Identity Provider Engineer

Booz Allen Hamilton

Actively hiring
Riverdale, MD · Alexandria, AL · Tampa, FL · Colorado Springs, CO · Reston, VA Posted 18 days ago $86,800$198,000 / year
View original post Log in to save

At a glance

AI generated

TL;DR

As an Identity Provider Engineer at Booz Allen, you will join a dynamic team focused on identity and access management within the realm of zero trust architecture. Your primary responsibilities include analyzing the identity lifecycle, defining enterprise identity records, and developing custom SAML, OAuth, and OIDC integrations to ensure secure and seamless authentication processes. You will work with languages like Java, JavaScript, Python, PowerShell, or Groovy to automate identity lifecycle management and integrate identity providers with external applications via RESTful APIs. Additionally, you will synchronize systems with Active Directory (AD) or LDAP, resolve complex identity issues, and enhance automated user lifecycle management using DevOps pipelines. Experience with tools such as Ping Federate, Okta, Entra ID, and cloud platforms like AWS Cognito is highly valued, along with knowledge of compliance standards relevant to identity management solutions.

Skills

PingFederate Okta Entra ID SAML 2.0 OAuth 2.0 OpenID Connect Java JavaScript Python PowerShell Groovy RESTful APIs Active Directory LDAP Zero Trust Password-less authentication MFA DevOps CI/CD NIST FedRAMP HIPAA AWS Cognito Azure AD B2C Google Cloud Identity

What you'll do

  • Analyze and articulate access requirements for the identity lifecycle.
  • Develop custom SAML, OAuth, and OIDC integrations to troubleshoot protocol exchanges.
  • Work with RESTful APIs to integrate identity providers with external applications.
  • Integrate and synchronize identity provider systems with Active Directory or LDAP.
  • Resolve complex identity and federation issues including token validation errors.
  • Implement password-less authentication or multifactor authentication within IdP environment.

What we're looking for

  • Experience with identity management platforms like Ping Federate, Okta, Entra ID.
  • Proficiency in SAML 2.0, OAuth 2.0, and OpenID Connect (OIDC).
  • Development and troubleshooting skills for custom SAML, OAuth, OIDC integrations.
  • Knowledge of RESTful APIs for integrating identity providers with external apps.
  • Experience with Active Directory (AD) or LDAP integration and synchronization.
  • Understanding of Zero Trust architectures and implementation of password-less/MFA.
  • High School diploma or GED required.

Market check

Salary context

This $86,800–$198,000 range sits above 39% of similar postings on FindRole.

Peer median band

$106,760$198,000

Median floor and ceiling across peers.

Typical midpoint (25–75%)

$128,881$173,712

Middle half of comparable postings.

Based on 240 comparable postings.

* 240 is the maximum number of comparable postings sampled.

Employer

About Booz Allen Hamilton

Booz Allen Hamilton is a management and technology consulting firm that provides analytics, digital, engineering, and cybersecurity solutions primarily to U.S. government agencies and commercial clients. Industry: Management & Technology Consulting

Booz Allen Hamilton currently has 627 open roles on FindRole.

Listed pay typically runs $86,800–$198,000 across 614 roles with salary data.

Most-posted roles

View all roles at Booz Allen Hamilton

More like this

Similar roles

Identity Provider Engineer

Booz Allen Hamilton

US 29 days ago $86,800$198,000
PingFederate Okta EntraID SAML 2.0 OAuth 2.0 OpenID Connect Java JavaScript Python PowerShell Groovy RESTful APIs Active Directory LDAP Zero Trust MFA PingAccess PingDirectory PingOne DevOps CI/CD Okta Workflows Custom Authorization Servers Inline Hooks NIST FedRAMP HIPAA AWS Cognito Azure AD B2C Google Cloud Identity

Identity Provider Operations Engineer

Booz Allen Hamilton

US 17 days ago $86,800$198,000
PingFederate Okta Entra ID SAML 2.0 OAuth 2.0 OpenID Connect Java JavaScript Python PowerShell Groovy RESTful APIs Active Directory LDAP Zero Trust MFA password-less authentication SCIM DevOps CI/CD NIST FedRAMP HIPAA AWS Cognito Azure AD B2C Google Cloud Identity

IBM Verify Identity Access Engineer, Senior

Booz Allen Hamilton

Usa, Va, Mclean (8283 Greensboro Dr, Hamilton), US 52 days ago $86,800$198,000
IBM Verify Identity Access IBM Security Verify Access WebSEAL SAML OIDC OAuth 2.0 CI/CD DevSecOps AWS Terraform Ansible

Senior Cybersecurity Engineer – Identity Platform and Access Management

Nvidia

Us, Ca, Santa Clara, US 39 days ago $196,000$310,500
OAuth OIDC SAML Zero Trust Conditional Access Privileged Identity Management Risk-based Authentication Device Attestation Federated Identity Token-Based Protocols High Availability Low Latency Centralized Auth CLI Authentication Browser Authentication Agentic Workflows Service-to-Service Identity Managed Device Trust Human and Non-Human Identities Auth Libraries SDKs

Lead Identity Engineer

Lam Research

Fremont, Ca,Us, US 36 days ago $137,000$287,000
Saviynt SAP Python REST APIs PowerShell SQL ServiceNow Azure AD Okta Ping Kubernetes Terraform CI/CD PostgreSQL Prometheus Grafana

Lead Identity Engineer

Lam Research

Tualatin, Or,Us, US 10 days ago
Saviynt SAP Python REST APIs PowerShell SQL ServiceNow Azure AD Okta Ping Kubernetes Terraform CI/CD PostgreSQL Prometheus Grafana