designing, implementing, and optimizing enterprise identity infrastructure across on-premises and cloud environments
leads the architecture of domain topologies, forest structures, and global replication
ensuring hybrid identity solutions provide seamless sign-in experiences across platforms
drives the adoption of modern authentication protocols such as Kerberos, OAuth, OpenID Connect, and SAML
leads initiatives around just-in-time access, privileged session monitoring, and automated access governance
integrating systems through API calls (REST, SOAP, JSON)
managing enterprise PKI and certificate lifecycles
enforcing security baselines via Group Policy
ensuring compliance with regulatory frameworks such as SOX, HIPAA, and GDPR
plays a mentoring role, guiding junior engineers in best practices and fostering team knowledge growth

Requirements

Bachelor’s degree required, in lieu of education, leadership may consider an Associate’s Degree plus 3 years of applicable experience in computer science or related field.
Minimum of 3-4 years applicable work experience required.
Supporting Active Directory, Domain Services, Hybrid Identities, & Entra ID
Implementing SSO/MFA workflows using SAML 2.0 and/or OIDC
Maintaining Public Key Infrastructure (PKI)
Supporting Identity Lifecycle & Access Governance workflows and technical integrations
Implementation of information security standards and procedures including HIPAA and PCI Security Certifications (CISSP, CISA, CISM, Security+, CEH, etc.) are highly desired.

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills

identity infrastructure designcloud environmentsdomain topologies architecturehybrid identity solutionsauthentication protocolsAPI integrationPKI managementGroup Policy enforcementSSO workflowsMFA workflows

Soft skills

leadershipmentoringteam knowledge growth

Certifications

CISSPCISACISMSecurity+CEH