Job description

Leidos is seeking an Identity and Access Management Systems Administrator to join a significant program supporting a Federal Law Enforcement Agency. In this role, you will manage, configure, and support enterprise-level Active Directory, Azure AD, and Okta environments. Your expertise in identity and access management (IAM) will be crucial in delivering secure, scalable, and compliant user access solutions across the organization. Collaboration with other IT teams will ensure that identity systems are integrated, highly available, and secure. This position is based onsite in the DC area. Key Responsibilities: • Administer and manage the on-premises Active Directory environment to ensure security, high availability, and proper configuration. • Oversee Group Policy Objects (GPOs), Trusts, DNS, AD Sites and Services, and other AD components. • Perform user provisioning and de-provisioning, applying best practices for Active Directory security, including least privilege, proper account permissions, and password policies. • Implement and manage Active Directory Federation Services (ADFS) for authentication and federation with cloud and external resources. • Manage Azure Active Directory (Azure AD) for cloud-based identity management, integrating on-premises AD with Azure AD via Azure AD Connect. • Administer Azure AD conditional access policies to ensure secure and compliant access to cloud applications and resources. • Implement and configure Azure AD B2C (Business-to-Consumer) for user authentication in external-facing applications. • Manage Azure AD Connect, handling troubleshooting, synchronization, and user identity lifecycle management. • Oversee the administration and integration of Okta for identity management, single sign-on (SSO), and multi-factor authentication (MFA) solutions. • Ensure seamless integration of Okta with internal and third-party applications (e.g., Office 365, Salesforce, Google Workspace). • Manage and configure Okta Universal Directory, Lifecycle Management, and API Access Management. • Monitor the health and performance of AD, Azure AD, and Okta environments, proactively addressing any issues or vulnerabilities. • Develop and maintain PowerShell scripts to automate common tasks related to Active Directory, Azure AD, and Okta. • Create and maintain comprehensive documentation for all identity management systems and processes. Qualifications: • Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field, with 8+ years of relevant experience. Equivalent work experience may also be considered. • 5+ years of hands-on experience in Identity and Access Management (IAM) with a strong focus on Active Directory, Azure AD, and Okta administration. • Proficient in Active Directory (AD) administration, including Group Policy, Active Directory Federation Services (ADFS), and AD sites/replication. • Strong experience managing and administering Azure Active Directory (Azure AD), including Azure AD Connect, Conditional Access, and Azure AD B2C. • Expertise in Okta configuration, including SSO, MFA, Lifecycle Management, and API Access Management. • Proficient in using PowerShell for automation and management of AD and Azure AD environments. • Knowledge of IAM-related protocols like SAML, OAuth, OpenID Connect, and LDAP. • Familiarity with security best practices in identity management, such as multi-factor authentication (MFA) and role-based access control (RBAC). • Ability to analyze and resolve complex IAM issues, including authentication, access, and security problems. • Strong communication skills, capable of explaining complex technical issues to both technical and non-technical stakeholders. • Ability to work cross-functionally with other teams, such as security, network, and applications teams, to address identity management challenges. Desirable Skills: • Certifications: Microsoft Certified: Azure Solutions Architect, Okta Certified Administrator, or other relevant IAM/security certifications. • Experience with Identity Governance tools like SailPoint or Saviynt. • Familiarity with cloud platforms (e.g., AWS, Google Cloud) and their IAM services. • Exposure to DevOps practices and how IAM can be integrated into CI/CD pipelines. Original Posting: April 16, 2025 For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above. Pay Range: Pay Range $89,700.00 - $162,150.00 The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.

Requirements