Back to all jobs

Identity and Access Management Architect, Senior

Booz Allen

Aug 18

Identity and Access Management Architect, Senior

Key Role:

Lead ICAM efforts using a critical approach to network design, providing alternatives, and customizing solutions, to maintain a balance of security and mission needs. Identify and implement ways to harden systems and reduce their attack surface. Use Cyber skills to design and build secure systems for the US government. Help create solutions that will stand up to even the most advanced Cyber threats. This position is open to remote delivery anywhere within the U.S., to include the District of Columbia.

Basic Qualifications:

  • 5+ years of experience with supporting identity and access management solutions, including user privilege management, user credential management, and user security behavior monitoring
  • 3+ years of experience with Commercial off the Shelf (COTS) IAM tools, including IGA, SailPoint, PAM, CyberArk, and Beyond Trust, and Enterprise Access Management, including Okta, and Azure AD
  • Experience with architecting, configuring and managing native cloud and on-premises ICAM in Azure, Office 365, Google Cloud Platform (GCP) and AWS
  • Experience with configuring and implementing ADDS, ADFS, and AADC
  • Knowledge of Active Directory, LDAP, PKI X.509, SSO, Two-Factor Authentication (2FA) and Multi-Factor Authentication (MFA), Personal Identity Verification (PIV), Common Access Card (CAC), scripting and coding
  • Knowledge of SAML, WS-Fed, and OpenID
  • Ability to obtain a security clearance
  • BA or BS degree

Additional Qualifications:

  • Experience with authoring Cybersecurity guidance, including policies, strategies, and whitepapers
  • Experience with architecting, configuring and managing IAM in Amazon Web Services (AWS) or Google Cloud Platform
  • Experience with implementing public key infrastructure (PKI) and PIV standards in a DoD environment
  • Experience with HSPD-12, FIPS 201-2, FICAM, OMB 11-11, FedRAMP, PCI, FISMA, or NIST 800-53, 800-63, 800-79-2, or 800-157 policies and standards
  • Knowledge of HTTP, XML, REST, or JSON
  • MS degree in IT, Information Systems, or CS


Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information.

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, veteran status, or other protected characteristic—to fearlessly drive change.