Zero Trust IGA Engineer Job at Barbaricum (Tampa)

System Information Assurance and Security Engineer

Barbaricum is seeking a highly skilled System Information Assurance and Security...

Location

United States , Tampa

Salary:

Not provided

Barbaricum

Expiration Date

Until further notice

Requirements

Active DoD TS/SCI Clearance
Bachelor’s degree in Computer Science, Information Systems, Cybersecurity, or related field (Master’s preferred)
5+ years of experience in enterprise identity and access management architecture
Demonstrated expertise with Zero Trust frameworks and DoD ICAM standards
Hands-on experience with SAML, OAuth2.0, OpenID Connect, PKI, and certificate management
Experience with DoD enterprise solutions such as Radiant Logic, Okta, Ping Identity, SailPoint, ForgeRock, Microsoft Entra ID (Azure AD), or equivalent
Deep knowledge of Privileged Access Management and Identity Governance & Administration solutions
Strong understanding of DoD cybersecurity compliance frameworks (RMF, NIST SP 800-53, 800-207, 8140/8570)
IAM / DoD Certification IAT Level II (e.g., Security+ CE, SSCP, GSEC)

Job Responsibility

Execute engineering solutions for identity credential and access management for Zero Trust implementation across enterprise systems
Design and maintain an enterprise-wide identity and access management strategy aligned with DoD Zero Trust principles, NIST 800-207, and DoD ICAM Reference Design
Lead integration of federated identity, single sign-on (SSO), and multi-factor authentication (MFA) across cloud and on-prem environments
Develop and maintain policies, standards, and reference architectures to enforce least-privilege and attribute-based access control (ABAC)
Conduct the implementation of Privileged Access Management (PAM) and Identity Governance and Administration (IGA) solutions
Collaborate with cybersecurity, network, and cloud teams to align ICAM solutions with Zero Trust pillars (identity, device, network, application, and data)
Ensure compliance with DoD 8140/8570, RMF, FedRAMP, and other applicable frameworks
Lead proof-of-concepts (POCs) and technology evaluations for emerging identity

Senior System Information Assurance and Security Engineer

Barbaricum is seeking a highly skilled System Information Assurance and Security...

Location

United States , Tampa

Salary:

Not provided

Barbaricum

Expiration Date

Until further notice

Requirements

Active DoD TS/SCI Clearance
Bachelor’s degree in Computer Science, Information Systems, Cybersecurity, or related field (Master’s preferred)
10+ years of experience in enterprise identity and access management architecture
Demonstrated expertise with Zero Trust frameworks and DoD ICAM standards
Hands-on experience with SAML, OAuth2.0, OpenID Connect, PKI, and certificate management
Experience with DoD enterprise solutions such as Radiant Logic, Okta, Ping Identity, SailPoint, ForgeRock, Microsoft Entra ID (Azure AD), or equivalent
Deep knowledge of Privileged Access Management and Identity Governance & Administration solutions
Strong understanding of DoD cybersecurity compliance frameworks (RMF, NIST SP 800-53, 800-207, 8140/8570)
IAM / DoD Certification IAT Level II (e.g., Security+ CE, SSCP, GSEC)

Job Responsibility

Execute engineering solutions for identity credential and access management for Zero Trust implementation across enterprise systems
Design and maintain an enterprise-wide identity and access management strategy aligned with DoD Zero Trust principles, NIST 800-207, and DoD ICAM Reference Design
Lead integration of federated identity, single sign-on (SSO), and multi-factor authentication (MFA) across cloud and on-prem environments
Develop and maintain policies, standards, and reference architectures to enforce least-privilege and attribute-based access control (ABAC)
Conduct the implementation of Privileged Access Management (PAM) and Identity Governance and Administration (IGA) solutions
Collaborate with cybersecurity, network, and cloud teams to align ICAM solutions with Zero Trust pillars (identity, device, network, application, and data)
Ensure compliance with DoD 8140/8570, RMF, FedRAMP, and other applicable frameworks
Lead proof-of-concepts (POCs) and technology evaluations for emerging identity

Senior System Security and Information Assurance Engineer

The Senior PAM Engineer will play a critical role within Line of Effort 2, respo...

Location

United States , Tampa

Salary:

Not provided

Barbaricum

Expiration Date

Until further notice

Requirements

Active DoD Top Secret clearance with SCI eligibility
Master’s degree (MA/MS) in Cybersecurity, Information Technology, Computer Science, Engineering, or related field
10+ years of professional experience in cybersecurity, systems engineering, or information assurance
Meets Cyber Engineer – Senior labor category requirements, including independent execution of all functional duties and support to mission-critical program elements
DoD 8570 IAT Level II certification or higher (e.g., Security+ CE, CCNA Security)
Deep expertise in Privileged Access Management (PAM) architectures and Zero Standing Privilege concepts
Hands-on experience implementing Just-In-Time (JIT) access workflows
Experience integrating PAM solutions with Active Directory, SIEM platforms (Splunk), and Identity Governance (IGA) tools
Experience producing technical documentation to support RMF and ATO processes (LLDs, SSPs, SOPs)
Ability to lead or oversee the efforts of less senior staff as required by program needs

Job Responsibility

Lead the installation, configuration, and technical implementation of an enterprise Privileged Access Management (PAM) solution (Delinea-focused) across multiple network enclaves
Discover, inventory, and onboard privileged user, administrator, and service accounts into a secure credential vault
Design and enforce policies for Just-In-Time (JIT) access, session monitoring, and session recording to achieve zero standing privileges
Develop scripts and API-based integrations between the PAM solution, Splunk SIEM, and Identity Governance (IGA) platforms
Support RMF accreditation activities by developing Low-Level Design (LLD) documents, System Security Plans (SSPs), and Standard Operating Procedures (SOPs)
Support Authority to Operate (ATO) efforts through security control implementation and technical validation
Lead enterprise rollout of PAM policies from pilot groups to full operational enforcement
Collaborate with Zero Trust architects, identity teams, and cyber engineers to ensure alignment with enterprise security architecture

New

Access Management IAM Engineer

We are looking for an IAM Engineer/IT Engineer to support the modernization of o...

Location

Spain , Málaga

Salary:

Not provided

REWE digital

Expiration Date

Until further notice

Requirements

Degree in Computer Science or equivalent qualification
Proven experience in Identity Governance & Administration (IGA) and IAM platforms
Practical knowledge of directory services (Active Directory, Entra ID, Keycloak)
Analytical mindset and ability to design complex authorization models
Strong communication and collaboration skills
Complete fluency in written and spoken English
Strong understanding of Authentication/Authorization and Identity & Access Management/Identity Governance (JML, SoD, Recertification etc.) concepts
Hands-on experience in platform engineering and automation desirable
Proficiency in scripting and developing languages (Groovy, Java, XML, JSON)
Skill in analyzing data and creating consistent structures

Job Responsibility

Design, build, and operate a secure and scalable Identity Governance & Administration (IGA) platform as the foundation for automation and self-service
Develop and maintain technical connectors (e.g via SCIM or REST API) to integrate target systems like AD, Azure/Entra ID, SAP, and various SaaS applications into the IGA platform
Support the maintenance of CI/CD pipelines and containerized environments (Docker, Kubernetes) for the deployment and evolution of the IAM platform
Perform hands-on configuration of the IGA tool to align with business requirements
Implement and optimize role-based and context-based access control models (RBAC, CBAC, ABAC, NBAC)
Collaborate with security teams to ensure compliance and enable Zero-Trust architectures

What we offer

Hybrid work and flexible working time
Company conditions for private medical insurance
Ticket Restaurant
Professional development opportunities: English/German courses, and further IT education/trainings
Day off on your Birthday
25 days paid vacation
A startup-like culture with fascinating opportunities, combined with the security of being part of a major corporate force
Challenging tasks but also a tech playground
Work in a modern office, fostering creativity, collaboration, and agility
A flexible, autonomous work environment where your ideas will contribute to our collective success

Fulltime

Senior Corporate Security Engineer

At Crusoe, the Corporate Security Engineer is essential for safeguarding our emp...

Location

United States , San Francisco; Sunnyvale

Salary:

130000.00 - 170000.00 USD / Year

Crusoe

Expiration Date

Until further notice

Requirements

6-8+ years of hands-on experience in a Corporate Security, Enterprise Security, or similar role
Proven experience designing, implementing, and managing security technologies at scale, including: MDM solutions (e.g., Intune, Kandji, Jamf, etc.), IAM solutions (e.g., Okta, Azure AD, IGA applications, etc. including SSO, MFA, PAM concepts), Endpoint security tools (EDR/XDR), Email threat protection solutions, DLP and/or SSPM solutions
Strong understanding of modern security principles, including Zero Trust architecture, "secure by design," and defense-in-depth
Experience with securing SaaS applications and enforcing security policies
Demonstrated experience in security incident response, including triage, investigation, and remediation
Familiarity with scripting languages (e.g., Python, PowerShell) for automation and integration
Excellent problem-solving, analytical, and critical-thinking skills
Strong communication and collaboration skills, with the ability to work effectively across different teams
Embody the Company values

Job Responsibility

MDM Administration & Endpoint Security: Implementing, administering, and optimizing Mobile Device Management (MDM) solutions and enforcing security policies across diverse endpoints (laptops, mobile devices)
Hardware & Software Security Standards: Establishing and maintaining hardware/software security standards and ensuring the strong security posture of corporate devices
Identity & Access Management (IAM): Designing, implementing, and managing core Identity & Access Management (IAM) technologies, including SSO, MFA, PAM, and identity lifecycle solutions, contributing to our Zero Trust architecture
Data Protection & Email Security: Implementing, configuring, and tuning Data Loss Prevention (DLP), SaaS Security Posture Management (SSPM), and email security solutions to protect against various threats
Secure Architecture & Technology Evaluation: Designing secure corporate environments using "secure by design" principles and evaluating the security posture of new technologies, vendors, and applications
Security Operations & Incident Response: Actively participating in corporate security operations, including monitoring security alerts, detecting, triaging, investigating, and responding effectively to security incidents
Security Consulting & Best Practices: Consulting with and advising IT, Engineering, and other teams on secure architecture, IAM best practices, and secure configurations

What we offer

Restricted Stock Units in a fast growing, well-funded technology company
Health insurance package options that include HDHP and PPO, vision, and dental for you and your dependents
Employer contributions to HSA accounts
Paid Parental Leave
Paid life insurance, short-term and long-term disability
Teladoc
401(k) with a 100% match up to 4% of salary
Generous paid time off and holiday schedule
Cell phone reimbursement
Tuition reimbursement

Fulltime

Access Management DevOps Engineer

Working closely with the team in germany, you will be responsible for the admini...

Location

Spain , Málaga

Salary:

Not provided

REWE digital

Expiration Date

Until further notice

Requirements

Degree in Computer Science or equivalent qualification
Proven experience in Identity Governance & Administration (IGA) and IAM platforms
Practical knowledge of directory services (Active Directory, Entra ID, Keycloak)
Analytical mindset and ability to design complex authorization models
Strong communication and collaboration skills
Complete fluency in written and spoken English
You live in Spain, and you have a valid work permit/VISA (without sponsorship)

Job Responsibility

Design, build, and operate a secure and scalable Identity Governance & Administration (IGA) platform as the foundation for automation and self-service
Develop and maintain APIs to integrate IAM/IGA capabilities across business applications
Establish and maintain CI/CD pipelines and containerized environments (Docker, Kubernetes) to support the deployment and evolution of the IAM platform
Implement and optimize role-based and context-based access control models (RBAC, CBAC, ABAC, NBAC)
Collaborate with security teams to ensure compliance and enable Zero-Trust architectures

What we offer

Hybrid work and flexible working time
Company conditions for private medical insurance
Ticket Restaurant
Professional development opportunities: English/German courses, and further IT education/trainings
Day off on your Birthday
23 days paid vacation

Fulltime

Identity and Access Management Engineer

We are seeking an Identity and Access Management Engineer to design and protect ...

Location

United States , San Jose

Salary:

133400.00 - 200000.00 USD / Year

Archer Aviation

Expiration Date

Until further notice

Requirements

5 plus years of experience in Identity and Access Management or related roles, with a minimum of 2 years in a senior or architect-level capacity
Hands-on design and implementation experience with enterprise Identity Providers such as Okta, Azure AD (Active Directory), or Ping Identity
Deep technical understanding of authentication protocols and standards, including OIDC, SAML, OAuth 2.0, and LDAP
Extensive experience designing and operating Privileged Access Management (PAM) solutions, preferably Delinea, including credential vaulting, session recording, and approval workflows
Working knowledge of RBAC (Role-Based Access Control) design and implementation, with the ability to map complex organizational hierarchies to access policies
Experience implementing and managing Multi-Factor Authentication (MFA) technologies such as FIDO2, Okta Verify, Duo Security, YubiKey, and PKI-based authentication
Strong understanding of NIST SP 800-171 and CMMC Level 2 requirements, specifically as they relate to access control, audit logging, and identity governance
Proficiency in scripting and automation using PowerShell, Python, or Bash to automate identity workflows, audit processes, and integrations
Excellent communication skills to translate complex identity architecture and compliance requirements to both technical teams and executive leadership

Job Responsibility

Design and implement Zero Trust Architecture (ZTA) across Archer's enterprise network, eliminating implicit trust and enforcing continuous verification of user identity and device posture before granting access
Architect and maintain Okta as the authoritative Identity Provider (IdP) for Archer, managing Single Sign-On (SSO), Multi-Factor Authentication (MFA), and user lifecycle management across all enterprise applications and SaaS platforms
Design and implement Privileged Access Management (PAM) using Delinea, including credential vaulting, privileged session management, and automated credential rotation for administrative and service accounts
Implement Identity Governance and Administration (IGA) controls to enforce role-based access control (RBAC), segregation of duties, periodic access reviews, and just-in-time (JIT) access provisioning
Build and maintain federated identity standards (OIDC, SAML, SCIM) to enable secure integration between Archer's identity platform and third-party applications, cloud providers, and vendor systems
Conduct access control audits and design remediation strategies to ensure compliance with NIST SP 800-171 Access Control (AC) requirements, CMMC Level 2 practices, and SOX ITGC expectations for financial systems
Implement automated audit logging and session recording for all authentication and privileged access events, ensuring that individual users' actions can be uniquely traced for compliance investigations and forensic analysis
Secure third-party and contractor access by implementing time-limited, role-restricted access provisioning and automated de-provisioning upon project completion or relationship termination
Stay current with emerging identity threats, attack vectors, and security best practices, including insider threats, account takeover (ATO), and lateral movement techniques
Provide technical guidance and training to IT, application, and security teams on identity best practices and policy enforcement

Fulltime

Senior Identity & Access Management Engineer

The Identity & Access Management (IAM) team is a new, foundational group within ...

Location

United States

Salary:

92000.00 - 150000.00 USD / Year

Lime

Expiration Date

Until further notice

Requirements

3-5+ years of hands-on experience in Identity & Access Management
Strong, hands-on experience with enterprise identity providers, with a preference for Okta
Experience with IGA platforms (e.g., Saviynt, SailPoint, Okta IGA) is a significant plus
Solid scripting and automation skills (e.g., Python, PowerShell) for identity workflows
A strong understanding of core security principles, including Zero Trust models and least privilege
Experience working in an environment with compliance frameworks such as SOX, GDPR, or CCPA
Strong collaboration skills and experience working on complex, cross-functional projects
A customer-first mindset focused on creating secure yet frictionless access experiences

Job Responsibility

Be a key driver in the greenfield implementation of Lime’s enterprise IGA platform
Implement, manage, and automate the identity lifecycle (joiner, mover, leaver) to ensure seamless and secure transitions
Execute on a high volume of new application integrations for Single Sign-On (SSO) and MFA
Collaborate with the security team to implement Zero Trust principles through hands-on configuration of risk-based policies
Support automated user access review (UAR) campaigns to ensure continuous compliance with SOX and other regulatory requirements
Assist in providing evidence and support for internal and external auditors regarding identity and access controls
Partner with application owners across the company to successfully integrate their systems into our centralized IAM platforms
Help develop and maintain clear documentation for IAM processes and configurations

What we offer

Comprehensive Health & Wellness: A choice of medical, dental, and vision plans
Company-paid life and disability insurance
Company-funded mental health benefits
Financial & Retirement Planning: 401(k) plan with both pre-tax and Roth options
Access to a Health Savings Account (HSA) with a monthly company contribution
Family & Fertility Support: Paid parental leave for birthing and non-birthing parents
Fertility and family-forming benefits
Paid Time Off: Unlimited vacation
Paid leaves
10 company holidays

Fulltime

Zero Trust IGA Engineer

Barbaricum

Location:
United States , Tampa

Category:
IT - Administration

Contract Type:
Not provided

Salary:

Job Description:

Job Responsibility:

Requirements:

Nice to have:

Additional Information:

Job Posted:
January 30, 2026

Looking for more opportunities? Search for other job offers that match your skills and interests.

Similar Jobs for Zero Trust IGA Engineer

System Information Assurance and Security Engineer

Senior System Information Assurance and Security Engineer