Identity Provider Engineer

Actively hiring

Riverdale, MD · Alexandria, VA · Tampa, FL · Colorado Springs, CO · Reston, VA Posted 29 days ago $86,800–$198,000 / year

View original post Log in to save

At a glance

AI generated

TL;DR

As an Identity Provider Engineer at Booz Allen, you will join a dynamic team focused on identity and access management within the realm of zero trust architecture. Your primary responsibilities include developing custom SAML, OAuth, and OIDC integrations, troubleshooting protocol exchanges, and resolving complex identity issues such as token validation errors and connectivity problems. You will work with languages like Java, JavaScript, Python, PowerShell, or Groovy to automate identity lifecycle processes and integrate identity providers with external applications via RESTful APIs. Additionally, you will synchronize with Active Directory (AD) or LDAP and implement password-less authentication or multifactor authentication within the IdP environment. Experience with tools such as Ping Federate, Okta, Entra ID, and cloud platforms like AWS Cognito or Azure AD B2C is highly valued, along with knowledge of compliance standards relevant to identity management solutions.

Skills

PingFederate Okta EntraID SAML 2.0 OAuth 2.0 OpenID Connect Java JavaScript Python PowerShell Groovy RESTful APIs Active Directory LDAP Zero Trust MFA PingAccess PingDirectory PingOne DevOps CI/CD Okta Workflows Custom Authorization Servers Inline Hooks NIST FedRAMP HIPAA AWS Cognito Azure AD B2C Google Cloud Identity

What you'll do

Develop and troubleshoot custom SAML, OAuth, and OIDC integrations for identity providers.
Resolve complex identity and federation issues including token validation errors and assertion mismatches.
Integrate and synchronize with Active Directory (AD) or LDAP to manage user identities.
Work with RESTful APIs to automate identity lifecycle processes in external applications.
Implement password-less authentication or multifactor authentication within the IdP environment.

What we're looking for

Experience with Ping Federate, Okta, Entra ID, and SAML 2.0, OAuth 2.0, OIDC.
Develop custom integrations and troubleshoot protocol exchanges for identity platforms.
Proficient in Java, JavaScript, Python, PowerShell, or Groovy for automation.
Integrate RESTful APIs to automate identity lifecycle processes with external apps.
Experience integrating and synchronizing with Active Directory (AD) or LDAP systems.
Knowledge of Zero Trust architectures and implementing password-less authentication.

Market check

Salary context

This $86,800–$198,000 range sits above 39% of similar postings on FindRole.

Peer median band

$106,760–$198,000

Median floor and ceiling across peers.

Typical midpoint (25–75%)

$128,881–$173,712

Middle half of comparable postings.

Based on 240 comparable postings.

* 240 is the maximum number of comparable postings sampled.

Employer

About Booz Allen Hamilton

Booz Allen Hamilton is a management and technology consulting firm that provides analytics, digital, engineering, and cybersecurity solutions primarily to U.S. government agencies and commercial clients. Industry: Management & Technology Consulting

Booz Allen Hamilton currently has 627 open roles on FindRole.

Listed pay typically runs $86,800–$198,000 across 614 roles with salary data.

Most-posted roles

View all roles at Booz Allen Hamilton

Similar roles

Identity Provider Engineer

Booz Allen Hamilton

US 18 days ago $86,800–$198,000

PingFederate Okta Entra ID SAML 2.0 OAuth 2.0 OpenID Connect Java JavaScript Python PowerShell Groovy RESTful APIs Active Directory LDAP Zero Trust Password-less authentication MFA DevOps CI/CD NIST FedRAMP HIPAA AWS Cognito Azure AD B2C Google Cloud Identity

Identity Provider Operations Engineer

Booz Allen Hamilton

US 17 days ago $86,800–$198,000

PingFederate Okta Entra ID SAML 2.0 OAuth 2.0 OpenID Connect Java JavaScript Python PowerShell Groovy RESTful APIs Active Directory LDAP Zero Trust MFA password-less authentication SCIM DevOps CI/CD NIST FedRAMP HIPAA AWS Cognito Azure AD B2C Google Cloud Identity

IBM Verify Identity Access Engineer, Senior

Booz Allen Hamilton

Usa, Va, Mclean (8283 Greensboro Dr, Hamilton), US 52 days ago $86,800–$198,000

IBM Verify Identity Access IBM Security Verify Access WebSEAL SAML OIDC OAuth 2.0 CI/CD DevSecOps AWS Terraform Ansible

Senior Cybersecurity Engineer – Identity Platform and Access Management

Nvidia

Us, Ca, Santa Clara, US 39 days ago $196,000–$310,500

OAuth OIDC SAML Zero Trust Conditional Access Privileged Identity Management Risk-based Authentication Device Attestation Federated Identity Token-Based Protocols High Availability Low Latency Centralized Auth CLI Authentication Browser Authentication Agentic Workflows Service-to-Service Identity Managed Device Trust Human and Non-Human Identities Auth Libraries SDKs

Lead Identity Engineer

Lam Research

Fremont, Ca,Us, US 36 days ago $137,000–$287,000

Saviynt SAP Python REST APIs PowerShell SQL ServiceNow Azure AD Okta Ping Kubernetes Terraform CI/CD PostgreSQL Prometheus Grafana

Lead Identity Engineer

Lam Research

Tualatin, Or,Us, US 10 days ago

Saviynt SAP Python REST APIs PowerShell SQL ServiceNow Azure AD Okta Ping Kubernetes Terraform CI/CD PostgreSQL Prometheus Grafana