Title: IAM Access Gateway Engineer Employee Type: Contract Remote: Yes Location: Richmond, VA, US Pay Range: $80 - $90 per hour Job Description: Job#: 3026357 Qualifications: Basic Qualifications: - Ansible Tower - GitLab Python - OpenShift and/or Kubernetes - Unix/Linux - Shell scripting - Identity and Access Management Systems (IAM) - Experience with RESTful API's - Argo CD - Agile Preferred Qualifications: - Knowledge of modern authentication and authorization protocols including: - OAuth 2.0 - Open ID Connect (OIDC) - Federation (SAML 2.0) System for Cross-domain Identity Management (SCIM) - Lightweight Directory Access Protocol (LDAP) - Experience with IBM Security products - SQL - JavaScript - ServicceNow - PKI Experience - RedHat Enterprise Linux (RHEL) - Ansible Automation Hub and Ansible Galaxy NexusOther/Additional Requirements: Working Conditions: Will require the use of standard office equipment such as computers, phones, photocopiers, etc.Physical Demands: Requires some degree of sitting (for prolonged periods of time), standing, lifting carrying, pushing, pulling less than 20 lbs.Hours of Work: May require extended work hours. Occasional travel including overnight stays may be necessary.US Citizenship or US Permanent Resident status is required. Education/Experience:Bachelor's Degree or equivalent experience/Master's Degree may be preferred or with 5+ years of relevant work experience.Denotes essential duties and/or any physical requirements required to perform essential duties for the role. Responsibilities: Security Automation Engineer The mission of the Federal Reserve System is to foster the stability, integrity, and efficiency of the nation's monetary, financial, and payments systems to promote optimal economic performance. Within this broad context the vital mission of the National IT Services is to deliver superior value to our customers through world-class IT services and solutions that are responsive to business needs, adaptive to change, and essential to the mission of the Federal Reserve System. Job Summary: Access gateway Engineer uses technology to improve, streamline and automate information technology systems and services. The eBusiness Security Access Gateway team is seeking an automation engineer to join a team of security engineers to create and improve Infrastructure and Configuration as Code (IaC and CaC). The Access gateway Engineer will collaborate with the eBusiness engineering team to understand secure Authentication, Authorization, Web Gateway, and API services to reduce manual processes, build CI/CD pipelines, and reduce overall time to market. Position Requirements: An automation engineer is needed to assist with further development of automated deployments inclusive of IBM Security Products. This position would assist in design and developing the code required to build and maintain Access Management Services. This will allow the enhancement of and development of stronger automation processes, including full CI/CD pipelines, around the various Access Gateway environments, leading to less manual execution of scripts. Further automation will allow administrators to focus on code rather than procedures. Long term this will improve Change Management (CM) practices by ensuring all changes are captured in source control. This will enable automated rebuilds rehydrating environments and rapid recovery from ransomware or other critical incidents. The position will be responsible for improving existing processes and creating new automated health checks. Further efforts will reduce time spent by administrators doing manual tasks, reducing errors, integration with CM, integrate system monitoring for auto incident creation, self-healing based on environmental health, and streamlining work intake requests by integrating with Service Now. Future development efforts will enable "no touch deployment" to further reduce time to market. Other duties will include knowledge sharing and continuously seeking improvement opportunities. Apex Systems is a world-class IT services company that serves thousands of clients across the globe. When you join Apex, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package. Our commitment to excellence is reflected in many awards, including ClearlyRated's Best of Staffing in Talent Satisfaction in the United States and Great Place to Work in the United Kingdom and Mexico. Apex uses a virtual recruiter as part of the application process. Click here for more details. Apex Benefits Overview: Apex offers a range of supplemental benefits, including medical, dental, vision, life, disability, and other insurance plans that offer an optional layer of financial protection. We offer an ESPP (employee stock purchase program) and a 401K program which allows you to contribute typically within 30 days of starting, with a company match after 12 months of tenure. Apex also offers a HSA (Health Savings Account on the HDHP plan), a SupportLinc Employee Assistance Program (EAP) with up to 8 free counseling sessions, a corporate discount savings program and other discounts. In terms of professional development, Apex hosts an on-demand training program, provides access to certification prep and a library of technical and leadership courses/books/seminars once you have 6+ months of tenure, and certification discounts and other perks to associations that include CompTIA and IIBA. Apex has a dedicated customer service team for our Consultants that can address questions around benefits and other resources, as well as a certified Career Coach. You can access a full list of our benefits, programs, support teams and resources within our 'Welcome Packet' as well, which an Apex team member can provide.

Job Description We are looking for a skilled Identity Governance Engineer to join our IAM team. The successful candidate will be responsible for designing, implementing, and maintaining our identity governance solutions, including identity management, access governance, and compliance. The ideal candidate will have experience with identity governance technologies, such as identity management systems, access management systems, and governance, risk, and compliance tools. Key Responsibilities: - Design, implement, and maintain identity governance solutions, including identity management, access governance, and compliance - Collaborate with cross-functional teams to ensure seamless integration with existing systems and applications - Develop and maintain technical documentation for identity governance solutions - Provide technical support and troubleshooting for identity governance systems - Create fulfillments and reports for our identity governance tool - Develop and maintain scripts and tools to automate identity governance processes - Analyze and resolve complex identity governance issues - Stay up to date with emerging trends and technologies in identity governance Required Education, Experience, & Skills - Bachelor's degree in Computer Science, Information Technology with 2+ year's experience, or related field or equivalent experience - 5+ years of experience in identity governance, identity management, or access management - Experience with identity management or governance technologies, such as: OpenText, Microfocus, IBM ISVA/ISIM/IGI, Entra - Strong understanding of identity management principles, including identity lifecycle management, access governance, and compliance - Experience with scripting languages, such as Python - Strong analytical and problem-solving skills - Excellent communication and collaboration skills Preferred Education, Experience, & Skills - Experience with identity governance solutions - Knowledge of DevOps practices and tools (e.g., Jenkins, GitLab) - Experience with agile development methodologies - Certification in identity governance or a related field (e.g., CISSP, CISM) - Experience with scripting languages, such as PowerShell, Java, and Oracle PL/SQL Pay Information Full-Time Salary Range: $79370 - $134929 Please note: This range is based on our market pay structures. However, individual salaries are determined by a variety of factors including, but not limited to: business considerations, local market conditions, and internal equity, as well as candidate qualifications, such as skills, education, and experience. Employee Benefits: At BAE Systems, we support our employees in all aspects of their life, including their health and financial well-being. Regular employees scheduled to work 20+ hours per week are offered: health, dental, and vision insurance; health savings accounts; a 401(k) savings plan; disability coverage; and life and accident insurance. We also have an employee assistance program, a legal plan, and other perks including discounts on things like home, auto, and pet insurance. Our leave programs include paid time off, paid holidays, as well as other types of leave, including paid parental, military, bereavement, and any applicable federal and state sick leave. Employees may participate in the company recognition program to receive monetary or non-monetary recognition awards. Other incentives may be available based on position level and/or job specifics. About BAE Systems, Inc. BAE Systems, Inc. is the U.S. subsidiary of BAE Systems plc, an international defense, aerospace and security company which delivers a full range of products and services for air, land and naval forces, as well as advanced electronics, security, information technology solutions and customer support services. Improving the future and protecting lives is an ambitious mission, but it’s what we do at BAE Systems. Working here means using your passion and ingenuity where it counts – defending national security with breakthrough technology, superior products, and intelligence solutions. As you develop the latest technology and defend national security, you will continually hone your skills on a team—making a big impact on a global scale. At BAE Systems, you’ll find a rewarding career that truly makes a difference. This position will be posted for at least 5 calendar days. The posting will remain active until the position is filled, or a qualified pool of candidates is identified.

• Design, implement, and optimize enterprise‑wide DLP controls using Microsoft Purview DLP, Information Protection, and Netskope DLP/CASB • Engineer DLP policies, classifiers, exceptions, and workflows for cloud (SaaS, IaaS, PaaS), endpoint, and web channels • Lead integration of DLP and CASB tools with cloud platforms including AWS, Azure, and Google Cloud • Partner with cloud architects and application teams to embed DLP and CASB controls into cloud-native environments • Develop and enforce advanced DLP policies aligned to security standards, regulatory requirements, and risk tolerance • Monitor, analyze, and automate DLP management processes combining SOC, SIEM, and telemetry • Serve as a technical expert for complex DLP and CASB incidents • Provide leadership in mapping DLP controls to GDPR, CCPA, PCI, HIPAA, and other frameworks • Educate and influence interested parties on DLP findings, risk areas, and recommended mitigations

• As a Cloud Security Engineer on Shipt’s Network and Endpoint Security team, you will be focused on protecting Shipt applications and guiding engineering teams in cybersecurity best practices. • You will be responsible for designing, developing, testing, and maintaining secure, reliable security systems, as well as building custom security tools, scripts, and automations to facilitate detection, analysis, and response. • You will collaborate with technology teams to maintain secure network architectures, including cloud firewalls, VPNs, and IDS/IPS systems, while supporting issue resolution in production environments. • The role also involves implementing application development best practices, maintaining clear technical documentation, participating in code reviews, and leading by example in work ethic and ownership. • Agile methodologies will guide your work in delivering impactful solutions in a product-focused environment.