compliance-driven environments
  • Proven troubleshooting skills for authentication, authorization, and federation issues across cloud and hybrid application ecosystems
  • Comfortable in a client-facing role with the ability to communicate technical recommendations clearly to varied stakeholders
Job Responsibility
Job Responsibility
  • Architect and implement enterprise identity and access solutions centered on Okta for clients operating in regulated and multi-platform environments
  • Configure and strengthen Okta capabilities such as directory services, adaptive authentication, lifecycle automation, workflow orchestration, and governance controls
  • Integrate identity platforms with Entra ID, Active Directory, JumpCloud, Google Workspace, and other cloud or hybrid systems to create consistent access experiences
  • Lead the design and support of SSO and federation solutions using SAML and OAuth standards, including claims design, attribute mapping, token settings, and authentication flow decisions
  • Troubleshoot authentication and federation issues by analyzing logs, protocol behavior, and application integration details to resolve complex access problems
  • Develop repeatable integration patterns for widely used business applications such as Microsoft 365, Salesforce, Slack, Zoom, Atlassian, GitHub, NetSuite, and similar platforms
  • Build and maintain automated joiner, mover, and leaver processes tied to authoritative source systems to improve provisioning accuracy and deprovisioning speed
  • Establish role-based access models, least-privilege controls, and access review practices that align with audit and compliance expectations
  • Partner directly with clients to assess identity maturity, recommend improvements, and deliver IAM solutions that support business and security objectives
What we offer
What we offer
  • medical
  • vision
  • dental
  • life and disability insurance
  • 401(k) plan
  • Fulltime
Read More
Arrow Right

Senior Identity Access Management Engineer

Roku is seeking a senior-level Identity Engineer to enhance its Zero-Trust archi...
Location
Location
United States , Boston
Salary
Salary:
158000.00 - 279000.00 USD / Year
roku.com Logo
Roku
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years of hands-on experience with identity and access management and automating cloud technologies, particularly within the Microsoft ecosystem.
  • Strong analytical skills and attention to detail, with the ability to troubleshoot complex infrastructure and identity-related issues.
  • Excellent communication skills, with the ability to clearly explain technical concepts to both technical and non-technical stakeholders.
  • Deep experience with Microsoft Entra ID, including Conditional Access, Identity Governance, and Privileged Identity Management.
  • Familiarity with Microsoft 365 services: Exchange Online, Defender, Purview, Sentinel, Intune, and related platforms.
  • Automation and scripting skills using PowerShell, Azure CLI, and Microsoft Graph API
  • working knowledge of Azure services such as Function Apps and Logic Apps.
  • Experience in onboarding and managing enterprise applications in Azure Entra ID.
  • Advanced knowledge of Azure Single Sign-On (SSO) login methods, including OAuth2, OpenID Connect, and SAML, and their integration with enterprise applications.
  • Knowledge of privileged access tools (Azure PIM, CyberArk, etc), secrets management (HashiCorp or Azure Key Vault), and workload identity patterns SPIFEE & SPIRE.
Job Responsibility
Job Responsibility
  • Lead enterprise-wide IAM standardization, including identity lifecycle, access governance, and policy enforcement across global regions.
  • Drive automation across IAM to streamline administration and deliver a smoother user experience.
  • Support enterprise applications onboarding into Azure Entra ID, including SSO, Conditional Access, and role-based access control (RBAC).
  • Enhance privileged access management and implement scalable monitoring, alerting, and auditability solutions to support a secure, geographically distributed workforce.
  • Collaborate with IT, Networking, and Security teams to troubleshoot identity-related issues and support global infrastructure initiatives.
  • Advance Zero Trust Identity Fabric principles like continuous verification, least-privilege access, and identity-aware policy enforcement across users, devices, workloads, and non-human identities.
  • Build identity automation with a DevOps mindset, writing scripts, developing pipelines, and engineering tooling from scratch rather than just configuring them.
What we offer
What we offer
  • Health insurance
  • equity awards
  • life insurance
  • disability benefits
  • parental leave
  • wellness benefits
  • paid time off
  • global access to mental health and financial wellness support and resources
  • healthcare (medical, dental, and vision)
  • life
  • Fulltime
Read More
Arrow Right

Senior Software Engineer – Identity & Access Management (IAM)

Location
Location
United States
Salary
Salary:
Not provided
redhibbert.com Logo
Red Hibbert Group
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, IT, or related field
  • 7+ years of experience in Identity & Access Management or IT Security
  • Strong expertise in Azure Active Directory (Microsoft Entra ID)
  • Experience with Conditional Access, MFA, PIM, and Identity Protection
  • Experience with SSO protocols: SAML, OAuth 2.0, OpenID Connect
  • Familiarity with PowerShell scripting
  • Experience working in enterprise IT environments
  • Strong communication and collaboration skills
Job Responsibility
Job Responsibility
  • Lead enterprise-level Azure Active Directory (Microsoft Entra ID) operations
  • Design and manage Conditional Access policies, MFA, and passwordless authentication
  • Manage identity lifecycle (user, group, role provisioning and governance)
  • Implement Privileged Identity Management (PIM) and access governance
  • Support and troubleshoot SSO integrations (SAML, OAuth2, OpenID Connect)
  • Monitor identity security signals, risky sign-ins, and audit logs
  • Perform root cause analysis for IAM-related incidents
  • Collaborate with security, DevOps, and application teams
  • Mentor junior engineers and define operational best practices
  • Maintain documentation, SOPs, SLAs, and KPIs
  • Fulltime
Read More
Arrow Right

IT Support Engineer - Identity & Access Management

As a key member of the Technology team, this Technical Support Engineer role pla...
Location
Location
Australia , Brisbane
Salary
Salary:
Not provided
lgt.com Logo
LGT Gruppe Holding AG
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Tertiary Qualification in Information Technology and/or Business or equivalent industry experience is desirable
  • ITIL v3 or 4 certification is desirable
  • Minimum 2-5+ years as a Helpdesk / Technical Support Engineer or similar
  • Experience in managing user access management (UAM) activities and supporting audit and control requirements
  • Experience in a financial services organisation is highly desirable
  • Demonstrable experience in using and supporting Windows and Microsoft Office suite of products
  • Knowledge of Apple iOS devices
  • Good knowledge of email and messaging (Outlook/Exchange/Teams)
  • Knowledge of endpoint management tools, such as Microsoft SCCM and Microsoft Intune
  • Active Directory, GPO, management and troubleshooting
Job Responsibility
Job Responsibility
  • Provide frontline IT support by receiving and handling email, telephone, and walk-up requests from internal and external customers, following agreed procedures
  • Act as the primary contact for Identity & Access topics, with a focus on user lifecycle management, access control, and audit- and control-related activities
  • Take ownership of Identity & Access audit activities, including coordinating and executing periodic access reviews, collecting and maintaining audit evidence, tracking and following up on remediation actions, and ensuring controls are operated and documented in line with internal and regulatory requirements
  • Perform User Access Management (UAM) activities, including processing access requests, role changes, and leaver access removals in line with internal policies and approval workflows
  • Provide IAM support, including user account provisioning, role-based access control, password resets, and troubleshooting authentication and authorisation issues across key business applications and infrastructure services
  • Triages Service Requests and Incidents to appropriate teams, ensuring Identity & Access-related tickets are handled accurately, promptly, and in line with defined SLAs
  • Take full ownership of issues, tasks, and ad-hoc queries, maintaining accurate records and ensuring closure to the satisfaction of the requestor, with particular attention to access-related requests and incidents
  • Prioritise, diagnose, and resolve Incidents according to agreed SLAs and procedures, escalating complex Identity & Access issues where required
  • Fulfil Service Requests by following documented processes and procedures and proactively suggesting improvements to Identity & Access and audit workflows where appropriate
  • Carry out IT workstation deployments, moves, and replacement of desktop accessories when required, ensuring appropriate access is configured and verified as part of the deployment
  • Fulltime
Read More
Arrow Right

Security Engineer, Identity & Access Management

The Security Team is seeking a highly skilled IAM Engineer with a strong focus o...
Location
Location
Poland
Salary
Salary:
225300.00 - 304800.00 PLN / Year
dropbox.com Logo
Dropbox
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in identity and access management (IAM), with direct ownership of Okta and/or SailPoint implementations
  • BS degree in Computer Science, Information Technology, Cybersecurity or related technical field, or equivalent technical experience
  • Demonstrated expertise in Okta platform administration, including Universal Directory, Okta Workflows, Lifecycle Management, and SSO integrations
  • Hands-on experience with SailPoint IdentityNow, configuring identity governance, access reviews, provisioning, and policy management
  • Strong understanding with authentication protocols, i.e. SAML, OAuth, OIDC, and MFA
  • Experience with automation and API integration and ability to build workflows and automations using tools like Okta Workflows, Python, or JavaScript, and comfort working with REST APIs
  • Background in security and compliance, namely familiarity with SOX, access certifications, and audit support for IAM environments
Job Responsibility
Job Responsibility
  • Design, implement, and maintain secure identity and access management (IAM) solutions using Okta, Okta Workflows, and SailPoint to support scalable, automated, and auditable identity lifecycle management
  • Lead SSO integration efforts for internal and third-party applications, ensuring secure authentication and seamless user experience across the enterprise
  • Develop and enforce access control policies and governance models to meet security, compliance, and SOX certification requirements
  • Support the onboarding of enterprise applications into Okta, including custom configuration, testing, and rollout to production
  • Enhance and maintain synchronization services between identity sources and downstream systems using SailPoint IdentityNow and directory services
  • Participate in incident response, troubleshooting, and resolution of identity-related issues across infrastructure and application stacks
  • Contribute to the development of documentation, standards, and reusable templates for identity workflows and access reviews
  • On-call work may be necessary occasionally to help address bugs, outages, or other operational issues
What we offer
What we offer
  • Competitive medical, dental and vision coverage
  • Retirement savings through a defined contribution pension or savings plan
  • Flexible PTO/Paid Time Off, paid holidays, Volunteer Time Off, and more
  • Income Protection Plans: Life and disability insurance
  • Business Travel Protection: Travel medical and accident insurance
  • Perks Allowance to be used on what matters most to you
  • Parental benefits including: Parental Leave, Fertility Benefits, Adoptions and Surrogacy support, and Lactation support
  • Mental health and wellness benefits
  • Fulltime
Read More
Arrow Right

Senior Identity and Access Management Lead

The Senior Identity and Access Management Lead will be responsible for implement...
Location
Location
Singapore , Singapore
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of experience implementing, operating, and maintaining access management solutions supporting single sign-on
  • 5+ years of experience in implementing a Modern Policy Based Access Control Authorization (PBAC) Methodology leveraging user Attributes to Enforce Access Controls According to Business Policies Dynamically
  • Deep understanding of Zero Trust & Secure Access Service Edge (SASE) technologies
  • Demonstrated experience with authentication and authorization technologies and protocols such as SAML, WS-Fed, OAuth, OpenID/OpenID Connect, one-time passcodes, PKI, derived credentials, FIDO, PBAC, RBAC
  • Strong knowledge of containerization technologies such as Docker and container orchestration with Kubernetes
  • Experience in managing projects, leading operational process change and improvement and delivering infrastructure technologies products and services
  • Experience in financial services or large complex and/or global environment preferred
  • Experience developing projects for the identification of best practices (design of metrics, analytical tools, benchmarking activities, and related reporting)
  • Consistently demonstrate clear and concise written and verbal communication with ability to communicate technical concepts to a non-technical audience
  • Proven analytical, diagnostic, and multitasking skills with focus on execution and attention to detail
Job Responsibility
Job Responsibility
  • Review the design for Modern Policy Based Access Control Authorization (PBAC) infrastructure with architecture and engineering teams
  • Deploy system capabilities incrementally and provide user authentication, SSO, federation, Role-Based and Attribute-Based Access Control
  • Manage auditing and reporting capabilities that are integrated with Citi enterprise logging and monitoring tools
  • Conduct work on a variety of high-impact, high-profile problems/projects such as creating complex project plans and conducting project-related research
  • Provide in-depth and sophisticated analyses, technical guidance and direction and identify and monitor key indicators to gauge performance and identify trends
  • Identify and resolve issues, engaging in Root Cause Analysis (RCA)
  • Conduct responsibilities such as quality control, work allocation, coaching/mentoring, ensuring ongoing compliance with regulatory requirements
  • Appropriately assess risk when business decisions are made, demonstrating consideration for the firm's reputation and safeguarding Citigroup, its clients, and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparency
  • Understand diverse stakeholder needs and share and influence stakeholder expectations
  • Fulltime
Read More
Arrow Right

Senior Customer Identity and Access Management Engineer

Are you passionate about securing digital identities and creating seamless user ...
Location
Location
Ireland , Dublin 2
Salary
Salary:
Not provided
bentley.com Logo
Bentley Systems
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • A minimum of 5 years of hands-on experience with the Ping Identity suite
  • Thorough understanding of Identity and Access Management (IAM) for both enterprise and customer-facing applications
  • Strong coding and scripting abilities (Java & TypeScript are preferred)
  • In-depth knowledge of OAuth, OIDC, and SAML
  • Knowledge of System for Cross-domain Identity Management (SCIM)
  • Experience with API configuration and deployment
  • Strong experience with Linux environments (navigating, tuning, etc.)
  • Excellent problem-solving and communication skills
Job Responsibility
Job Responsibility
  • Lead the management and administration of the full Ping Identity suite, including Ping Federate, Ping Access, Ping Directory, Ping Data Proxy, Ping Data Sync, and Ping Authorize
  • Architect and manage common Ping Components, such as IdP & SP adapters, selectors, authentication policies, and more
  • Deploy, configure, and troubleshoot modern authentication protocols, including OAuth, OIDC, and SAML, ensuring compliance with industry standards
  • Strengthen security by configuring and deploying Multi-Factor Authentication (MFA) solutions
  • Oversee the entire lifecycle of digital certificates
  • Develop and maintain clean, efficient, and well-documented code and scripts, with a preference for Java & TypeScript
  • Configure and deploy APIs to extend and integrate our CIAM solutions
  • Thrive in a DevOps model, contributing to our CI/CD pipelines and automation efforts
  • Operate within our cloud-based infrastructure, with a preference for AWS
  • Manage and maintain containerized environments
What we offer
What we offer
  • A great Team and culture
  • An exciting career as an integral part of a world-leading software company
  • An attractive salary and benefits package
  • A commitment to inclusion, belonging, and colleague well-being through global initiatives and resource groups
  • A company committed to making a real difference by advancing the world’s infrastructure for a better quality of life
Read More
Arrow Right