Identity Provider Operations Engineer

Booz Allen Hamilton

Actively hiring
Riverdale, MD · McLean, VA · Tampa, FL · Reston, VA Posted 17 days ago $86,800$198,000 / year
View original post Log in to save

At a glance

AI generated

TL;DR

As an Identity Provider (IdP) Operations Engineer at the enterprise level, you will support the maintenance and troubleshooting of identity and access management systems to ensure secure and reliable authentication for mission-critical environments. Working closely with cybersecurity teams and system administrators, your daily tasks include monitoring identity systems, resolving SSO and federation issues, maintaining MFA capabilities, and applying patches. You will use scripting languages like Java, JavaScript, Python, PowerShell, or Groovy to automate operational tasks and support integrations with Active Directory and LDAP environments. Additionally, you must have experience with Zero Trust architectures, RESTful APIs for user lifecycle management, and compliance standards such as NIST and FedRAMP. This role is crucial in sustaining highly available authentication platforms that enable secure access while minimizing disruptions.

Skills

PingFederate Okta Entra ID SAML 2.0 OAuth 2.0 OpenID Connect Java JavaScript Python PowerShell Groovy RESTful APIs Active Directory LDAP Zero Trust MFA password-less authentication SCIM DevOps CI/CD NIST FedRAMP HIPAA AWS Cognito Azure AD B2C Google Cloud Identity

What you'll do

  • Monitor and maintain identity systems to ensure secure and reliable access management.
  • Troubleshoot SSO and federation issues using SAML 2.0, OAuth 2.0, and OIDC protocols.
  • Implement and support MFA and password-less authentication solutions for enhanced security.
  • Automate operational tasks and maintenance activities with scripting languages like Python or PowerShell.
  • Support user lifecycle management processes through RESTful APIs and SCIM protocols.
  • Ensure compliance with organizational security policies and standards in IAM services.

What we're looking for

  • Experience administering and maintaining enterprise identity platforms like PingFederate, Okta, or Entra ID.
  • Proficient in troubleshooting SAML 2.0, OAuth 2.0, and OpenID Connect (OIDC) authentication issues.
  • Skilled in scripting languages for operational tasks, automation, and maintenance of IAM services.
  • Knowledge of Zero Trust architectures and support for multifactor and password-less authentication solutions.
  • Ability to diagnose and resolve complex identity and federation operational issues in production environments.
  • HS diploma or GED required; relevant experience with RESTful APIs and Active Directory integration preferred.

Market check

Salary context

This $86,800–$198,000 range sits above 41% of similar postings on FindRole.

Peer median band

$104,241$198,000

Median floor and ceiling across peers.

Typical midpoint (25–75%)

$130,000$180,325

Middle half of comparable postings.

Based on 240 comparable postings.

* 240 is the maximum number of comparable postings sampled.

Employer

About Booz Allen Hamilton

Booz Allen Hamilton is a management and technology consulting firm that provides analytics, digital, engineering, and cybersecurity solutions primarily to U.S. government agencies and commercial clients. Industry: Management & Technology Consulting

Booz Allen Hamilton currently has 627 open roles on FindRole.

Listed pay typically runs $86,800–$198,000 across 614 roles with salary data.

Most-posted roles

View all roles at Booz Allen Hamilton

More like this

Similar roles

Identity Provider Engineer

Booz Allen Hamilton

US 18 days ago $86,800$198,000
PingFederate Okta Entra ID SAML 2.0 OAuth 2.0 OpenID Connect Java JavaScript Python PowerShell Groovy RESTful APIs Active Directory LDAP Zero Trust Password-less authentication MFA DevOps CI/CD NIST FedRAMP HIPAA AWS Cognito Azure AD B2C Google Cloud Identity

Identity Provider Engineer

Booz Allen Hamilton

US 29 days ago $86,800$198,000
PingFederate Okta EntraID SAML 2.0 OAuth 2.0 OpenID Connect Java JavaScript Python PowerShell Groovy RESTful APIs Active Directory LDAP Zero Trust MFA PingAccess PingDirectory PingOne DevOps CI/CD Okta Workflows Custom Authorization Servers Inline Hooks NIST FedRAMP HIPAA AWS Cognito Azure AD B2C Google Cloud Identity

Principal Information Security Engineer, Identity Security Engineering

JLL (Jones Lang LaSalle)

Remote (Home Office - Texas - Houston Metro, US) 11 days ago $270,000$300,000
Okta CyberArk Active Directory M365 ISO NIST ATT&CK CIAM Zero Trust Privileged Access Management Identity Security Cloud Services SaaS On-premises Appliances Security Policy Compliance Network Security Application Development Teams Security Frameworks
Remote

Principal Authentication Services Engineer

3M

Remote (Us, Minnesota, Maplewood, US) 39 days ago $145,676$178,049
Microsoft Entra ID Active Directory SAML OIDC OAuth 2.0 FIDO2 Conditional Access Zero Trust Security Architecture Audit and Compliance MFA Phishing-resistant credentials Authentication Standards Technical Documentation Architecture Diagrams Decision Records Runbooks IAM SaaS On-prem Hybrid Applications
Remote

Senior Infrastructure Operations Analyst – Identity Access Management

T. Rowe Price

Owings Mills, Md - Technology Center, US 24 days ago $87,000$148,000
AWS Azure AD Entra ID F5 Access Policy Manager IBM Security Access Manager iSAM IBM LDAP Server Active Directory PowerShell Python SAML Kerberos OAuth OpenID MS Defender Centrify Netbackup Quest Active Roles CyberArk Venafi

Lead Identity Engineer

Lam Research

Fremont, Ca,Us, US 36 days ago $137,000$287,000
Saviynt SAP Python REST APIs PowerShell SQL ServiceNow Azure AD Okta Ping Kubernetes Terraform CI/CD PostgreSQL Prometheus Grafana