Focus on managing entitlements and permissions in a cloud services environment (AWS, Azure/EntraID or GCP)
Automate identity administration, authentication and authorization to resources in the air-gapped network
Understand infrastructure and compliance as code, using CI/CD pipelines
Familiarity with standard federation protocols used in IAM including OAUTH, OIDC, SAML and SCIM
Work with other teams in cloud engineering and the broader Cybersecurity organization in Workday Government
Build organization at Workday focused on the unique requirements of the DoD and Intel agencies of the US Government
Support one or more direct or indirect contracts with the U.S. Federal Government

Requirements

8+ years as a cloud engineer, focused on IAM
Experience in centralizing authentication/authorization and RBAC/PBAC
Managing infrastructure as code using tools like Github and Terraform
Experience developing tools for automation in Python or other programming languages
Experience integrating cloud platforms with external tools like Okta, EntraID or similar for centralized authentication and SSO
Experience in utilizing one or more SEIM tools (Splunk or similar) for log aggregation and analysis, threat playbooks and auditing
Familiarity with NIST 800-53 and DoD/Intel control frameworks
Bachelor's degree or higher in computer science, cybersecurity, or comparable work/educational experience
Familiarity with identity governance workflows, user lifecycle management (joiners, movers, leavers)

Benefits

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

cloud engineeringidentity administrationauthenticationauthorizationinfrastructure as codeCI/CD pipelinesRBACPBACautomation in Pythonlog aggregation