Lead IAM System Engineer

Piper Companies is seeking a Lead IAM System Engineer to lead our Identity and Access Management (IAM) Program within a dynamic Enterprise Technology team supporting a secure hybrid cloud environment. This is a strategic, cross-functional engineering role based on-site in Reston, VA. The position focuses on identity architecture, access governance, and enterprise-wide collaboration to deliver secure, scalable, and compliant IAM solutions.

• Serve as a Microsoft Entra  for enterprise stakeholders, providing hands‑on support across cloud and on‑premises environments.
• Lead the design, implementation, and optimization of IAM solutions including PAM, PIM, and Conditional Access Policies.
• Administer and enhance Privileged Access Management (PAM) and Privileged Identity Management (PIM) to safeguard sensitive systems.
• Develop and enforce Conditional Access Policies (CAP) to ensure secure, context‑aware access across platforms.
• Manage Access Reviews and implement Just‑in‑Time (JiT) access protocols to reduce standing privileges.
• Integrate and maintain Microsoft Defender for Cloud and Identity for proactive threat detection and response.
• Oversee Single Sign‑On (SSO) configurations and Dynamic Group Management to streamline identity workflows.
• Collaborate with cybersecurity, infrastructure, and application teams to align IAM strategies with business and compliance objectives.
• Engage with stakeholders across all levels to communicate IAM priorities, risks, and solutions.
• Mentor and coach junior engineers, fostering a culture of continuous learning and technical excellence.
• Monitor IAM system performance, audit readiness, and compliance with regulatory frameworks.
• Stay current with emerging IAM technologies and best practices to drive innovation and resilience.

• Bachelor’s degree in Computer Science, Information Technology, or related field.
• 5+ years of experience in systems engineering with a focus on IAM.
• Deep expertise in Microsoft Entra , PAM, PIM, CAP, SSO, and Microsoft Defender for Cloud.
• Strong understanding of cloud and hybrid environments (Azure, Microsoft 365).
• Familiarity with compliance frameworks such as NIST, ISO, and SOX.
• Proven ability to lead cross‑functional initiatives and communicate effectively with technical and non‑technical stakeholders.
• Demonstrated experience mentoring and developing engineering talent.
• Relevant certifications (e.g., Microsoft Certified: Identity and Access Administrator Associate) are a strong plus.

• Salary Range: $145,000 – $165,000
• Comprehensive Benefits: Medical, Dental, Vision, 401K, PTO, Sick Leave (as required by law), and Holidays
• Location: On‑site in Reston, VA

This job opens for applications on 10/03/2025. Applications will be accepted for at least 30 days from the posting date. #LI-RE1 #LI-HYBRIDIAM #Microsoft

Entra

ID #PAM #PIM #Conditional Access #SSO #Defender For Cloud  #Access Reviews #Azure Security #Identity Governance #Alexandria

VA #Technical Leadership #IAMStrategy #Cloud Security #Hybrid Cloud #Mentorship #Compliance Ready