Identity Federation Architect

Identity Federation Architect

The Opportunity:

You know that the user is the last frontier for cyber security. It’s where the perimeter is drawn, and securing identities is pivotal in the fight against cybercriminals. As an Identity Federation Architect, you have the skills and experience to keep hackers from taking data and breaking processes. We are looking for someone like you to help our clients meet their missions without disruption.

An Identity Federation Architect is responsible for designing and implementing solutions for an identity governance and administration (IGA) tool. This role involves developing processes for identity lifecycle management and defining access control policies. Candidates should have experience with Identity Federation. You will ensure secure and efficient identity management within the organization, collaborating with IT and security teams to integrate applications and platforms seamlessly.

We are seeking a Federation Engineer who will be instrumental in managing and analyzing data to meet our agency's stringent account creation standards. You'll play a pivotal role in managing the seamless integration and ensuring the secure transfer of data between our allied missions and the Department of Veteran Affairs (VA) identity management framework. You will possess a keen eye for detail and a robust understanding of data structures to ensure compliance with our minimum requirements. In instances of non-conformity, you'll be responsible for devising strategies to transform the data or determine alternative methods to achieve the desired outcomes. You will need to be proficient in Active Directory, Azure Enterprise Apps, and identity federation protocols, such as SAML, OpenID Connect, and OAuth is required. Additionally you'll need to demonstrate a proven track record in managing large-scale, complex projects, as the implementations. The role requires collaboration with cross-functional teams to ensure compliance with VA's data quality requirements and identity management policies. Knowledge of NIST IAL standards for identity verification is essential to fulfill the responsibilities of this position.

Apply today to help us as we support our nation's security.

Join us. The world cannot wait.

You Have:

• 8+ years of experience with designing and implementing large-scale IGA solutions in complex enterprise environments

• 8+ years of experience with IAM tools and platforms, such as Okta, Microsoft Identity Manager, Microsoft Active Directory Federation Service (ADFS), Entra ID, Ping Identity, SailPoint, ForgeRock, or CyberyArk Identity

• 8+ years of experience with Identity Federation where multiple identity stores exist

• Experience with developing processes for identity lifecycle management, including provisioning, authentication, authorization, and de-provisioning

• Experience with collaborating with teams proactively to address technology issues with applications, including infrastructure and code and overseeing identity and access governance operations and architecture design

• Knowledge of Enterprise Directory architectures

• Knowledge of IAM technologies, such as Active Directory, LDAP, OIDC, OAuth, SAML, and PKI

• Ability to define and enforce access control policies, ensuring users have appropriate access based on roles and responsibilities and to lead and coach technical staff

• Ability to obtain and maintain a Public Trust or Suitability/Fitness determination based on client requirements

• HS diploma or GED

Nice If You Have:

• Experience with working in an agile delivery team

• Experience with presenting technical briefs to senior leadership

• Knowledge of various Access Control Frameworks, including NIST 800-63

• Possession of problem-solving and communication skills

• Bachelor’s degree in CS, or Software Engineering

• Industry certifications, such as CISSP, CISM, or CISA are a plus

Vetting:    

Applicants selected will be subject to a government investigation and may need to meet eligibility requirements of the U.S. government client. 

Compensation

At Booz Allen, we celebrate your contributions, provide you with opportunities and choices, and support your total well-being. Our offerings include health, life, disability, financial, and retirement benefits, as well as paid leave, professional development, tuition assistance, work-life programs, and dependent care. Our recognition awards program acknowledges employees for exceptional performance and superior demonstration of our values. Full-time and part-time employees working at least 20 hours a week on a regular basis are eligible to participate in Booz Allen’s benefit programs. Individuals that do not meet the threshold are only eligible for select offerings, not inclusive of health benefits. We encourage you to learn more about our total benefits by visiting the Resource page on our Careers site and reviewing Our Employee Benefits page.

Salary at Booz Allen is determined by various factors, including but not limited to location, the individual’s particular combination of education, knowledge, skills, competencies, and experience, as well as contract-specific affordability and organizational requirements. The projected compensation range for this position is $84,600.00 to $193,000.00 (annualized USD). The estimate displayed represents the typical salary range for this position and is just one component of Booz Allen’s total compensation package for employees. This posting will close within 90 days from the Posting Date.

Work Model
Our people-first culture prioritizes the benefits of flexibility and collaboration, whether that happens in person or remotely.

• If this position is listed as remote or hybrid, you’ll periodically work from a Booz Allen or client site facility.
• If this position is listed as onsite, you’ll work with colleagues and clients in person, as needed for the specific role.

EEO Commitment

We’re an equal employment opportunity/affirmative action employer that empowers our people to fearlessly drive change – no matter their race, color, ethnicity, religion, sex (including pregnancy, childbirth, lactation, or related medical conditions), national origin, ancestry, age, marital status, sexual orientation, gender identity and expression, disability, veteran status, military or uniformed service member status, genetic information, or any other status protected by applicable federal, state, local, or international law.