Job description

ICAM/Active Directory Systems Administrator Location: Washinton, DC (On-site) Work Type: Full Time Clearance: Public Trust Job Summary: GridIron IT is seeking an ICAM/Active Directory Systems Administrator Local to Washington, DC. The ICAM Systems Administrator will be responsible for the management, configuration, and support of enterprise-level Active Directory, Azure AD, and Okta environments. This role requires deep technical expertise in identity and access management (IAM) and the ability to ensure secure, scalable, and compliant user access solutions across the organization. The ICAM Systems Administrator will work closely with other IT teams to ensure identity systems are properly integrated, highly available, and secure. This work is located onsite in the DC area. Key Responsibilities: • Administer and manage on-premises Active Directory environment, ensuring it is secure, highly available, and properly configured. • Oversee Group Policy Objects (GPOs), Trusts, DNS, AD Sites and Services, and other AD components. • Perform user provisioning and de-provisioning, ensuring the application of best practices for Active Directory security (e.g., least privilege, proper account permissions, password policies). • Implement and manage Active Directory Federation Services (ADFS) for authentication and federation with cloud and external resources. • Manage Azure Active Directory (Azure AD) for cloud-based identity management, including the integration of on-premises AD with Azure AD using Azure AD Connect. • Administer Azure AD conditional access policies, ensuring secure and compliant access to cloud applications and resources. • Implement and configure Azure AD B2C (Business-to-Consumer) for user authentication in external-facing applications. • Manage Azure AD Connect, including troubleshooting, synchronization, and ensuring proper user identity lifecycle management. • Oversee the administration and integration of Okta for identity management, single sign-on (SSO), and multi-factor authentication (MFA) solutions. • Ensure the seamless integration of Okta with internal and third-party applications (e.g., Office 365, Salesforce, Google Workspace). • Manage and configure Okta Universal Directory, Lifecycle Management, and API Access Management. • Monitor the health and performance of AD, Azure AD, and Okta environments, proactively addressing any issues or potential vulnerabilities. • Develop and maintain PowerShell scripts for automating common tasks related to Active Directory, Azure AD, and Okta. • Create and maintain comprehensive documentation for all identity management systems and processes. Qualifications: • Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field. Equivalent work experience may also be considered. • 5+ years of hands-on experience in Identity and Access Management (IAM) with a strong focus on Active Directory, Azure AD, and Okta administration. • Proficient in Active Directory (AD) administration, including Group Policy, Active Directory Federation Services (ADFS), and AD sites/replication. • Strong experience managing and administering Azure Active Directory (Azure AD), including Azure AD Connect, Conditional Access, and Azure AD B2C. • Expertise in Okta configuration, including SSO, MFA, Lifecycle Management, and API Access Management. • Proficient in using PowerShell for automation and management of AD and Azure AD environments. • Knowledge of IAM-related protocols like SAML, OAuth, OpenID Connect, and LDAP. • Familiarity with security best practices in identity management, including multi-factor authentication (MFA) and role-based access control (RBAC). • Ability to analyze and resolve complex IAM issues, including authentication, access, and security problems. • Strong verbal and written communication skills, capable of explaining complex technical issues to both technical and non-technical stakeholders. • Ability to work cross-functionally with other teams, such as security, network, and applications teams, to address identity management challenges. Desirable Skills: • Certifications: Microsoft Certified: Azure Solutions Architect, Okta Certified Administrator, or other relevant IAM/security certifications. • Experience with Identity Governance tools like SailPoint or Saviynt. • Familiarity with cloud platforms (e.g., AWS, Google Cloud) and their IAM services. • Exposure to DevOps practices and how IAM can be integrated into CI/CD pipelines. Clearance: Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information. Compensation and Benefits: Salary Range: $110,000.00 - $140,150.00 (Compensation is determined by various factors, including but not limited to location, work experience, skills, education, certifications, seniority, and business needs. This range may be modified in the future.) Benefits: Gridiron offers a comprehensive benefits package including medical, dental, vision insurance, HSA, FSA, 401(k), disability & ADD insurance, life and pet insurance to eligible employees. Full-time and part-time employees working at least 30 hours per week on a regular basis are eligible to participate in Gridiron’s benefits programs. Gridiron IT Solutions is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status or disability status. Gridiron IT is a Women Owned Small Business (WOSB) headquartered in the Washington, D.C. area that supports our clients' missions throughout the United States. Gridiron IT specializes in providing comprehensive IT services tailored to meet the needs of federal agencies. Our capabilities include IT Infrastructure & Cloud Services, Cyber Security, Software Integration & Development, Data Solution & AI, and Enterprise Applications. These capabilities are backed by Gridiron IT's experienced workforce and our commitment to ensuring we meet and exceed our clients' expectations. Job Type: Full-time Pay: $100,000.00 - $140,000.00 per year Benefits: • 401(k) • 401(k) matching • Dental insurance • Employee assistance program • Flexible schedule • Flexible spending account • Health insurance • Health savings account • Professional development assistance • Referral program • Retirement plan • Vision insurance Schedule: • 8 hour shift • Day shift • Monday to Friday • No weekends Work Location: In person

Requirements