Identity & Access Management Engineer
YOUR LIFE'S MISSION: POSSIBLEYou have goals, dreams, hobbies and things you're passionate about.What's Important to You Is Important to UsWe're looking for people who not only want to do meaningful, challenging work, keep their skills sharp and move ahead, but who also take time for the things that matter to them-friends, family and passions. And we're looking for team members who are passionate about our mission-making a difference in military members' and their families' lives. Together, we can make it happen.Don't take our word for it.Military Times 2021 Best for Vets EmployersWayUp Top 100 Internship ProgramsForbes(R) 2021 The Best Employers for New GradsForbes(R) America's Best EmployersNewsweek Top 100 Most Loved Workplaces2021 People Companies that CareFortune Best Workplaces for WomenFortune 100 Best Companies to Work For(R)Fortune Best Workplaces for MillennialsComputerworld(R) Best Places to Work in ITBasic PurposeThe Directory Services Identity Engineer is a technical resource with intermediate or master level skills in the architecture, design, configuration, and management of Active Directory, Azure Active Directory, and modern authentication services.Your success with attaining and performing the required skills and abilities will be enhanced if they consist of the following:ResponsibilitiesDay to day administration of Active Directory infrastructure: Domain Controllers, Group Policy, Sites/Services.Infrastructure design and maintenance for Active Directory Federation Services, Strata Identity Orchestrator, Active Directory Lightweight Directory Services.Identity federation with internal/external workforce applications.Apply engineering principles into the design and enhancement of new and existing systems.Ensure the security and integrity of system and product solutions including compliance with Navy Federal, industry engineering and Information Security principles and practices.Present clear, organized, and concise information to all audiences through a variety of media to enable effective business decisions.Perform engineering tasks and assignments in support of business needs.Perform engineering technology research, procurement, deployment, and configuration for new and modified systems.Perform other duties as assigned.QualificationsHands-on experience designing and managing a multi-site, multi-domain Active Directory infrastructure - including expert-level knowledge of Group Policy Objects and their configuration. As evidenced by at least 1 current certification (Microsoft Certified Solutions Associate, or Microsoft Certified Solutions Expert with a focus on server infrastructure.) or the equivalent experience and training.Solid understanding of design and implementation of modern authentication technologies including SAML authentication and OIDC.Experience with enterprise adoption of Azure Active Directory and migration to Office 365.Required Skills:Active Directory including: o Group Policy Administration o Least Privilege Tiered AdministrationAzure Active Directory including: o Conditional Access Policies o Azure SSO o Enterprise Application RegistrationStrata (Mavericks) Identity OrchestrationActive Directory Federation ServicesActive Directory Lightweight Directory Services (AD-LDS)Microsoft Enterprise PKI leveraging OCSPQuest Tools (RMAD/GPOAdmin/Change Auditor)Desired Skills:Advanced PowerShell Scripting techniques.Operations will include 24x7 on-call systems supportHours: Monday - Friday, 8:00am - 4:30pmLocation: 820 Follin Lane, Vienna, VA 22180 | 5550 Heritage Oaks Dr Pensacola, FL 32526 | 141 Security Dr. Winchester, VA 22602Due to COVID-19 and social distancing, this position will be temporarily working from home with plans to return to campus at the desired location listed once Navy Federal is back to normal operations. The specific logistics for returning to campus will be determined at a future date by individual leadership.Salary: Navy Federal Credit Union assesses market data to establish salary ranges that enable us to remaincompetitive. You are paid within the salary range, based on your experience, location and market position.The salary range for this position is: $95,600 to $163,500 Annual SalaryEqual Employment OpportunityNavy Federal values, celebrates, and enacts diversity in the workplace. Navy Federal takes affirmative action to employ and advance in employment qualified individuals with disabilities, disabled veterans, Armed Forces service medal veterans, recently separated veterans, and other protected veterans. EOE/AA/M/F/Veteran/DisabilityCOVID-19 Vaccine InformationAs a COVID-19 safety measure, our employees must either provide proof of COVID-19 vaccination or follow additional safety protocols, including testing.DisclaimerNavy Federal reserves the right to fill this role at a higher/lower grade level based on business need. An assessment may be required to compete for this position.Bank Secrecy ActRemains cognizant of and adheres to Navy Federal policies and procedures, and regulations pertaining to the Bank Secrecy Act.Employee ReferralsThis position is eligible for the TalentQuest employee referral program. If an employee referred you for this job, please apply using the system-generated link that was sent to you.