20 days old

Federal - IAM Infrastructure Architect

San Antonio, TX 78284
Organization: Accenture Federal Services

Location: San Antonio, TX

Accenture Federal Services, a wholly owned subsidiary of Accenture LLP, is a U.S. company with offices in Arlington, Virginia. Accenture's federal business has served every cabinet-level department and 30 of the largest federal organizations.

Accenture Federal Services transforms bold ideas into breakthrough outcomes for clients at defense, intelligence, public safety, civilian and military health organizations.

We believe that great outcomes are everything. Its what drives us to turn bold ideas into breakthrough solutions. By combining digital technologies with what works across the worlds leading businesses, we use agile approaches to help clients solve their toughest problems fastthe first time. So, you can deliver what matters most.

Count on us to help you embrace new ways of working, building for change and put customers at the core. A wholly owned subsidiary of Accenture, we bring over 30 years of experience serving the federal government, including every cabinet-level department. Our 7,200 dedicated colleagues and change makers work with our clients at the heart of the nations priorities in defense, intel, public safety, health and civilian to help you make a difference for the people you employ, serve and protect.

The successful candidate will :

Provide support across all the AFS Portfolios Cloud engagements. This role is for an infrastructure, preferably cloud, experienced IAM Engineer ready to advance their career in the latest IAM processes for Cloud Development & Operation Services. The IAM Engineer has the overall responsibility and accountability for the day-to-day cloud IAM development and operations management over the life of our AFS - Client engagement partnership.

The IAM Cloud Engineer should be highly proficient in the core IAM principles including identity provisioning, authentication and authorization services, and implementation of directory services.

The engineer should be experienced in deploying solutions in federal environments including knowledge of NIST, FISMA, FedRAMP and/or DoD regulations. The engineer should also have a background in implementing IAM solutions in cloud environments on AWS and Azure platforms.

To be successful in this role, the ideal candidate will possess excellent verbal and written communication skills and will have prior experience preparing formal IAM reports and presenting them to Senior IT Management. The candidate seeks to be a part of a practice that constantly aims to lead the industry in cloud practices and therefore proactively participates in continuous improvement planning.

IAM role will ensure services are compliant with FedRAMP and DoD CC SRG requirements and ensure that those CMPS services are being used to fulfill cybersecurity controls. The IAM role will ensure that all aspects of information security are followed and implemented for the program and tenant service offerings. The IAM role will validate process, system, and procedural compliance of systems and program with Federal and agency information security policies and standards, as well as ensuring agency systems and applications are using those systems as part of their overall information security compliance. The IAM role will consolidate AFSs expertise on company systems in the areas of system security and compliance and risk management as it relates to the implementation and use of those systems.


+ Helping design, plan, implement and support strategic initiatives in Identity & Access Management for use by its team members and tenants.

+ Participate in requirements gathering sessions, support development of well-defined statements of work and specification documents, and support driving projects to successful deployment by leveraging internal resources.

+ As needed, perform comparative analysis of multiple technologies and vendor offerings to evaluate fit to function for incorporation into clients infrastructure.

+ Support security services to include SME role assisting Attribute-Based Access Control and Secure Token Service issuance.

+ Support requirements management, oversight, updates, discrepancy reports and requests for change (RFCs).

+ Coordinate/collaborate with stakeholders regarding policy, development and governance.

+ Support analysis of new IAM technologies.

+ Facilitate app enablement with IAM services.

+ Provide guidance regarding changes to the AD schema.

+ Manage and maintain group policy, and scripts associated with group policy, to secure the IT infrastructure and grant necessary resources to staff and tenant users, consistent with job requirements (i.e. server, common Microsoft products such as SharePoint, Teams and other group policies as requested).

+ Create and maintain a Group Policy Map to indicate what each group policy does, what resource(s) is (are) affected and understand the effect of any change to group policy.

+ Monitor Domain Controllers to prevent outages and/or restore service in a timely manner, analyze the policies currently monitored, and make recommendations as needed to provide meaningful alerts for action.

+ Audit changes to accounts, group policy, and other changes to AD with enterprise auditing tools.

+ Maintain a listing of all service accounts, the applications and servers which use them, and the unit responsible for the accounts.

+ Provision, modify, and deprovision user and administrator accounts upon receipt of approved access or deprovisioning request, based upon location, role, or both.

+ Make necessary adjustments to security controls to grant only that access to IT resources required for job performance.

+ Manage and maintain delegation of permissions.

+ Follow policy and procedures for account management to create, modify, or delete accounts and account permissions.

Basic Skills & Qualifications:

+ 5 years of experience in architecting IAM solutions leveraging industry leading products in one or more of the following: CA SiteMinder, Tivoli Identity Management ForgeRock Identity Management, OneLogin or SailPoint IQ

+ 5 years of experience in working with Microsoft Active Directory including user account management and implementation of services to Microsoft-Based Platforms

+ 3 years of experience in working with requirements teams translating IAM business processes including user provisioning and access management with knowledge of authentication and federation protocols including SAML (different implementations and flavors Oauth, MiniOrange, etc.) and ADFS

+ 3 years of experience as a Team Lead or Manager, preferably of a technical team performing IAM or similar work

+ US Citizenship

Preferred Skills & Qualifications:

+ BS Degree

+ AWS Certified

An active security clearance or the ability to obtain one may be required for this role.

Candidates who are currently employed by a client of Accenture or an affiliated Accenture business may not be eligible for consideration.

Applicants for employment in the US must have work authorization that does not now or in the future require sponsorship of a visa for employment authorization in the United States and with Accenture (i.e., H1-B visa, F-1 visa (OPT), TN visa or any other non-immigrant status).

Accenture is a Federal Contractor and an EEO and Affirmative Action Employer of Females/Minorities/Veterans/Individuals with Disabilities.

Equal Employment Opportunity

All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by federal, state, or local law.

Job candidates will not be obligated to disclose sealed or expunged records of conviction or arrest as part of the hiring process.

Accenture is committed to providing veteran employment opportunities to our service men and women.


Posted: 2019-08-02 Expires: 2019-09-01

Before you go...

Our free job seeker tools include alerts for new jobs, saving your favorites, optimized job matching, and more! Just enter your email below.

Share this job:

Federal - IAM Infrastructure Architect

San Antonio, TX 78284

Join us to start saving your Favorite Jobs!

Sign In Create Account
Powered ByCareerCast