The Senior IAM Engineer will design, deploy, and manage secure identity solutions for federal agencies, focusing on cloud integration, compliance, and automation while ensuring adherence to Zero Trust principles.
Company Description
TrueTandem's mission is to be a trusted information technology solutions provider, committed to the success of our customers, communities and employees. To enable this mission, we listen to our customers’ needs, empower our dedicated and talented employees, envision success together, and deliver innovative cost-effective solutions. For our customers, we aim to deliver more power to meet their business outcomes through technology implementation, integration, optimization and customization. We enable some of the most well-known companies, nonprofits and federal agencies in the United States to intelligently plan and develop their applications, modernize their infrastructure and manage their data.
We are seeking experienced, skilled, and passionate Senior Identity and Access Management (IAM) Engineers to support enterprise-wide cloud identity modernization initiatives for large U.S. Federal government agencies. Ideal candidates will possess deep expertise in identity lifecycle management, hybrid identity, authentication, and access control using Microsoft Entra ID and Azure AD, with the ability to design, secure, and sustain enterprise IAM architectures that comply with federal security requirements and Zero Trust principles.
Role and Responsibilities:
Architect, deploy, and sustain secure IAM solutions aligned with the Microsoft Cloud Adoption Framework (CAF) and Zero Trust.
Design, implement, and manage Multi-Factor Authentication (MFA) solutions across hybrid enterprise environments.
Implement and maintain Hybrid Identity integrations, including synchronization of on-premises Active Directory with Entra ID.
Manage and automate Azure Groups for access control, RBAC, and enterprise security policies.
Engineer, configure, and maintain Entra ID distributed architecture, ensuring high availability, automated failover, load balancing, and recovery for enterprise-wide identity services.
Incorporate Smart Card / CAC / PIV authentication into enterprise identity solutions and ensure compliance with federal standards (e.g., FIPS 201, HSPD-12).
Monitor and optimize IAM systems for security, performance, and compliance.
Collaborate with cross-functional teams to support application integrations with IAM platforms (SSO, federation, and conditional access).
Ensure governance, compliance, and alignment with Zero Trust, TIC 3.0, and federal security baselines.
Document identity and access designs, workflows, and operational runbooks.
Required Skills
An active TS/SCI with polygraph.
Minimum of five (5) years of Tier II or three (3) years of Tier III IAM/Identity Services support.
Proven ability to design, deploy, and sustain enterprise IAM solutions in hybrid cloud environments.
Expertise with MFA, Hybrid Identity, Azure Groups, Entra ID distributed architecture, and Smart Card authentication.
Strong understanding of Zero Trust, Conditional Access, RBAC, and authentication protocols (SAML, OIDC, OAuth2, Kerberos, LDAP).
Proficiency with PowerShell scripting and automation for identity administration.
Strong troubleshooting and diagnostic skills across hybrid identity systems.
Excellent communication and documentation skills.
Preferred Skills
Microsoft Identity and Access Administrator Associate or Azure Security Engineer certifications.
Experience with Microsoft Entra Permissions Management, Privileged Identity Management (PIM), and Identity Governance.
Knowledge of integrating IAM with Power Platform and enterprise applications.
Familiarity with AOAI embedded features and Copilot capabilities for identity workflows.
Experience with large-scale enterprise migrations involving IAM modernization.
Additional Information
TrueTandem is an equal opportunity employer, committed to diversity and inclusion in the workplace and affords equal opportunity to all qualified applicants for all positions without regard to protected veteran status, qualified individuals with disabilities and all individuals without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age or any other status protected under local, state or federal laws.
Equal Opportunity Employer - Minorities/Females/Disabled/Veterans
