GovCIO is a service-disabled-veteran-owned small business (SDVOSB) that offers technology services to improve business performance for government organizations.
Identity and Access Management (IAM) Specialist
Location
United States
Posted
4 days ago
Salary
$70K - $80K / year
Seniority
Mid Level
Job Description
Identity and Access Management (IAM) Specialist
GovCIO
Role Description GovCIO is currently hiring for an Identity and Access Management (IAM) Specialist to support enterprise identity, authentication, and access management services across cloud and SaaS environments. This position is responsible for designing and supporting enterprise identity solutions, integrating applications with Identity Providers (IdPs), implementing secure authentication frameworks, and establishing access governance policies. The IAM Specialist works closely with cybersecurity, infrastructure, application, and compliance teams to ensure secure, compliant, and scalable identity management solutions. This position will be fully remote within the United States. - Support the design, implementation, and administration of enterprise identity and access management solutions. - Establish secure authentication and authorization frameworks. - Integrate enterprise applications with identity services. - Support compliance with organizational security requirements. - Design and implement enterprise Identity and Access Management (IAM) solutions across cloud and SaaS environments. - Integrate applications with enterprise Identity Providers (IdPs) to support Single Sign-On (SSO), Multi-Factor Authentication (MFA), and identity lifecycle management. - Develop and maintain role-based access control (RBAC) models and access governance processes. - Collaborate with infrastructure, cybersecurity, and application teams to implement secure authentication and authorization services. - Support security compliance initiatives by implementing identity-related controls and maintaining required documentation. - Assist with continuous monitoring, access reviews, and remediation activities to support regulatory compliance. - Utilize SIEM platforms and log analysis tools to support identity-related monitoring, troubleshooting, and security investigations. - Develop technical documentation, implementation procedures, and operational guidance for IAM services. - Serve as a liaison between technical teams and security stakeholders to support secure identity management practices. Qualifications - Bachelor's with 0 - 2 years (or commensurate experience) - Experience designing and implementing enterprise Identity and Access Management (IAM) solutions. - Experience integrating applications with Identity Providers (IdPs) and supporting Single Sign-On (SSO) and Multi-Factor Authentication (MFA). - Experience implementing role-based access control (RBAC) and identity governance processes. - Knowledge of identity lifecycle management and enterprise authentication technologies. - Experience supporting security compliance, access reviews, and audit activities. - Familiarity with SIEM platforms such as Splunk, ELK Stack, or Microsoft Sentinel. - Understanding of log analysis, security event monitoring, and incident investigation. - Strong analytical, problem-solving, and communication skills. Requirements - Clearance Required: Preferred Skills and Experience - Experience supporting AWS, Azure, or other cloud environments. - Familiarity with NIST SP 800-53, Zero Trust Architecture, and federal cybersecurity requirements. - Experience with Microsoft Entra ID (Azure AD), Okta, SailPoint, Ping Identity, CyberArk, or similar IAM platforms. - Direct experience supporting the Department of Veterans Affairs. Posted Salary Range USD $70,000.00 - USD $80,000.00 /Yr.
Related Guides
Related Categories
Related Job Pages
More Security Engineer Jobs
Information Security Specialist – Detection, Response and Engineering
PortobelloExciting New Fashion Game - forward Thinking in a Changing World
• Technical owner of the information security operations platform, responsible for the architecture, strategy, and maintenance of detection controls, incident response, vulnerability management, identity management, and perimeter governance. • Primary technical reference for the area, contributing to the evolution of process maturity and the technical development of the team.
Senior Security Endpoint Engineer
DragosDragos is a computer and network security company specializing in industrial cybersecurity, incident response, threat intelligence, and security software. Past flexible jobs at Dra
Role Description Dragos is on a relentless mission to defend industrial organizations that provide us with the necessities of modern civilization; running water, functioning electricity, and safe industrial working environments. As the market leader in ICS/OT Cybersecurity, we are dedicated to arming our customers with best-in-class technology, threat intelligence, and services to protect their systems as effectively and efficiently as possible. We’re a remote-first culture with operations in North America, Europe, the Middle East, and APAC. We’re looking for mission-oriented teammates who embody our core values of authenticity, transparency, and trust. Are you ready to make a difference? Come join a mission that can save the world! The Senior Security Endpoint Engineer owns the full lifecycle of endpoint security and management across Dragos. This is a dual-mandate role: you're responsible for keeping endpoints secure and for making sure people can actually do their jobs. That means EDR coverage and detection fidelity matter just as much as patch compliance and deployment reliability — and staff experience is a first-class outcome alongside security posture. You'll operate at the intersection of security engineering and IT operations, collaborating closely with Infrastructure/Systems Engineering to ensure unified endpoint management doesn't create friction for the business. This isn't a pure security role — it owns the employee-facing endpoint experience end to end. Responsibilities - Own the complete endpoint lifecycle including provisioning, configuration, enrollment, refresh, and decommissioning across all supported platforms while maintaining standard build configurations and baseline images. - Administer and optimize the endpoint detection and response (EDR) platform, including sensor deployment, detection tuning, and response policy optimization to reduce alert noise while preserving security effectiveness. - Lead endpoint-focused incident response activities including triage, containment, forensic data collection, and post-incident review; develop and maintain incident response runbooks for endpoint threat scenarios. - Establish and manage the endpoint patching program across operating systems and third-party software, define patch compliance SLAs by severity level, and coordinate patching efforts with Infrastructure and Systems Engineering teams. - Administer the mobile device management (MDM) platform for corporate and BYOD devices, manage mobile configuration profiles, compliance policies, and ensure mobile endpoint visibility within security tooling. - Act as the escalation point for complex endpoint issues beyond helpdesk capability, maintain user-facing documentation and guidance, and gather staff feedback to reduce unnecessary policy burden while preserving security controls. - Build and maintain endpoint automation for configuration management, compliance verification, remediation workflows, and reporting; evaluate new endpoint tools and capabilities and contribute endpoint-focused priorities to the security engineering roadmap. Qualifications - 5–8 years of hands-on experience in endpoint security, endpoint management, or a combined security/IT operations role. - Deep working knowledge of EDR platforms: deployment, tuning, policy management, and incident response workflows. - Demonstrated experience managing endpoints across Windows, macOS, and Linux at scale. - Hands-on MDM administration experience (corporate devices and/or BYOD) across iOS and Android. - Practical experience with patch management programs including SLA definition, compliance tracking, and exception handling. - Proficiency with scripting and automation (PowerShell, Bash, Python, or equivalent) for endpoint management and operational workflows. - Familiarity with vulnerability management workflows and how endpoint patching integrates into the broader program. - Strong written communication skills — you can document a configuration decision and explain a security risk to a non-technical audience without losing accuracy in either case. Requirements - Salary: $130,000 - Competitive Equity Package - Comprehensive Benefits Plan Company Description Dragos is an Equal Opportunity Employer and considers applicants for employment without regard to race, color, religion, sex, orientation, national origin, age, disability, genetics, or any other basis forbidden under federal, state, or local laws. All new hires must pass a background check as a condition of employment.
Principal - Emerging Platforms
BristleconeAI-Powered Application Transformation Services for the Connected Supply Chain
Role Description - Lead solution architecture and design for BY implementations and enhancements. - Conduct discovery workshops and translate business requirements into functional and technical solution designs. - Own the end-to-end solution blueprint, including process design, configuration, integrations, reporting, and data migration. - Drive integration architecture with upstream/downstream systems such as ERP (SAP/Oracle), EDI, carrier systems, OMS, WCS, and visibility platforms. - Guide teams on BY configuration and best practices across logistics processes (inbound, outbound, planning, execution, freight settlement, warehouse operations). - Define non-functional requirements: performance, scalability, security, monitoring, resilience. - Support SIT/UAT strategy, defect triage, and ensure solution quality through signoffs. - Work closely with stakeholders to manage scope, risks, dependencies, and release readiness. - Provide leadership and mentoring to consultants/analysts and support knowledge transition. - Present solution options, trade-offs, and recommendations. - Exceptional problem-solving skills and strategic thinking abilities. Company Description Bristlecone is the leading provider of AI-powered application transformation services for the connected supply chain. We empower our customers with speed, visibility, automation, and resiliency – to thrive on change. - Transformative solutions in Digital Logistics, Cognitive Manufacturing, Autonomous Planning, Smart Procurement, and Digitalization. - Positioned around key industry pillars and delivered through a comprehensive portfolio of services spanning digital strategy, design and build, and implementation across a range of technology platforms. - Ranked among the top ten leaders in supply chain services by Gartner. - Headquartered in San Jose, California, with locations across North America, Europe, and Asia, and over 2,500 consultants. - Part of the $19.4 billion Mahindra Group. Equal Opportunity Employer Bristlecone is an equal opportunity employer. All applicants will be considered for employment without attention to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran or disability status. Information Security Responsibilities - Understand and adhere to Information Security policies, guidelines, and procedures; practice them for protection of organizational data and Information System. - Take part in information security training and act while handling information. - Report all suspected security and policy breaches to the InfoSec team or appropriate authority (CISO). - Understand and adhere to the additional information security responsibilities as part of the assigned job role.
• Act as a strategic partner to the sales team post-sale, supporting account continuity while enabling sales to focus on new opportunities • Lead the technical deployment of the Upwind platform post-sale, ensuring smooth and successful onboarding and deployment of new capabilities • Serve as the primary point of contact for customers, addressing issues quickly and maintaining a high-quality customer experience • Build strong, long-term relationships by introducing new features, gathering feedback, and leading roadmap discussions • Partner with sales during renewals and expansion to align technical planning with customer needs and drive value • Proactively engage with customers to surface key security insights, guide feature adoption, and ensure they realize the full value of the Upwind platform • Understand and advocate for your customers needs cross functionally (i.e. Product Management and Technical Support)




