Sr. Identity and Access Management; ICAM Engineer

Description

Leidos Dig Mod Health IT division is seeking an expert-level Senior Microsoft Identity Engineer to lead complex identity management solutions for large-scale government digital transformation initiatives.

Be a US Citizen or US Person who has lived in the United States for at least three consecutive years and have the ability to obtain a Public Trust level 4 clearance.

• Maintain Microsoft Entra , including multi-tenant and cross-tenant synchronization for complex organizations.
• Design and implement migration strategies evolving identity and access management platforms (i.e. migration from on-premises Active Directory to Microsoft Entra e authentication).
• Implement advanced identity management solutions using Entra  optimize cost-efficiency and user experience.
• Provide technical leadership for identity aspects in large-scale Azure cloud migrations.
• Develop custom identity management tools and automate identity lifecycle processes.
• Ensure identity solutions align with security, compliance, and business requirements.
• Stay current with the latest Microsoft identity technologies and industry best practices.

• Bachelor's degree in computer science, Information Technology, or equivalent and eight years of experience or Master's with six plus years of general IT experience, preferably supporting system engineering.
• 7+ years of experience focusing on identity and access management.
• Expertise in PIM and Azure AD Conditional Access policies.
• Extensive hands‑on experience with Microsoft identity solutions (Entra , AD FS, Microsoft 365, MIM).
• Proven experience in large‑scale, multi‑forest Active Directory and Entra .
• Advanced knowledge of identity protocols (SAML, OAuth 2.0, OpenID Connect, WS‑Federation, CBA).
• Strong experience with Azure AD B2B and B2C for external identity management.
• Proficiency in Power Shell and Graph API for identity management automation.
• Experience with Azure AD Connect, including custom synchronization rules.
• Familiarity with Zero Trust architecture and identity‑related security best practices.

• Relevant Microsoft certifications (e.g., Microsoft 365 Certified: Enterprise Administrator Expert).
• Experience in government or highly regulated industries.
• Knowledge of identity‑related compliance standards (NIST, FISMA).
• Experience with Azure AD Verifiable Credentials and decentralized identity concepts.
• Understanding of biometric authentication methods and their Azure AD integration.

All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws.