Federated Identity SME - Tier 4

Federated Identity SME - Tier 4

This position requires an active Top Secret clearance to be considered, with immediate SCI SAP Indoctrination.

We are seeking a Senior Tier 4 Subject Matter Expert (SME) to join our team to develop a Federated Identity Implementation Plan across multiple networks up to the TS/SCI/SAP level and then implement that plan. This role requires proven expertise in Identity and Access Management (IAM) within a hybrid cloud environment, as well as proficiency with industry-standard Single Sign On (SSO) technologies, federated identity management, and authentication solutions. The candidate must have the ability to lead complex technology assignments, provide technical guidance, and implement robust IAM solutions across multiple networks.

Compensation & Benefits:

Estimated Starting Salary Range for Federated Identity SME - Tier 4: $156,000

Pay commensurate with experience.

Full time benefits include Medical, Dental, Vision, 401K, and other possible benefits as provided. Benefits are subject to change with or without notice.

Federated Identity SME - Tier 4 Responsibilities Include:

• Review design and implement long term strategies related to Federated Identity, Authentication and Authorization to increase user experience while reducing risk, and bridge on-premises and cloud environments

• Production support and availability for on-premises Microsoft Active Directory environment, Entra ID (Azure AD), AWS (Amazon Web Services) Identity Center, and other identity solutions

• Provide consultative and implementation support for identity -related issues for applications and services

• Provide and Implement SAML/OIDC/OAUTH authentication solutions for applications implementing Single Sign On/Multi-Factor and Conditional Access Policies

• Develop and implement automation via PowerShell, Terraform and other methods to enhance efficiency & effectiveness

• Provide Tier 3/4 subject matter expertise in the development and implementation of the Federated Identity Authentication and Authorization Plan. into the Joint Warfare Analysis Center (JWAC) networks

• Manages Kickoff Meeting and Presentation preparations

  • Provide a proposed schedule for implementing the Federated Identities and Authorizations work at the Kick-Off meeting for the task including associated deliverables

  • Provide deliverables, due dates, as well as the test requirements and acceptance criteria, shall be approved by the Government and Contractor within 30 days of the end of the Task Kick-Off meeting

• Provides whitepaper assessing current networks including a diagram of current authorizations

  • Provides an assessment of existing access, authorization, and IDAM (interchangeable with IAM) solutions. Include existing practices that are out of compliance and require improvement

  • Provide an assessment accompanied by a presentation of compliance findings and system inadequacies

• Provides an Implementation Plan

  • At a minimum, provide a Federated Identity Implementation Plan that successfully addresses integration amongst all existing networks

  • Provide the Implementation Plan to include the Course of Actions (COAs) to address changes to current implementation, best practices, security compliance, management and increased efficiencies

  • Provide the Implementation Plan accompanied by System Architecture Diagram that illustrates how solutions and COAs will be implemented within the existing architecture

• Implementation

  • Upon Government acceptance of the Implementation Plan, provide a detailed plan and schedule for implementation of selected & approved COA(s)

  • Facilitate implementation of solutions &/or COA(s) in coordination with the Government

• Deliverables to be included but not limited to:
  • Provide a diagram of current IDAM solutions to include whitepaper on how identities and authorizations are currently being handled
  • Provide a whitepaper or presentation presenting compliance findings and/or inadequacies in current implementation/infrastructure
  • Provide COAs to address changes to current implementation, to include best practices, security compliance, management and increased efficiencies
  • Provide a System Architecture Diagram (new)
  • Provide a detailed plan and schedule for implementation of selected/approved COA.

  • Provide a Federated Identity implementation Acceptance Test Plan and Acceptance Criteria

  • Performs other job-related duties as assigned

Federated Identity SME - Tier 4 Experience, Education, Skills, Abilities requested:

• 5[BP3] - 10 years' proven knowledge of federated identity management, IT Security and IAM capabilities

• Bachelor's degree
• Security+ (or a higher certification such as Certified Information Systems Security Professional

• Must pass the JWAC Privileged User Exam prior to being given administration rights

• Required to have and maintain a TS clearance and be SCI and SAP eligible immediately

• Must meet qualification standards and requirements in accordance with DoDD 8140.01

• Possesses and has applied a comprehensive knowledge across key IT Security tasks with high impact assignments

• Has planned and lead major technology assignments

• Has led and evaluated performance resulting in the recommending of major changes affecting short-term project growth and success

• Functioned as a technical expert across multiple project assignments

• Proven experience within the industry standard SSO Technologies and protocols (OAuth, FIDO, SCIM, LDAP, SAML)

• Proven experience working with IAM concepts in a hybrid cloud environment

• Proven experience around Identity and Authentication solutions such as Okta, Auth0, Active Directory or Azure AD

• Proven Identity management expertise in multiple of the following areas: single sign -on (SSO), identity federation, enterprise directory architecture and design, privileged access management, identity and access governance (role-based access control, access request and certification, user life cycle management processes and organizational change management)

• Clear and proven understanding of the holistic view of IAM (Authentication and Authorization Data, Endpoint Security, Network Security, Policy Engine)

• Proven ability to utilize various programming or scripting languages such as Python, Bash and PowerShell

• Proven advanced knowledge of directory services (e.g., Microsoft active Directory)

• Proven experience with deployments and integration of IAM solutions within the cloud (AWS/Azure)

• Strong working knowledge of security best practices for Microsoft Azure and Amazon Web Services

• Must pass pre-employment qualifications of Cherokee Federal

Company Information:

Cherokee Nation Defense Solutions (CNDS) is a part of Cherokee Federal - the division of tribally owned federal contracting companies owned by Cherokee Nation Businesses. As a trusted partner for more than 60 federal clients, Cherokee Federal LLCs are focused on building a brighter future, solving complex challenges, and serving the government's mission with compassion and heart. To learn more about CNDS, visit cherokee-federal.com.

#CherokeeFederal #LI

Cherokee Federal is a military friendly employer. Veterans and active military transitioning to civilian status are encouraged to apply.

Similar searchable job titles:

• Identity and Access Management (IAM) Architect

• Enterprise Identity Engineer

• Senior IAM Security Specialist

• Federated Authentication Engineer

• Cloud Identity Solutions Architect

Keywords:

• Federated Identity

• SSO

• Azure AD

• IAM

• Terraform

Legal Disclaimer: All qualified applicants will receive consideration for employment without regard to protected veteran status, disability or any other status protected under applicable federal, state or local law.

Many of our job openings require access to government buildings or military installations.